Description
Sr. Network Security Expert - Firewall - Open Source - European Commission
For one of our projects at the European Institutions in Brussels, we are urgently looking for a Senior Firewalls Open Source Consultant.
Main tasks:
- Firewall Design, build and testing:
- Analysis, specifications, definition and design of an Open Source based on high-availability firewall solutions
- Integration, implementation (including OS hardening) of chosen solution
- Setting up of a testing environment for the firewalls
- Definition of test strategies, test design and testing
- Conclusive testing
- Production of technical documentation: user guide, admin guide, etc.
- Implementation and Roll-out:
- Definition of deployment scenario and related deployment procedures
- Deployment in +/- 60 sites (Brussels and capitals of MS) with servers installed, configured and operational
- Acceptance report per site
- Setup of the monitoring and management of the chosen solutions (using Nagios, syslog,…)
- Maintenance, support.
For this role you need to have experience on one or more of the following:
- Design of IT security solutions, equipment integration and operation, specifically for: firewalls, encryption, VPN, WAN.
- Open Source OS, software and applications, specially for:
- Open Source Firewalls (such as Linux Redhat firewall)
- OS hardening (Linux - SELinux or equivalent on other OS)
- EAL4+ certification of RHEL or equivalent on other OS
- Proficient knowledge of different hardware brands that produce reliable hardware and network components.
- Delivering technical documentation, guidelines, procedures (including advice and strategy, design/study, integration, implementation, test, maintenance/administration/monitoring, support, documentation/reporting, training/presentations, quality assurance).
The ideal candidate has experience with most of the following technologies:
- High Availability Open Source Firewalls development/Integration
- Open Source firewalls Roll-out and Administration
- Network Services: OSI and TCP/IP layer 3 and 4:
- TCP/IP, VLAN's, Spanning Tree, HSRP, VRRP
- Static and dynamic routing (OSPF, EIGRP, BGP), QoS, traffic shaping, etc.
Desirable experience:
- Experience in Operational management tools
- Experience in Cloning software
- Experience in Centralized/remote management
- Experience in Centralized/remote patching
- Experience in Air gap procedures
- Experience working in an international organization / European Institutions
- Be in possession of a Security Clearance, at least of the level Confidential (national or EU or NATO)
Desirable Tools:
- Distributed monitoring: Integration of Nagios/Shinken and Nagvis
- Distributed and centralized logging: Syslog, analyser, SNMP
- Project Management
- Documentation Management
- Incident / Problem Management
Desirable Methodologies:
- ITIL v3, Prince2, Other Project Management methodologies
Languages:
Fluent in English and French is an asset
Others:
- Capability of integration in an international/multicultural team environment.
- Educational Level: Mandatory Bachelor Degree in CIS or related subject; Master Degree in CIS or related subject is an asset.
If you are interested and available for this opportunity (as Freelance specialist or Employee) please respond as soon as possible.