Description
IP Security Design Engineer
Our client as a leading mobile operator is looking for an IP Security Design Engineer to produce network security designs based on project specific technical requirements.
Key responsibilities
- Responsible for the design and implementation of the Network Security Solutions within the mobile network
- Required to write peer review including Strategy and Policy documents, Statements of Requirements, Impact Assessments, Target Architectures, High Level Design, Detailed Design, Implementation plan and Transition to Operations documents
- Act as technical authority and subject matter expert on a range of technology/security solutions
- Analyse and appropriately feedback on impacts to the network infrastructure of Service Demand Forecasts (and interim product launches/ad hoc events
- Describe business benefits and risks of proposed solutions undertake qualitative risk assessment and define and justify appropriate technical controls)
- Clearly articulate network security risk to the business in terms they understand
- Provide solution overview, training and suggested troubleshooting and preventative maintenance guides to peers in Operations
- Provide 4th line support to Operations as required.
Skills & Qualifications
- Strong documentation experience and the ability to drive processes and procedures
- Holding, or able to obtain SC-level national security clearance
- Network security design experience with a proven track record
- Understanding of business and technology risk and mitigation
- Understanding of relevant compliance regulations PCI-DSS and NICC ND1643
- Experience of deploying network changes in an organisation that uses multiple MSPs
- Technical knowledge and experience in network and security technologies and market leading vendor products:- Firewalls, Policy based security and wider security tools from leading vendors, such as checkpoint, Cisco and Fortinet
- Remote access solutions based on IPSec or SSL VPN products
- Experience with Microsoft DirectAccess would also be beneficial
- IP Routing using multiple routing instances with dynamic and static routing (OSPF, RIP)
- F5 load balancers to provide secure access to Internet published applications using AFM and ASM for service security
- 2 factor authentication and role based access control implemented using RSA SecurID and Cisco ACS
- Experience of integrating these products with Microsoft AD would also be beneficial
- IPS/IDS deployment and tuning
- Arbor Peakflow and Threat Management Solution or similar (D)DoS mitigation tools and solutions
- Security Policy tools such as Tufin or Algosec
- Bachelor`s degree or higher in Computer, ICT or Telecoms or equivalent experience
- Vendor qualifications such as Cisco Certified Network Professional: Security (CCNP: Security), Fortinet Certified Network Security Administrator or Professional (FCNSA/P)
- Industry specific qualifications such as CISSP.
For further information and to apply please contact (see below)
Project People Ltd is acting as an Employment Business in relation to this vacancy.