Role:  Network Security Architect Analyst

Location: Onsite (New York city)

Experience: 10 years

TELECOMMUTING IS AVAILABLE UPON SUCCESSFUL COMPLETION OF AN ONSITE PERFORMANCE PERIOD AND AGREED UPON SCHEDULE.
Responsibilities:
• Develop, implement, and manage comprehensive network security design, policies, plans, and procedures, encompassing security architectures, firewall policies, intrusion detection systems, and security data collection systems.
• Detect, investigate, mitigate, document, and report network security violations, intrusions, or any other inappropriate use, ensuring a prompt and effective response.
• Support the development and implementation of the organization's security awareness and virus management programs, evaluating security products, and conducting performance testing on security systems.
• Assist in planning, implementing, and testing disaster recovery procedures, actively participating in formal risk assessments related to network operation and security.
• Implement and maintain Azure and Windows Active Directory security measures.
• Provide support to the user community and help desk in resolving network and security issues, offering timely and effective solutions.
• Collaborate with cross-functional teams to ensure a balanced and cohesive approach to security and network integration.
Requirements:
• Highly motivated and hands-on Network and Cyber Security professional.
• Demonstrated strong technical and problem-solving skills.
• Project Management experience is preferred, and relevant certifications such as CISSP, CCNA, or CompTIA Security are a plus.

technical Competencies:
• Networking: LAN, WAN, Wi-Fi, DNS, WINS, DHCP, TCP/IP, ISCSI, Cisco IOS, Cisco NX-OS, Network Fabric, SDWAN, VPN (IPSEC, SSL), Remote Access
• Routing Protocols: OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing
• Firewall Technologies: Palo Alto, Cisco ASA, SolarWinds
• Network Protocols: TCP/IP, L2TP, PPTP, IPSEC, IKE, SSL, SSH, UDP, DHCP, DNS
• Operating Systems: Windows, Linux, Ubuntu, Kali, Unix
• Security Frameworks: NIST, ISO/IEC 27001, COBIT, CIS, MITRE, PCI/ITIL, FISMA
• Intrusion Detection and Prevention: Cisco IDS/IPS, Trelix IDS, McAfee IDS
• Access Control: Cisco Secure ACS, Cisco Identity Services Engine (ISE)
• Antivirus and Malware Detection: Trelix ePolicy Orchestrator, Enterprise Antivirus
• Data Loss Prevention: Data Loss Prevention Systems
• Forensics and Recovery: System Forensics, Data Recovery
• Active Directory and Group Policy: Active Directory Design, Group Policy Implementation
• Azure Security Measures: (e.g., Multi-Factor Authentication, Role-Based Access Control)
• Windows Active Directory Security Measures: (e.g., Group Policy, Account Policies)
• Cisco Identity Services Engine (ISE): Implementing and managing ISE for network access control
• Server Security: Server Operating System Hardening
• Patch Management: Enterprise Network and Operating System Patching/Reporting

Additional Skills and Information:

• Highly motivated and hands-on Network and Cyber Security professional.
• Demonstrated strong technical and problem-solving skills.
• Project Management experience is preferred.
• Relevant certifications such as CISSP, CCNA, or CompTIA Security are a plus