Senior Firewall Engineer

An extraordinarily talented group of individuals work together every day to drive TNS' success, from both professional and personal perspectives.  Come join the excellence!

Overview

The Information/Cyber Security area is responsible for managing the development, deployment and execution of controls and defenses to ensure the security, compliance and risk mitigation of the firm's technology infrastructure/data assets and effectively respond to incidents or breaches of information security operations.

Responsibilities

The Security Analyst IV is responsible for the configuration, monitoring, management, and troubleshooting of firewalls. They will act as liaison with local regional network engineering and technical support groups to assist and lead on the reviewing, design and deployment of new services, review existing services and migration of services/systems. Day to day duties will be assigned acting as a technical SME for firewall services by carrying out both BAU and project work, supporting technical escalations and the planning and execution of migrations. All work must be completed following TNS Security policies and payment industry standards as well as the promotion of security best practices, to allow TNS business to operate and communicate in a secure solution.

Essential responsibilities include:

• Function as an internal consulting resource on network security issues specifically firewall technologies. Such as Next Generation Firewall (NGFW), Unified Threat Management (UTM): Cisco ASA/Firepower, Fortinet. Palo Alto and Juniper SRX.

• Familiar with implementing firewall security policies.

• Day to day responsibilities to include standard change control, troubleshooting issues, configuration, monitoring, and management of firewalls in conjunction with TNS Security/Network engineers and vendor-provided support.

• Monitor ticket queue application for Firewall Operations trouble tickets for incidents and creation of change requests.

• Performs recurring maintenance activities such as device upgrades and patches with primary focus firewalls and on perimeter devices.

• Be the lead technical resource on projects requiring firewall support including end of life hardware replacement, customer and migrations and buildout of new PoPs.

• Participate in the Network Security on-call rota to ensure that out of hours incidents are responded to in a timely manner.

• Perform out of hours maintenance and migrations in line with TNS and customer specified maintenance windows.

• Produce technical process documentation for use within the department.

• Provide training and knowledge sharing with the rest of the department where required.

• Managing key relationships with security partners and other internal departments.

• Governing certification, adherence and compliance to all security requirements as required by TNS.

• Understand and keep up to date with the latest security issues.

• Sponsorship and execution of technology & security advancements.

• Ensuring production systems are secure, up to date and vulnerabilities managed in a timely and effective manner.

• In-depth operational and technical knowledge of cybersecurity concepts including, but not limited to Security, Information, and Event Monitoring (SIEM) tools

• Working closely with Security Engineering, Technical Delivery and other team members on various projects.

• IPS/IDS technologies; Signature and pattern-based intrusion detection and prevention systems: Sourcefire and Fortinet.

• VPN Technologies; IPSEC client & L2L tunnel, SSL client and clientless connectivity.

• Follows documented processes, procedures and policies and maintains documentation related to work area and routinely updates architecture diagrams using LucidChart.

• Some travel to client sites, conferences, and other events may be necessary.

Experience:

• Experience in creating policies in and managing Cisco Identity Services Engine (ISE).

• Hands on experience in computer routing and networking, especially with firewall technologies.

• Hands on experience with multi-context firewall implementation (Cisco, Fortigate and Juniper).

• Experienced in planning and executing complex migrations in network environments

• Good background in configuring, troubleshooting and optimising dynamic routing protocols, specifically BGP and OSPF

• Experience analyzing and troubleshooting Access Control Lists (ACLs) and VPN tunnels on firewalls.

• IPsec and remote access VPN implementation, troubleshooting, and problem resolution.

• Security and networking certifications from organizations such as Cisco, Fortigate, Juniper and Palo Alto would be advantageous

Qualifications

• Appropriate Bachelors level qualification or 5+ years of experience in relevant positions.

If you are passionate about technology, love personal growth and opportunity, come see what TNS is all about!

TNS is an equal opportunity employer. TNS evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.