US Citizen
Green Card
Corp-Corp
Consulting/Contract
UG :- - Not Required
PG :- - Not Required
No of position :- ( 1 )
Post :- 9th Aug 2022
This is a temp to hire role responsible for implementation of network and security infrastructure projects, as well as administration of the company’s network, telephony and security infrastructure.
This opportunity has an initial 6 months consulting term. However, a successful candidate demonstrating effective management and delivery of assigned projects as well as professional integration with the Infrastructure team, will be strongly considered for conversion to permanent team member.
The Network is comprised of the Corporate WAN as well as all Retail locations and other corporate satellites within an MPLS network topology across Americas. This job’s responsibilities are as follows:
Design and Implement a multilayered security defense and posturing.
Setup multi-tiered and zone firewall composing of Palo Alto, Checkpoint and Cisco physical and virtual firewalls
Review and implement firewall policies rules using appropriate zone level trust model
Design and implement network infrastructure technology
Configure and setup Cisco network core infrastructure consisting of Cisco Nexus switches, Cisco ISR routers, Cisco WLS and wireless controllers and Cisco ISE authentication servers
Administer Cisco VOIP technology to include Cisco Call manager, SIP cube and Cisco IPCC.
Define, track, and maintain appropriate standard baselines and configuration sets of all managed and/or monitored security devices and implement industry best practices with regards to IT Security controls such as:
Security Architecture and engineering, Firewalls, Intrusion Detection/Prevention Systems (IDS/IPS),
Work with and manage projects that involve different functional teams as well address daily operational tasks.
Technical Project assignments:
The NetSec engineer will be responsible of leading and implementing the following projects:
Deploy Cisco Any-connect VPN
Setup ASA VPN gateway in HA configuration.
Configure AnyConnect posturing in conjunction with Cisco ISE
Plan the migration to new platform
Setup Cisco ISE
Setup two Cisco ISE clusters
Configure NAC policies for WiFi and LAN networks
Setup ISE posture policies for VPN access
Cisco WLC migration
Setup new Cisco WLC
Develop NAC policies in conjunction with Cisco ISE
Migrate exiting WAPs from legacy Cisco WLC to the new Cisco WLC virtual edition
Audit and redesign Palo Alto firewall rules and polies
Review exiting firewall rules in the DMZ, LAN and WAN zones and design an overall policy hierarchy and flow.
Implement hardening security posturing.
Document firewall policies, rules and flows.
Align setup with company standards.
SDWAN migration
Coordinate migration of SDWAN to store locations
Work with vendors to setup edge devices
Configure headend connection and routing
Documentation
Review network infrastructure and draft diagrams
Document key network infrastructure information