US Citizen
Green Card
H1B Work Permit
Corp-Corp
Contract to Hire
Consulting/Contract
UG :- - Not Required
PG :- - Not Required
No of position :- ( 1 )
Post :- 1st May 2023
The Fire Department of the City of New York (FDNY) is the largest Fire Department in the United States and universally is recognized as the world’s busiest and most highly skilled emergency response agency. The Department's main goal is to provide fire protection, emergency medical care, and other critical public safety services to residents and visitors in the five boroughs. FDNY members are sworn to serve and protect life and property and the Department works to continually educate the public in fire, life safety and disaster preparedness, along with enforcing public safety codes. Since its inception in 1865, FDNY has helped lead efforts to make New York the safest big city in the nation. This accomplishment requires a steadfast and daily commitment to maintaining the Department's core values.
The job opening is for an experienced, hands-on senior security engineer/architect that will design, configure, implement, and support security controls in a growing enterprise environment. The security engineer responsibilities will include leading security projects involving LAN, WAN, IoT, OT, Office 365, Datacenter, Wireless, Cloud, endpoints etc.
Responsibilities:
Architect security controls
Lead the resolution of security incidents
Perform security risk assessments of applications, cloud services, and networks
Configure IDS/IPS security policies
Configure and support security policies in DNS & WAF
Configure and support security policies in Reverse and forward Web Proxy server, CASB, IDS/IPS
Examine current firewall policies and ensure completeness and accuracy
Architect and configure cloud security controls and security controls in VMWare environment
Lead the implementation of SSO/MFA using Azure Active Directory
Utilize SEIM, Armis, Extrahop and Secureworks for threat intelligence and incidence response
Use network monitoring tools to triage incidents and perform asset management tasks Maintain risk register
Manage Disaster Recovery, Incident Management, and Business Continuity activities
Conduct periodic audits on user access control verifications
Address vulnerabilities
Work with vendors to integrate security platforms into FDNY infrastructure
Implement DLP controls
Requirements:
5 years or more of Security Engineering hands-on experience in a complex enterprise environment
HAVE STRONG KNOWLEDGE OF SPLUNK
Must be able to lead projects technically
Bachelor’s degree in computer science, information technology or related field.
Should be able to utilize security frameworks like NIST and MITRE.
Proficient in the use of security management tools to facilitate troubleshooting, e.g., Wireshark, NetBrain, Extrahop, NetWitness, CoreInsight etc.
Experience in some of these application security related tools: Burp Suite, Fortify, Zimperium, Veracode, HCL AppScan tools
Strong knowledge of Proxy Web Gateway
Experience in Netwrix data classification and auditing tool
Experience with Trellix EPO and Crowdstrike
Experience with Skyhigh Proxy Gateway and CASB
Experience with Menlo Security web and email isolation tool
Configure security policies in DNS and WAF
Strong understanding of network, application, and cloud security
Strong Identity and Access Management background
Experience with configuring DNS. Familiarity with Infoblox to maintain public facing DNS services as well as IPAM
Understanding of the various VPN technologies
Knowledge of security of wireless environment including controllers and APs.
Knowledge of resilient designs to ensure high availability
Knowledge of IPS/IDS design as standalone hardware or as a feature within firewalls
Understanding of IoT and OT security
Ability to create reports using KRI and KPI
Experience with Next Generation Firewalls including Palo alto, Fortinet, etc.
Background in WAFs
Work with vendors, carriers, and other technical groups to implement new security controls and troubleshoot existing controls
Any automation experience is a plus