This is a remote position with occasional visits to client sites in Paris.

Summary

Network Security Engineers offer support for a wide variety of Network security-related devices. This includes, without being limited to Firewalls, Proxies, ISD/IPS, VPNs, Etc. Technologies include Cloud Providers (AWS, Azure, OCI), and vendors such as Palo Alto, Fortinet, Cisco, F5 and Juniper.

The Network Security Engineer is also responsible for operational infrastructure upkeep, including change management and a wide variety of documentation to ensure consistency throughout the Infrastructure Support department. The Network Security Engineer will provide assistance to the Architects with high-level tasks and projects. The following are the tasks expected of a Network Security Engineer: Device upkeep and maintenance.

Network Security Engineers are responsible for ensuring the configuration consistency across clients’ managed platforms. Participate in the change management process, device patching schedule, reviewing security advisories, etc. Engineers are expected to join troubleshooting calls and assist lower-level support resources in the day-to-day activities and knowledge transfer.

Operational tasks include:

• Device management based on the client’s requests.
• Troubleshoot network incidents.
• Validate complex infrastructure changes in the lab/sandbox environment.
• Security Advisory review and analyze possible impact to the client’s managed infrastructure.
• Stay current with the latest trends in security and cutting-edge network technologies.
• Ensure technical documentation is up to date.
• Technical knowledge transfer.
• Participation in on-call rotation

Documentation:

In order to provide proper support and ensure issue identification, as well as a viable security

audit trail, it is necessary to properly document all relevant activities and actions when working

on an issue. This means:

• Accurately logging actions and steps taken.
• Ensuring all communications on a particular issue are logged
• Ensuring all necessary parties are informed of actions being taken
• Ensuring all processes are documented, allowing consistency throughout the department, as well as prompt action to recurring issues.

Learning and testing:

• NSE’s are also responsible for testing devices being supported. This is done to ensure that the devices perform at a high level while routinely implementing changes to them. For this reason, a lab environment containing many of our in-line appliances is frequently used for testing and learning. The NSE’s responsibilities include:
• Ensure patches and firmware upgrades can be applied safely.
• Troubleshoot security issues by replicating the customer’s environment.
• Ensure that devices continue to protect customer environments from the latest threats
• and vulnerabilities.

Requirements and Experience:

• High level of proficiency in English (oral and written) is mandatory.
• Proven Client Management experience and strong verbal and written communication skills.
• 3+ years or more of network operations experience.
• 1+ years of network security experience (Firewall, Network Access, Security controls).
• Strong knowledge of TCP/IP protocol suite.
• Proven experience with Routing (BGP) and Cloud Computing (AWS, Azure).
• Cisco CCNP, Palo Alto PCNSA, CompTIA Security+ or equivalent skills are preferred.
• Cloud vendor certifications (AWS, Azure) are a plus.
• Ability to plan, organize and prioritize tasks to complete within established time frames
• Ability to work independently without direct supervision, self-motivated, and meets tight deadlines
• Flexibility in the work schedule.