NETWORK SECURITY ENGINEER
POSITION OVERVIEW
Reporting to the CTO, the Network Security Engineer manages enterprise
network security architecture, infrastructure, standards, training and
safeguards in order to protect Academy data resources and assets.
DUTIES
Designs, maintains, and executes vulnerability testing processes and
security breach mitigation tactics.
Assists in the selection of appropriate controls, control objectives, and
activities to achieve policy goals and regulatory compliance.
Designs, configures, implements, and maintains all security platforms
and associated software including routers, switches, firewall, VPNs,
WAF, NIDPS, SIEM, anti-SPAM, anti-virus, anti-malware, cryptology
systems and MDM.
Designs, reviews, and continuously assesses firewall, intrusion
detection/prevention, SIEM, VPN, SSL, application control, anti-virus
and other network component policies and underlying systems.
Performs security reconnaissance on assets, gathering intelligence to
identify and respond to potential security threats and vulnerabilities of
moderate organizational risk and complexity, ensuring appropriate
threat mitigation procedures are followed.
Responsible for major security platform upgrades and changes.
Coordinates and oversees third party penetration testing and security
audits.
Maintains up to date baselines for secure configuration and operation of
all systems infrastructure.
Performs security analysis of new and existing security applications and
operating systems including hosted solutions. Applies standards to new
installations before they transition from development to production
environments.
Performs regular analysis of all infrastructure systems to assess
security vulnerabilities and needs.
Provides periodic vulnerability testing and leads remediation projects.
Coordinates and oversees log analysis for external monitoring services
provider.
Monitors data security systems to identify security events and leads
event response efforts.
Interfaces with external vendors to assess network access requests and
ensure that they meet adopted standards and best practices.
Collaborates with CTO to create policies, procedures and best practices.
Assists with network maintenance and troubleshooting.
Assists with resolution of network related help desk tickets and issues.
Responsible for all security related training for the institution.
Other duties as assigned.