Conduct regular vulnerability assessments of outstanding vulnerabilities in the network infrastructure space (Routers/Switches/Firewalls/Load balancers, Wireless Lan Controllers, Network Service Appliances)
Analyze identified vulnerabilities, prioritize and plan paths to remediation
Collaborate with platform engineering teams and operations teams to apply security patches, workarounds, or mitigations in timely manner while minimizing operational disruptions
Ensure the vulnerability management practices align with standards and internal policies
Maintains current knowledge of hardware, software and network technology and recommends modifications as required
Maintains up-to-date documentation on vulnerability status, patch management, and remediation efforts
Provide regular reports to senior management on vulnerability management efforts and progress
Provide technical guidance and training to IT staff on vulnerability management best practices and secure configuration procedures
Provide after hours and on-call support for vulnerability mitigation as needed

Requirements

Bachelor’s degree or 4+ additional years of equivalent experience
5+ years of experience supporting end to end network technologies such as routers, switches, VPN appliances, firewalls, proxy's, load balancers, DNS appliances, and wireless devices
2+ years of professional experience with automation and scripting in a Network enterprise environment
Experience with Palo Alto Firewalls, F5 Load Balancers, AVI/NSX Advanced Load Balancers, Cisco Identity Services Engine (ISE)
Data Center switching (Arista and Cisco Nexus devices)
Experience with UNIX/Linux
Scripting experience (Python, Bash, and/or PowerShell)
Automation experience using Ansible (Core/Tower/AAP or AWX)
Experience with APIs, integrations (Service-Now, Splunk etc.)
Strong knowledge of network protocols (TCP/IP, DNS, HTTP/S) and network device configurations
Advanced understanding of business technology drivers and their impact on architecture design
Proficient in more than one specific infrastructure technology
Advanced understanding of security frameworks and compliance standards (NIST, CIS)
Ability to effectively multi-task and prioritize
Self-directed and accountable
Experience with a cloud platform such as AWS, GCP, or Azure
Technical certifications such as Cisco CCNP-Enterprise or Datacenter, Palo Alto PCNSA, PCNSE, or F5, CISSP, CEH or Security +
Strong analytical and problem-solving skills
Excellent communications skills (written and verbal) and ability to work both independently and in a group
Experience navigating highly technical issues and terms to non-technical stakeholders
Experience in an enterprise environment and previous banking/financial industry experience is a plus.

Benefits

health insurance coverage
wellness program
life and disability insurance
retirement savings plan
paid leave programs
paid holidays
paid time off (PTO)

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

vulnerability assessmentsnetwork technologiesautomationscriptingPalo Alto FirewallsF5 Load BalancersCisco Identity Services EngineUNIXPythonAnsible

Soft Skills

multi-taskingself-directedaccountableanalytical skillsproblem-solving skillscommunication skillscollaborationtechnical guidancetrainingprioritization

Certifications

Cisco CCNP-EnterpriseCisco CCNP-DatacenterPalo Alto PCNSAPalo Alto PCNSEF5 certificationCISSPCEHSecurity+