Remote - Network Security Engineer

Network Security Client: Metropolitan Transportation Authority (MTA) Duration: 6 months Contract Location: Remote, NYlocated is useful, east coast preferred NO California or west coast.But Travel around 25% MOI: Skype (TechnicalInterview) Must have zero trust experience. (Zero Trust is a strategic approach to cybersecuritythat secures an organization by eliminating implicit trust and continuouslyvalidating every stage of a digital interaction Visa: USC/GC Education: Bachelor's Degree. Primary Qualifications Experience designingand implementing network security solutions through to operation, experience inmulti-supplier/multi-platform environments would be advantageous. A high levelknowledge of all key areas of Information Security Technology and an ability toapply them appropriately to endpoint security. Interpreting andapplying appropriate Standards, Policies and Legislation, e.g. ISO27001, NISTCSF, PCI DSS, GDPR etc. in the development of network security strategies. Zero-Trust Access(ZTA) framework implementation experience Experience designingand securing the entire technology stack and building n-tier networkarchitectures An understanding ofthe people, process & technology involved in network security and securityoperations impacted by these efforts. PrimaryTechnical Skills Network and next-gen Firewalls (Checkpoint, Fortinet, Palo Alto,Cisco, etc Intrusion detection/prevention (TippingPoint, McAfee, Cisco,IBM, etc Network access control (NAC) (Aruba, Cisco, etc Sandboxing and Analytics (FireEye, Damballa, Check Point,Fortinet, Palo Alto, etc Application security (F5, Imperva, Citrix, Akamai, etc Network proxies (Blue Coat, Zscaler, McAfee, Websense, etc Network admission control (NAC) (Aruba ClearPass, ForeScout,Cisco, etc Firewall management and auditing (FireMon, Tufin, AlgoSec,RedSeal, Skybox, etc Network packet brokers (Gigamon, IXIA, NETSCOUT, etc SSL decryption (Blue Coat, F5, Gigamon, IXIA, etc Public key infrastructure (PKI) Cloud access security brokers (CASB) (Symantec / Blue Coat /Elastica, Adallom, Skyhigh, etc Hardware security modules (HSM) Authentication solutions (RSA, Entrust, smartcard, biometrics,etc Endpoint protection (Symantec, McAfee, Bit9, Tanium,CrowdStrike, Cylance, Bromium, etc Data loss prevention (DLP) (Symantec, McAfee, Websense, etc System management technologies (Symantec, Microsoft, HPE ServerAutomation, etc Virtualization on scale (VMware, Microsoft, Citrix, etc VM segmentation (VMware NSX, Illumio, vArmour, GuardiCore, etc Mobile device management (MobileIron, AirWatch, etc Log collection and aggregation (ArcSight, McAfee / Nitro,Splunk, IBM/QRadar, etc File integrity monitoring (Tripwire, NNT, etc Microsoft Office 365 security Azure and/or AWS security. Understanding of basic financial analysis in support ofproviding cost estimations in delivery of large-scale security programs andassociated activities. Ability to develop new portfolio solutions from concept to market(methodology development, marketing, sales/internal training, etc Demonstrable experience in soft consultancy skills (i.e.,deliverable generation, communications, executive level presentationdevelopment/delivery Experience and knowledge of security management frameworks inmultiple industries like finance, pharma, manufacturing, travel/transportation,retail or insurance. Able to build technical security documentation. Able to conveycomplex information security and data protection topics in a simple effectivemanner. Working knowledge of common IT security impacted regulationsand/or standards such as HIPAA/HITECH, PCI, Sarbanes-Oxley, GLBA and GDPR. Working knowledge of common IT frameworks such as COBIT, ISO20000, ITIL, MITRE ATT&CK, IEC 62443, ISA 99. Self-motivated individual who is keen to take ownership ofallocated tasks and drive them to completion. A technical bachelor degree is preferred. Preferred security certifications: CISSP, ISSAP, GIAC, etc. Preferred vendor certifications: Check Point, Cisco, F5,Symantec / Blue Coat, Palo Alto, Aruba, etc. Cloud Security experience desirable. Responsibilities Understand networksecurity from a market offerings and threat landscape perspectives and to guideclients through the challenges they will face. Understand networksecurity infrastructure, cloud environments, zones, and vendors. Advise multipleclients (usually not concurrently) and contribute to the development andpresentation of secure solutions to leadership and technical teams. Assess risks andbenefits of technical solutions and advise clients through effective oral andwritten communications/deliverables. Perform consultingservices as part of any of the lifecycle stages: planning, designing,implementing, operating, optimizing, decommissioning. Develop technicalroadmaps for customers which will enable them to execute upon strategiesdeveloped. Provide assistanceand support on security issues to sales and other team members as required toachieve overall benefits for the delivery of services to the customer andcompany as a whole. Share technical knowledge and experiences. Gain and maintain aworking knowledge of the DXC Portfolio of Security Products and Services.