Network Security Engineer

Overview

StaffDrafts is seeking a Network & Security Engineer with experience/knowledge in Information Technology area to support the development and hosting of CTRM (Clinical Trials Research Management) and related applications for a Rockville, MD based health informatics solutions company. This position is part of the Information Resource Management (IRM) team working as technical support engineer on all our current contracts supporting internal as well as external requirements. The candidate in this position will be responsible for handling Engineering and IT operational projects and technical support calls and issues related to networks, servers, desktops and any IT or telecommunications related infrastructure:

Responsibilities

Project-related Responsibilities:

• Execute setup, configuration, and operations on networking devices, including routers, firewalls, content monitoring systems, load balancers, and network switches.
• Demonstrate expertise in planning and executing networking projects, encompassing periodic upgrades and updates to networking devices.
• Conduct disaster recovery simulations, firewall audits, and actively support ISO compliance audits.
• Manage AWS cloud connectivity and security, specializing in technologies related to linking AWS to co-location and on-premise networks.
• Assist in the administration and maintenance of Company and Project IT infrastructure, including VoIP telecommunication systems.
• Possess strong TCP/IP network experience with a deep understanding of key network protocols, routing, VLAN, switching, and proficiency in utilizing packet sniffers.
• Interpret security scan results, identify critical vulnerabilities, and recommend corrective actions for remediation.
• Generate uptime, usage, and security reports for various IT services.
• Evaluate, test, and install security updates using automated tools and applications.
• Provide Tier 1-3 help desk support in a 100+ server and user environment, responding to help desk requests via phone and online systems.
• Set up user accounts, rights, security, systems, and network groups with appropriate privileges.
• Contribute to the planning and implementation of systems recovery and disaster recovery.
• Manage Windows-based high availability server clusters and fault tolerance solutions, including Network Load Balancing.
• Participate in inventory management of software licenses, software, hardware, and other infrastructure components.
• Troubleshoot advanced hardware and software problems.
• Manage virtual infrastructure hosts and virtual servers based on Microsoft Hyper-V/VMware technologies.

Functional Responsibilities:

• Contribute regularly to the development of new concepts, techniques, and standards.
• Constantly optimize existing processes to reduce costs and improve service reliability.
• Apply expertise and possess knowledge of related disciplines.
• Conduct seminars and presentations on topics of interest to the IRM/Center for Information Technology Group

Qualifications

Technical Concepts/Tools Experience:

• 4+ years working with Cisco Next-generation firewalls and UTM devices.
• Experience with continuous security scanners, automated configuration management tools, and NAC security.
• Understanding of system and network security concepts, familiarity with security tools such as Nessus scanner, ISS System Scanner, or similar tools.
• Knowledge of third-party applications and tools, Windows 2016 Server/Enterprise Server, Microsoft business productivity products, and Windows Active Directory.
• Experience with Windows Hyper-V Virtualization (or VMware virtualization suite) and creation, implementation, and maintenance of Disaster Recovery Security Plans.

Non-technical skills:

• Excellent written and verbal communication skills.
• Strong problem-solving, critical thinking, and creative thinking abilities.
• Proactive in seeking opportunities to broaden and deepen knowledge base and proficiencies.
• Excellent teamwork.

Required Skills:

• Hands-on experience with Cisco Firepower firewall, Firepower Threat Defense (FTD), ASA 5516, Cisco gigabit switches.
• Cisco ISE (Identity Service Engine), ISP high availability/load balancing devices.
• MS in Information Technology or Computer Science.
• Current Cisco CCNA and CCNP - Security Certification.
• Experience with Windows 2016 and higher and Hyper-V virtualization technology.
• Technical professional with 4-5 years of network administration experience primarily in Windows 2016 and higher environments.

Desired Skills:

• AWS cloud certifications.
• Site-to-site connectivity between AWS cloud and on-premises and colocation sites.
• ISO 9000, 27000, 20000-1 audit support.
• Wireless device management.
• Industry certifications and hands on in Windows 2016 or higher.
• Hands-on knowledge of Linux operating system with advanced configurations.

Benefits Includes:

• Health, Dental, Vision, Life Insurance, 401K with Company Matching, Performance Based Bonus Program, Paid time off.