Network Security Engineer

CBRE - Irving, TX

posted 5 months ago

Full-time - Mid Level
Irving, TX
Real Estate

About the position

The Network Security Engineer position is a critical role within the organization, focusing on the protection and integrity of the company's network infrastructure. This role encompasses a wide range of responsibilities, including the implementation and management of firewalls and network filters across various environments, including enterprise, store, and cloud networks. The engineer will be responsible for developing and enforcing intrusion prevention policies, ensuring secure site-to-site and remote-access VPN connectivity, and managing network access control systems. Additionally, the role involves overseeing authentication, authorization, and accounting processes, which include the implementation of multi-factor authentication to enhance security measures. The Network Security Engineer will also work with web access proxy servers and URL filtering to safeguard against unauthorized access and threats. DNS security is another critical area of focus, where the engineer will conduct threat research, vulnerability remediation, and the creation of compensating controls to mitigate risks. The position requires the creation of network security policies, documentation of exceptions, and obtaining necessary approvals to ensure compliance with organizational standards. In this role, the engineer will provide valuable suggestions to the team lead or manager regarding their professional development and training plans. Prioritization of tasks and projects is essential, as the engineer will need to assess the importance of various assignments in relation to business objectives. The engineer will also assist junior teammates in maintaining proper prioritization and will be expected to solve diverse and complex issues that require in-depth analysis of situations and data. Collaboration is key in this position, as the engineer will work closely with senior engineers to define network security requirements for current and future architectures. This includes advancing security controls and enhancing the overall security posture of the business. The engineer will assist in collaborating with development and engineering teams to prioritize security risks, provide mitigation recommendations, and implement compensating controls. Furthermore, the role involves conducting network security architecture reviews, third-party risk management assessments, and platform testing to ensure the robustness of security measures. The engineer will also participate in proof-of-concept testing for potential network security solutions and will be involved in the development and maintenance of network security policies, standards, processes, and workflows. By identifying and recommending network security products and technologies, the engineer will contribute to the mission of providing appropriate protection for all data traversing the network, whether it is sent or received from various public or private clouds or the Internet at large.

Responsibilities

  • Implement and manage firewalls and network filters in enterprise, store, and cloud networks.
  • Develop and enforce intrusion prevention policies.
  • Ensure secure site-to-site and remote-access VPN connectivity.
  • Manage network access control systems.
  • Oversee authentication, authorization, and accounting processes, including multi-factor authentication.
  • Work with web access proxy servers and URL filtering.
  • Conduct DNS security measures.
  • Perform threat research, vulnerability remediation, and create compensating controls.
  • Create network security policies and document exceptions for approval.
  • Provide suggestions for professional development and training plans to team lead/manager.
  • Prioritize tasks and projects based on business objectives and assist junior teammates with prioritization.
  • Solve complex issues requiring in-depth analysis and provide escalation support to teammates as a subject matter expert (SME).
  • Work on projects to advance partnership opportunities between the Network Security team and other business areas.
  • Collaborate with senior engineers to define network security requirements for current and future architectures.
  • Assist in prioritizing security risks and providing mitigation recommendations with development and engineering teams.
  • Conduct network security architecture and third-party risk management reviews.
  • Perform network security platform testing, vulnerability remediation, and operating system hardening.
  • Assist in proof-of-concept testing for network security solutions under consideration for purchase.
  • Develop and maintain network security policies, standards, processes, and workflows.
  • Identify network security products and technologies to enhance data protection across the network.

Requirements

  • Proven experience in network security engineering and management.
  • Strong knowledge of firewalls, VPNs, and network access control systems.
  • Experience with intrusion prevention systems and policies.
  • Familiarity with web access proxy servers and URL filtering.
  • Understanding of DNS security and threat research methodologies.
  • Ability to conduct vulnerability remediation and create compensating controls.
  • Experience in developing network security policies and documentation.
  • Strong analytical skills to solve complex issues and provide technical guidance.
  • Ability to collaborate with cross-functional teams and assist in prioritizing security risks.

Nice-to-haves

  • Certifications in network security (e.g., CISSP, CISM, CEH).
  • Experience with cloud security solutions and architectures.
  • Familiarity with compliance frameworks (e.g., PCI-DSS, ISO 27001).
  • Knowledge of scripting languages for automation of security tasks.

Benefits

  • Health insurance coverage.
  • 401k retirement savings plan.
  • Paid holidays and vacation time.
  • Professional development opportunities.
  • Flexible scheduling options.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service