Senior Security Engineer job in Lynn at Eastern Bank

Responsibilities include, but are not limited to the following:

• Ongoing configuration changes, monitoring and maintenance for Palo Alto and CheckPoint firewalls, including installation and maintainence, creation and optimization of rule base, global objects, IDS/IPS policies, and Panorama management systems.
• Analyze data, make recommendations for remedial action and/or security enhancements based on detailed analysis and ensure proper communication of issues and/or recommendations to both technical and non-technical audiences. This includes remediation efforts for day to day reported trouble tickets from internal customers.
• Understanding adversarial Tactics, Techniques and Procedures (TTPs) in order to design and implement detection and prevention techniques across multiple environments including network, endpoint, and applications, particularly through use of the bank SIEM solution.
• Define and drive security-based process improvements through project participation and continuous improvement efforts. Research, recommend and implement new and emerging technology platforms that are in line with security architectural principles.
• Provide hands-on technical leadership and technical mentoring to other engineers.
• Create and maintaining security documentation including security architecture diagrams, procedures, and Bank security standards.

REQUIREMENTS:

• 5+ years of hands-on experience implementing, configuring, and managing enterprise-grade next-generation security platforms.
• Palo Alto PCNSE and/or ACE certification preferred.
• Checkpoint Certified Systems Engineer (CCSE) Certification preferred.
• CISSP or similar security and management certifications preferred.
• Subject Matter Expert level knowledge in designing and managing complex security platforms including firewall, IPSEC and SSL VPN, IPS/IDS, Advanced Networking, Acceleration & Clustering technologies. Excellent written and oral interpersonal communication skills, with a strong ability to produce technical documentation.
• Must be willing to work flexible hours and an on-call rotation.

Education and Experience:

• College degree or equivalent combination of training and experience plus at least 5+ years working as a security engineer/architect with experience maintaining next-generation security platforms.
• Experience in large scale enterprise and service provider networks.
• Experience with project management methodologies.
• Experience in securing cloud environments such as Microsoft Azure is preferred.
• Experience with Cisco ACI is a plus.

Skills/Knowledge: Demonstrable knowledge and understanding of the following:

• Network topologies / design: routing, switching, and MPLS/ELan technologies
• Palo firewall technology, design, and administration
• Global load balancing technology design and support
• IP networking (TCP/IP and packet analysis)
• Network and system attack knowledge
• Remote access design and implementation with various dual factor authentication methods
• Two factor Authentication systems
• Advanced anti-malware platforms
• Knowledge of Linux and Windows system administration