The Senior Systems Security Engineer will test and evaluate network security systems and processes to eliminate problems and make improvements.
This role requires providing engineering expertise in identifying process improvement and automation opportunities.
The engineer will manage network and security systems within a global multi-region, multi-tenant cloud environment (AWS, Azure, GCP, etc.) and on-premises, including AWS WAF, Imperva SecureSphere WAF, Incapsula WAFs, McAfee and Checkpoint IPS appliances, Fortinet Firewalls, and more.
Responsibilities include supporting Network and Systems Security, capacity planning and management, and planning for disaster recovery, contingencies, and business continuity.
The engineer will actively seek out inefficient workflows and collaborate with leadership to establish roadmaps for streamlining or automating those workflows.
The role involves working with leadership and cross-functional teams to establish processes that will reduce MTTI/MTTD/MTTR.
The engineer will prepare business cases, deployment plans, migration plans, and detailed bills of materials for presentation to leadership for new deployments.
Creating executive and technical-level communications to gain credibility and trust from internal and external customers is essential.
The engineer will convey technical information and solutions to different audiences using various formats such as whiteboards, presentations, or written communications in a workshop format.
Consulting, assessing, auditing, designing, and interviewing stakeholders to resolve highly technical requirements is part of the job.
The engineer will research and stay ahead of emerging tools, techniques, and technologies while maintaining deep current technical knowledge of network, network security, and cloud technologies.
Direct support for the global network, including after-hours support, is required as needed.
Requirements:
Candidates must have 8+ years of validated experience in managing, provisioning, and designing network security technologies in a large globally diverse environment.
Expert-level hands-on configuration of networking equipment, management tools, and network analyzers is required.
In-depth experience managing Imperva WAF, Incapsula Cloud WAF, and AWS Cloud WAF is necessary.
Candidates should have in-depth experience managing Trellix IPS and Checkpoint IPS.
Proven experience in writing detailed methods of procedure and maintaining documentation, including the creation of Visio drawings, is essential.
A demonstrated strong consultative mindset with collaboration skills for uncovering unmet technology-based needs and translating those requirements into strategic solutions is required.
Network automation experience with Python and/or Ansible is necessary.
Any WAF certifications are preferred.
Candidates must have an expert-level understanding and implementation of commonly deployed WAN technologies and concepts such as P2P, MPLS, VRF, Wave, SONET, DWDM, SDWAN, and WAN Optimization.
Experience with Layer 3 technologies, including IPv4, BGP, OSPF, EIGRP, PIM, HSRP, DMVPN, NHRP, and GETVPN, is required.
Experience with Layer 2 technologies, including Spanning-Tree, VLANs, QinQ, and Dot1q, is required.
Candidates should have experience with traffic prioritization technologies and techniques, including QoS, TOS, COS, LLQ, CBWFQ, WFQ, shaping, policing, and MPLS-VPN QoS.
Experience with cloud networking technologies is necessary.
Operational experience with load-balancing technologies such as Citrix and VMware is required.
Benefits:
Experian offers best-in-class family well-being benefits, enhanced medical benefits, and paid time off to support employees' work-life balance, health, safety, and well-being.
This position is a hybrid remote/in-office role, providing flexibility in work arrangements.
The role is an individual contributor (non-managerial) position, allowing for focused contributions without managerial responsibilities.
