Senior Enterprise Infrastructure Security Expert Engineer [Full Time]-Onsite

Senior Enterprise Infrastructure Security Expert Engineer

Salary is open w/10% bonus (please talk to candidate how much they are looking for and negotiate)

Visa- USC/GCOnsite in Overland Park KS or Chicago, IL (relocation will also work but must be willing to relocate immediately not in 2 or 3 months, etc)

Security engineer needed, can go to Overland Park or Chicago.

• Fortinet Security
• LAN/WAN network switches
• 10+ years' experience
• NSE7+ certification (or similar certifications)
• Penetration/Vulnerability testing experience

Required Skills/Experience:

• 10+ years of work experience as an Information Security Researcher or Engineer working with multiple Fortinet products such as the core products plus FortiSIEM, FortiClient, FortiEDR NSE7+ or equivalent knowledge.
• Security expert
• 7+ years' experience in LAN/WAN/Internet services administration
• 6+ years of experience with penetration testing, vulnerability testing, blue/red teaming.
• Practical understanding of tactical application of various compliance frameworks including monitoring and validating compliance.
• Ability to design network and security solutions, effectively utilize Visio, ability to create BOMs (Bill of Materials)
• Strong understanding of computer and network security, protocols, packet analysis, authentication & authorization, security protocols and attack methods.
• Experience with penetration testing and exploitation tools and methods.
• Experience with vulnerability scanners like Qualys, Tenable/Nessus, Nexpose, Whitehat Sentinel, Acunetix or similar.
• Experience with forensic data capture, evidence preservation and data extraction and analysis.
• Functional programming/scripting experience with the ability to develop custom scripts to automate or simplify tasks and data gathering/munging.
• Proficiency with administrative operation, configuration, and debugging/troubleshooting of Linux, Windows, MacOS, Active Directory, Exchange etc. and SSO/MFA technologies.
• Ability to organize & communicate effectively, both written and verbal, with technical and non-technical people across functional teams.
• A BS degree in Computer Science, Cyber Security, other tech-related degree, or equivalent experience.
• CISSP, NSE7+ or similar certification or proven knowledge and experience.
• Knowledge of the following technologies: Routing, Switching, VPN, LAN, WAN, Network Security, Stateful Firewalling, NGFW, Firewall policies, Identity based policies, NAT, IPS, AntiMalware, Botnet, Application Control, DDoS, Web Filtering
• Strong understanding in the following
• Experience with encryption and authentication technologies required
• Strong technical troubleshooting skills desired
• Strong presentation skills
• Strong communication and writing skills. Previous experience on responding to RFP's is beneficial.
• White board skills are beneficial.
• Technical knowledge in Wi-Fi, Load Balancing and Application Delivery, Ethernet Switching, ACI, API, Two Factor Auth, Malware Sandboxes, Mail Gateways, Web Application Firewalling, Cloud (AWS, Azure, etc), SDN, NFV, Virtualization, Centralized Management, SIEM, and Data Center redundancy are considered assets.
• Previously experience to work with telco and large enterprise space.
• Hands-on experience in networking and Strong understanding of common network protocols (TCP/IP, GRE, IPsec, BGP, OSPF, MPLS, VRRP, STP, IPsec, SNMP protocols).
• Hands-on experience with Carrier / ISP Routing in building and managing large-scale BGP environments with publicly routable Autonomous Systems, Route Arbitration, Peering, IRRs, etc.
• Hands-on experience in security including, access and application control, in security products and technologies (e.g., Firewalls, IDS/IPS, DDos, VPN, Web application Firewall) site and content categorization and SSL encrypt/decrypt functions.
• Strong technical and problem-solving skills, including experience in at least one scripting language (Bash, Python, etc.) to develop automated methods to mitigate and remediate network events.
• Experience in network, servers, and systems monitoring (Zabbix, Nagios, etc.) to analyze and diagnose data and identify root causes to network issues.
• Knowledge in server virtualization (VMware, KVM, etc.).
• Knowledge in change management process.

Bachelor's degree in Computer Science, Software Engineering or related field, and equivalent combination of training and experience is desirable with minimum of CCNP level of education.