Firewall Administrator

• Supports the service owner and may serve as a service offering lead in the delivery of security technologies.
• Leads the evaluation and recommendation of hardware and software systems that provide security functions.
• Leads security assessments of technology systems and recommends system changes to ensure adherence to standards, policy, guidelines, strategies, and security best business practices.
• Generating, gathering, and tracking security metrics, developing scorecards for the metrics, and communicating the results to technology leadership.
• Participates in planning sessions related to projects or new technologies to implement process improvement within the functional area. Documents discussions and agreements. Facilitates gate review, change advisory boards and IT operational meetings.
• Works to consistently learn and share advanced skills and practices that promote team excellence.
• Builds relationships with developers, stakeholders, security champions, and scrum masters to incorporate security principles into engineering design and deployments.
• Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads.
• Build services and tools to enable developers and engineers to easily use security components produced by security team members. ?Support the ability to "shift left" and incorporate security early on and throughout the development lifecycle.
• Identify vulnerabilities in code through automated and manual assessments, and promote quick remediation.
• Regularly research and learn new tactics, techniques and procedures (TTPs) in public and closed forums, and work with colleagues to assess risk and implement/validate controls.
• Assesses process improvements needs utilizing a structured requirements process (gathering, analyzing, documenting, and managing changes) to assists in identifying priorities and advises on options.
• Leads quality test activities and validates test completeness in preparation for go?live.
• Basic understanding of ICS/SCADA cybersecurity concerns.
• Provides subject matter expertise to resolve problems, security incidents and conduct forensic investigations.
• Understands the TCP/IP stack with prior hands-on expertise securing diverse LAN, WAN, VPN, and wireless environments for large organizations
• Hands-on experience performing maintaining, upgrading, testing and/or implementing firewall configuration changes and assessing impacts of changes on applications and other related systems
• Familiarity with and ability to investigate Intrusion Detection System (IDS) and/or Protocol-base Intrusion Detection System (PIDS) alerts
• Develops and updates technical documentation (network architecture text and diagrams, security plan controls, and risk assessment, etc.)

Ability to work nights, weekends and holidays as needed to support planned and unplanned network maintenance and troubleshooting events