IT Network Specialist, Senior

Requisition ID # 162667 

Job Category: Information Technology 

Job Level: Individual Contributor

Business Unit: Information Technology

Work Type: Hybrid

Job Location: Oakland; Auburn; Concord; Sacramento

 

 

 

Department Summary

Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively to deliver high quality technology solutions.  

 

Position Summary 

The Senior IT Network Specialist is a highly organized, thorough, security-minded problem solver focused on the protection of PG&E information system assets against compromise and cyber-attacks. supporting and deploying Tufin is a plus.

 

The successful candidate is responsible for maintenance of security solutions to ensure the stability and security of PG&E infrastructure for both on premise data centers and cloud deployments. They will have knowledge and broad functional experience with Firewalls, AWS, ADC, IDS/IPS across a wide range of complex architectures, platforms, and mediums. This position will assist with the secure operation and maintenance of network systems in a mission-critical, 24/7 environment. 

 

The successful candidate must be able follow operational procedures, ensure requests are compliant to operational standards and document all changes to production environments. They must also document all work for metrics and billing reporting using a designated change management or request system.  They also participate in audits from outside vendors and government regulators (NERC, WECC, etc.).

 

The position is hybrid working primarily from your home office with in-person visits 1-2x monthly or as business needs require. The headquarters location is flexible and can be based out of Auburn/Sacramento/Concord/Oakland.

 

PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors.

 

This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.

 

A reasonable salary range is:

 

Bay Area Minimum: $109,000.00
Bay Area Maximum: $175,000.00

 

OR

 

California Minimum: $104,000.00
California Maximum: $166,000.00
 

 

Job Responsibilities

• Performs complex operation, management, and maintenance of network security systems, linked systems and peripherals to enhance network security operations, in accordance with processes and procedures.

• Responsible for complex technical support and administration of critical infrastructure network security components (e.g. firewalls,  load balancers, etc.).

• Maintains and operates systems and services associated with PG&E’s telecommunications infrastructure, providing 3rd tier support by analyzing, diagnosing and resolving more complex problems.

• Works closely with other IT groups to ensure systems are maintained in an efficient manner, and communicates all issues, changes, outages, and maintenance in accordance with processes, procedures, and policies.

• Develops, recommends, and implements enhancements to processes, procedures, training materials to continually improve efficiencies and knowledge across the team and organization.

• Provides support for projects of higher complexity and follows project management principles for project implementation, which include collaboration with project team members, planning, prioritizing, and implementing deliverables, supporting projects on-site or in a remote manner.

• Works closely with team members providing consultation, evaluation, testing and recommendations to other IT Professionals and Stakeholders for technology-based products and services.

• Builds functional expertise amongst the team and specifically peers by leading training, presentations, developing and documenting materials that can be used to support and transfer knowledge to others (installations, upgrades, troubleshooting, problem resolution, etc.)

• Ensures compliance with industry, regulatory and company standards and assists in developing strategies and plans to resolve gaps.

• Supports and maintains training class curriculum, conduct internal classes and coordinate vendor training.

 

 

Qualifications

Minimum:

• BA or BS degree in Computer Science, Engineering, Business or related discipline or equivalent experience
• 4 years of  network, network security or IT operations experience

 

Desired: A

• Experience with Cisco ISE
• Experience with Palo Alto next generation firewalls
• CISSP or other industry standard network security certification
• Experience with encryption protocols such as SSL or SSH
• Experience with VPN using IPSec or SSL VPN
• Experience with firewall rule automation tools such as Tufin
• Experience with monitoring or syslog collection/analysis tools
• Experience in the Utility Industry and meeting audit requirements for NERC and WECC
• Experience with Cisco VSG or VMWare ESX firewalls
• Experience with Cloud-based solutions
• Experience with IDS/IPS
• Experience with Wireshark, ANUE/IXIA
• Experience with Application Delivery Controllers (preferably F5)
• Experience or knowledge of DNS or DHCP
• Experience with web, middleware, or database servers
• Experience with Cyclades or other serial console terminal servers

 

Knowledge, Skills, and Abilities:

• Demonstrated team player with strong and effective customer care skills
• Experience building and maintaining complex network maps
• Experience with developing scripts to automate infrastructure deployment and collect metrics
• Experience with Automation software such as Ansible, Chef, Jenkins, and Puppet
• Experience with various network security tools such as Infoblox (IPAM, DNS), Cisco ISE, PRTG, Netbrain, Tufin,Skybox and QRadar
• Familiar with network monitoring tools such as NetMRI, Netflow, and provide metrics in this area
• Experience with multi-vendor firewall technologies including Palo Alto Networks and Cisco
• Experience with F5 Application Delivery Controllers
• Experience in Network monitoring and troubleshooting techniques, including SNMP monitoring tools, packet sniffing, protocol analysis and bandwidth utilization.
• Understanding of network security concepts, including segmentation and defense-in-depth strategies
• Ability to create VLANs, routes and configure network interfaces on switches, routers, and firewalls to facilitate the building of DMZs and create network segmentation
• Ability to troubleshoot and pinpoint network issues outside of firewalls
• Understanding of network concepts from layer 2 through 7 including NAT/PAT and application identification (Palo Alto AppID)
• Ability to work with Architects, Solutions Engineers, and Project Managers to meet aggressive project deadlines. 
• Available for 24x7 on call rotation

 

 

 

 

#featuredjob