Engineer II, Network Firewall

The Network Firewall Engineer provides modern engineering approaches for safeguarding IT infrastructure. This role is responsible for developing and deploying protective measures based on IT security policies and operational standards, on-prem and in the cloud. The Network Firewall Engineer works closely with IT team members (operations and security) to evaluate, design, implement, and document WAN, VPN, internetworking solutions in alignment with business needs.

What You Will Do:

• Conducting advanced security event detection and threat analysis for complex events.
• Manage firewall and network security systems by establishing and enforcing approved rules and policies.
• Analyze network security requirements and implement perimeter security changes.
• Utilizing industry best practices for security, disaster recovery, business continuity, and change control, the engineer designs, configures, manages and troubleshoots a variety of network firewall technologies.
• Serve as a subject matter expert in coordinating and troubleshooting with customers, other infrastructure support activities and business units.
• Develop network documentation of security infrastructure.
• Monitor network performance and implement performance tuning as necessary.
• Monitor, manage and troubleshoot Palo Alto Global Protect VPN configuration.
• Plan and coordinate upgrades, patches and new corporate technologies.
• Maintain an inventory of hardware.
• Perform system audits and complete necessary due diligence in preparation for new technologies.
• Work with established configuration and change management policies to ensure awareness, approval, and ultimate success of changes made to the network infrastructure.
• Provide troubleshooting and end user support when necessary.

What You Will Need:

Education and Experience

• Minimum 5+ years' experience in network security as it pertains to a global company with a hybrid cloud environment including 5 years of experience designing and implementing Palo Alto Network firewalls, Cloud firewalls in Microsoft Azure (and Microsoft Azure Government).
• Typically requires a college degree or recognized equivalent, preferably in Computer Science or related field, from an accredited university or comparable on-the-job experience. Technical certifications are a plus.

Knowledge, Skills and Abilities

• In depth knowledge of configuring and troubleshooting Palo Alto firewalls in HA mode and hands on experience handling high priority issues.
• Strong prioritization skills and able to handle multiple tasks effectively. Self-starter with the ability to work independently.
• Active problem solver, working across multiple IT and business teams for solutions.
• Articulate appropriately both in written and oral form, and collaborate with multiple teams regarding security and privacy obligations and duties.
• Sound knowledge of AAA technology, firewall management tools, i.e. Panorama.
• A10 (load balancer) and Cisco networking experience a plus.
• Familiarity with digital vaccines, deep packet inspection (pcap), traffic analysis, anomaly detection, and other security analysis to troubleshoot, confirm and resolve issues.
• Experience with Azure FW, WAFs and App GWs is a plus.
• Familiarity with NIST 800-171 or NIST 800-53 controls, CIS Benchmarks or DISA STIG (Secure Technical Implementation Guidelines) for network devices including firewalls.
• Understanding of firewall policies, rules, and configuration best practices, industry standard blacklist protocols and firewall best practices in alignment with cybersecurity, legal and regulatory requirements.
• Strong understanding of IP Subnetting, routing protocols, VLAN termination on firewalls and the ability to design, configure, test and troubleshoot in such an environment.
• Exposure to automation tools such as Ansible and Terraform is a plus.
• Working knowledge of the ABS Health, Safety, Quality and Environmental Management System.

Reporting Relationships:

Reports directly to IMS Management, as appropriate.

We set out more than 160 years ago to promote the security of life and property at sea and preserve the natural environment. Today, we remain true to our mission and continue to support organizations facing a rapidly evolving seascape of challenging regulations and new technologies. Through it all, we are anchored by a vision and mission that help our clients find clarity in uncertain times.

ABS is a global leader in marine and offshore classification and other innovative safety, quality, and environmental services. We’re at the forefront of supporting the global energy transition at sea, the application of remote and autonomous marine systems, cutting-edge technical solutions, and many more exciting advancements. Our commitment to safety, reliability, and efficiency is ever-present, guiding our clients to safer and more efficient operations.

About Our Benefits

ABS Bureau proudly offers a variety of industry-leading benefits designed to enhance the life and well-being of our employees and their families. These benefits include, but are not limited to, medical insurance (PPO and HD), dental and vision insurance, Health Savings Account (HSA), Flexible Savings Account (FSA), life insurance, accidental death and dismemberment insurance, disability leave programs, parental leave program, paid holidays, and paid vacation time. The Company provides an Employee Assistance Plan (EAP) that offers support in personal wellness, including work-life services. ABS Bureau also offers a 401K plan with a generous company match, subject to plan requirements.

Equal Opportunity

ABS Bureau is committed to the equal employment opportunity of its employees and prohibits discrimination against any employee or qualified applicant based on race, color, creed, religion, national origin, sex, gender identity, age, disability, marital status, sexual orientation, citizenship status or veteran status, or other non-work-related characteristics that may be protected under the law of the Federal Government or specific state employment laws.

Notice

ABS and Affiliated Companies (ABS) will not pay a fee to any third-party agency without a valid ABS Master Service Agreement (MSA) authorized and signed by Human Resources. Any resume, CV, application, or other forms of candidate submission provided to any employee of ABS without a valid MSA on file will be considered property of ABS, and no fee will be paid.

Other

This job description is not intended, and should not be construed, to be an all-inclusive list of responsibilities, skills, efforts or working conditions associated with the job of the incumbent. It is intended to be an accurate reflection of the principal job elements essential for making a fair decision regarding the pay structure of the job. #ogjs