Senior Network Engineer - GSSR Inc
Culpeper, VA
About the Job
Responsibilities:
Configure and manage enterprise-wide network DLP (Data Loss Protection) solutions to prevent unauthorized data exfiltration.
Fine-tune network DLP policies and rules based on data classification,sensitivity, and regulatory requirements.
Integrate Network DLP solutions with SIEM (Security Information and Event Management) systems for centralized security event monitoring and incident response.
Define and enforce network DLP policies and procedures in alignment with industry best practices and regulatory requirements.
Conduct regular network DLP audits and assessments to ensure compliance with data protection standards.
Configuration and deployment of ZTNA (Zero Trust Network Access) platforms in on-premises and cloud environments.
Development and implementation of network security strategies, aligning them with ZTNA principles and best practices.
Define and enforce access control policies based on user identity, device posture, and context.
Integration of ZTNA with existing security technologies like ICAM (Identity,Credentialing and Access Management), MFA (Multi Factor Authentication), and endpoint security solutions.
Perform regular network vulnerability assessments and penetration testing to identify weaknesses in ZTNA controls.
Experience configuring, deploying, and managing micro-segmentation solutions.
Understanding of micro-segmentation integration with other security tools like SIEM and SOAR (Security Orchestration, Automation & Response).
Ensure compliance with industry standards and regulations.
Investigate complex security cases and propose response procedures. Work with senior Security Management Specialists to resolve/close security cases.
Support operational teams maintaining security infrastructure (intrusion detection, remote access security, email & web security, anti-malware,WAF).
Qualifications:
Bachelor\'s degree in Computer Science, Information Security, or a related field.
5%2B years of experience in network security with a strong focus on Network Security Engineering.
Deep understanding of TCP/IP, network protocols, routing, switching,firewalls, and network security technologies.
Extensive experience with DLP solutions.
Expert knowledge of SASE, CASB, ZTNA, SWG technologies.
Extensive experience in WAF, OWASP Top10
Familiarity with ICAM, MFA, endpoint security, and SIEM solutions.
Experience conducting security assessments, risk analyses, and developing security concepts.
Experience working with distributed teams.
Excellent communication skills, written and verbal.
Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls.
Relevant certifications like CISSP, CCNP Security, or GIAC certifications are highly desirable.
Excellent communication skills, written and verbally.
Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls