Network Security DMZ Architect - Core Technology Infrastructure Apply
<div> <p><span>The Network Security DMZ Architect will be responsible for DMZ network project designs with focus on Remote Access and Cloud Services solution designs. Also provide DMZ/DDoS/B2B/VPN Infrastructure Architecture for various LOB and B2B customers across various DMZ Zones including creation of network level High-level and Low-level designs and solution delivery. </span></p> <p> </p> <p><span>Key responsibilities: </span></p> <ul> <li> <p><span>Assess design submissions for security compliance against baselines</span></p> </li> <li> <p><span>Shepard requestors through technical challenges until designs are complete</span></p> </li> <li> <p><span>Act in a liaison role between Global Information Security and as an escalation point for engineering / operations</span></p> </li> <li> <p><span>Self-starter who can lead projects</span></p> </li> <li> <p><span>Ability to troubleshoot multivendor solutions in lab or POC environments</span></p> </li> <li> <p><span>Manage assigned networking projects, program components and deployments to deliver services in accordance with established company objectives</span></p> </li> <li> <p><span>Maintain a thorough understanding of Network Infrastructure, IPv4/v6, IP Routing, DNS, Security, HTTP(S), VPN, and Network Monitoring tools.</span></p> </li> <li> <p> </p> </li> </ul> <p>Required Skills:</p> <ul> <li> <p>10 years industry experience with technology domain experience </p> </li> <li> <p>Experience integrating solutions with Cloud provider environments such as MS Azure, AWS, Google, IBM</p> </li> <li> <p>Must have solid routing, switching, Cisco Nexus, Firepower/ASA, Fortinet router and DMZ/ISP experience.</p> </li> <li> <p>Solid understanding of TCP/IP concepts, SDN, OSPF, BGP, VLAN, IPSEC, ISAKMP, PKI, QOS, Multicast, <span>trunking/port-channeling,</span> FHRP protocols, enterprise level MPLS, VDC, flavors of VPC, Fabricpath.</p> </li> <li> <p>Ability to utilize DDoS tools like Arbor and Prolexic/Akamai & F5/Silverline for mitigations to include Application layer, TCP state table and Bandwidth DDoS threats.</p> </li> <li> <p>Familiar with best practices to install and deploy various Cisco routing and switching platforms such as ISR, ASR, Catalyst and Nexus.</p> </li> <li> <p>Experience with large scale, complex network/DMZ environments and Authentication mechanisms (e.g. Active Directory, Ping federate)</p> </li> <li> <p>Experience with scripting languages</p> </li> </ul> <p> </p> <p><b>Core Technology Infrastructure Organization:</b></p> <ul> <li> <p>Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world</p> </li> <li> <p>Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully</p> </li> <li> <p>Wants to be a great place for people to work and strives to create an environment where all employees have the opportunity to achieve their goals.</p> </li> <li> <p>Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.</p> </li> <li> <p>Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.</p> </li> <li> <p>Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving them what they need to remain vibrant and vital.</p> </li> </ul> <p> </p> </div>
