TIAA Sr Network Security Engineer in NEW YORK CITY, New York
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
For more information about TIAA, .
TIAA’s Production Services & Architecture (PS&A) team isresponsible for all architecture, engineering and infrastructure operations of our core technology assets as part of a streamlined, strategic approach that ensures low cost, high quality delivery from initial architectural decisions through engineering to long-term operational support. The PS&A team collaborates closely with our business-aligned partners in technology and with key stakeholders across the enterprise.
As a Senior Network Engineer for network security you will have the opportunity to participate in the engineering of TIAA’s enterprise security environment. In this role you will work closely with Lead Engineers and internal customers to leverage applicable best practices for security design and enterprise business solutions. Your role will be responsible for periodic escalation support in a 24/7 environment addressing complex production impacting technical issues. You will be accountable for leading problem management and resolution for deployed firewall technologies and will act as a subject matter expert on high severity production issues.
KEY RESPONSIBILITIES AND DUTIES:
Translate security architecturesand project requests into engineered designs for the enterprise securityenvironment
Implement defense-in-depthmethodology for all new systems and services
Integrate security architectureswith cloud services vendors
Use proven technologies with inarchitectural guidelines to develop solutions that expand services across theclient base
Work with various vendorsolutions and designs new security solutions to integrate new and existingclient environments
Leverage applicable bestpractices for security design and enterprise business solutions
Lead problem management andresolution in the support of deployed technologies and acts as a subjectmatter expert on production outages
Conduct network assessments tovalidate an enterprise baseline and provide context for future networkdirection
Work with outsourced vendors todrive technical accountability of network standards, baselines, architecture,and solutions engineering
Work with outsourced vendors todrive sound engineering designs, and configuration templates
Participate in technologygovernance boards and/or councils
Generate conceptual, logical,and physical security architectures, documents, testing analyses, testplans, and risk assessments to ensure a sound architecture that meetsclient needs
Actively participate in the resolution of operationalissues, includingeffectively working with crossfunctional teams and outsourced vendors as needed
Promote operational stability by assisting with thecreation and tracking the implementation of network securityinfrastructure changes
Five or moreyears of networking and firewall experience
Experiencewith Palo Alto and Cisco ASA/FirePower platforms
Experiencewith layer 2 and layer 3 firewalls
One year experiencewith IPSEC, VPN, and SSL
Bachelor’s degree in computer orinformation science preferred
Knowledge ofNext Generation Firewalls.
PaloAlto ACE Certification
Experiencewith content filtering and web application proxies
Previousexperience with App-ID and User-ID, Panorama, PXGrid, PBR, NAT on PaloAlto and Cisco ASA platforms
Generalunderstanding of Routing, Switching, Virtual LAN Switching, L2 Bridgingand STP, TCP/IP, OSPF, BGP, Cisco Nexus/ACI
Strongcommunication skills (both written and verbal), customer service skillsand strong attention to detail ability to interface with all levels ofstakeholders
EqualEmployment Opportunity is not just the law, it’s our commitment. Read moreabout the .
If youneed assistance applying due to visually or hearing impaired, please email .
We are anEqual Opportunity/Affirmative Action Employer. We will consider all qualifiedapplicants for employment regardless of age, race, color, national origin, sex,religion, veteran status, disability, sexual orientation, gender identity, orany other legally protected status.
- Requisition ID: 1719106
Post Date: Jul 28, 2019