Onsite/Local Network Security Engineer/Architect (CCSP/Security/Routing & Switching CCNP) with FTD, Palo Alto/Checkpoint/Fortinet, VPN, Cisco Umbrella/Secure Access/SecureX, deploying ZTNA/SASE experience

Job ID: SC-9810 (914790217)

Onsite/Local Network Security Engineer/Architect (CCSP/Security/Routing & Switching CCNP) with FTD, Palo Alto/Checkpoint/Fortinet, VPN, Cisco Umbrella/Secure Access/SecureX, deploying ZTNA/SASE experience

Location: Columbia, SC (SCCOURTS)
Duration: 6 Months
Work Location: Role is fully onsite (some flexibility to remote work can be discussed after 30 days in the role)
Candidate location: Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense.

Must Have/Required Skills:
• 3+ years of experience monitoring and analyzing existing rules and converting them into least-privilege rules for both private and web policies
• 3+ years of experience deploying and administering Cisco Secure Firewall for remote access and IPSEC-based VPN
• 3+ years of experience with Cisco endpoint web filtering technologies or similar technologies (Palo Alto, Checkpoint, Fortinet)
• 2+ years of experience deploying ZTNA or SASE tools

Preferred/Nice to Have Skills:
• Previous deployment experience with Cisco SSE and ZTNA architecture and products, or similar experience with other vendors
• Experience with Cisco SecureX, Secure Endpoint, and the Cisco Secure Client
• Experience administering Cisco Secure Access
• Experience administering Cisco Umbrella including Secure Internet Gateway products
• Experience designing, implementing, and managing Secure Access to support enterprise security strategies.
• Experience deploying Cisco Remote Access VPN solutions on Cisco’s ASA platform
• Experience administering and interfacing with Check Point firewalls

Preferred Education and/or Certifications:
• CCNP Security
• CCNP Routing and Switching
• CCSP

Additional Skills:
• Ability to communicate and coordinate with identified IT and business stakeholders
• Ability to train IT staff for ongoing administration of the product

Description:
This engineer will be responsible for deploying, administering and supporting Cisco ASA, Cisco Secure Firewall, and Cisco Secure Access products to document existing policies and to migrating existing policies. This includes migrating existing Umbrella SIG policy to Secure Access, deployment of web filtering rules to replicate currently permitted access, and to assist in deployment of remote access VPN and ZTNA-based access for end users.

SC_E-RTR.docx

SCMSP_Candidate_Cover_Sheet_Updated.docx