Network Security Engineer, Principal Job Listing at NJM Insurance Group in Trenton, NJ (Job ID R2006472)

Description

NJM Insurance Group has a full-time position available for a Network Security Engineer, Principal within the IT department. The Security Engineer will serve as a member of a team that is responsible for the design, implementation, optimization, and support of enterprise network security infrastructure, cloud and endpoint security solutions. A hybrid work schedule is available depending upon level of experience and time within the position.

Job Responsibilities:

• Research, architect, implement and monitor security solutions including networks, servers, endpoints and storage across a wide variety of systems and data types
• Daily operations to ensure endpoint security solutions are deployed appropriately and configured as desired. Interfacing with third party managed services team to triage events and act upon endpoint security alerts.
• Identify, define and document security controls. Transform information security recommendations into actionable IT security programs and solutions
• Prepare, document and maintain operating procedures, incident response procedures, security standards and troubleshooting guides. Create detailed documentation of existing security solutions
• Perform self-assessments of existing security systems to identify vulnerabilities, design weaknesses and recommend technologies and/or solutions to address the gaps
• Determine and implement industry and security best practices by performing independent research and attending training when required. Develop and maintain infrastructure security roadmap
• Triage and troubleshoot security related events to determine appropriate incident response and/or root cause
• Work with audit department to provide requested information and evidence. Understand, address and close findings in a complete and timely fashion.
• Act as the subject matter expert for multiple security product suites including firewalls, proxy servers, endpoint protection, IPS, email security, log management, content filtering, etc.
• Design and implement various encryption technologies including SSL/TLS, S/MIME, IPsec, Site to Site VPNs and data at rest encryption.
• Architect, implement and support internal and external PKI environments.
• Determine appropriate security controls for various cloud computing environments, with the ability to implement and operationalize them.

Required Skills & Qualifications:

• Excellent verbal, written and technical skills. Able to take highly technical information and present it to varied audiences in a manner easily understood.
• Hands on experience designing, implementing, operating and troubleshooting complex IT security solutions in a dynamic work environment.
• Able to work independently, as well as with a team, and is able to transform high level requirements into well thought out, well documented, secure solutions.
• 8-10 years of progressive work experience as an IT/cyber systems/security engineer. Experience with managing a team of direct reports is desired.
• Experience managing enterprise endpoint protection technologies such as Symantec, McAfee and/or Crowdstrike.
• Experience designing, implementing, and supporting security gateway solutions including Firewalls, IDS/IPS and VPNs from Checkpoint, Cisco and/or Palo Alto.
• Experience architecting, implementing and supporting Internet proxy server and web filtering solutions such as Zscaler, Forcepoint and McAfee.
• Experience with email hygiene and anti-spam solutions including Mimecast, Proofpoint and Symantec Mail Security.
• Experience creating and maintaining site to site and client VPN solutions utilizing Checkpoint, AWS and Cisco technologies.
• Experience with data encryption technologies and digital certificate management.
• Experience with back-office products such as Windows, Linux, DHCP, DNS, Active Directory, RADIUS, IIS, Exchange, SQL Server, VMware ESX and Windows networking.
• Experience with load balancing technologies such as F5, Netscaler and AWS ELB.
• Experience with Web Application Firewalls (WAF) such as F5, Silverline, Imperva and AWS WAF.
• Experience with provisioning and managing networking and security controls within public cloud providers such as AWS or Azure.
• Experience partnering with third-party Managed Security Service Providers and Information Security providers.

Legal Disclaimer: NJM is proud to be an equal opportunity employer. We are committed to attracting, retaining and promoting a diverse and inclusive workforce that is fully representative of the diversity that exists in the communities in which we do business.