Network and Security Engineer - Boston, MA

Full time, permanent role in Boston an a privately held asset management firm.

SUMMARY:
This position is part of the Infrastructure team. Responsibilities include troubleshooting issues with routing, protocols, all LAN / WAN based activities, vendors, Cisco, market data connectivity, remote access systems, Safeword authentication, DHCP, DNS, 3rd party VPNs, SIEM, Checkpoint Cisco Firewalls and VOIP. This position also will have responsibility for the operation management of our CheckPoint and Cisco security appliances. The individual will have responsibility for the cooperative design, primary configuration and implementation of security appliances; management of Nitro SIEM log management.

RESPONSIBILITIES:
• Design, configure, maintain and monitor the enterprise network including wide area and local area networks as well as IP convergence.
• Configure, install and maintain routers and switches in various network configurations supporting VLANs, Qos and advanced access-lists.
• Management, troubleshooting, and monitoring of firewalls, intrusion detection systems, enterprise anti-virus systems, enterprise log management system, and data leakage prevention systems.
• Plan, monitor, evaluate, and manage performance of network systems and makes recommendations for improvement/upgrades.
• Ensure environment is stable and in compliance with corporate security policy and industry standards
• Provide support for remote access systems.
• Provide support for all dual-factor authentication systems & security measures.
• Create firewall rules & modifications as needed – troubleshoot anything that may arise.
• Monitor infrastructure security systems, IPS/IDS, DLP, Log correlation, Anti-Virus.
• Configure, administer and troubleshooting Knowledge in Telecom VOIP Systems.
• Participates in scheduled of-hours configuration changes, services outage upgrades, and DR/BCP testing

QUALIFICATIONS AND EXPECTATIONS:
• 5-7 years experience with switching and routing in wide and local area networks
• 5+ years of experience with information security systems
• 3+ years of experience in administering and managing VOIP systems: Cisco
• 10+ years supporting an enterprise environment
• Cisco Unified Communications Deployment & Support experience vital
• Experience in Configuration & Change Management processes
• Experience analyzing Firewall and IPS logs
• Experience working with enterprise log management software; Nitro is a plus
• Excellence in testing and documentation of procedures
• Strong grasp of networking concepts and design
• Knowledge of trusted credentials (e.g., tokens, 802.1x)
• Experience in implementing and monitoring audit and event logging and analysis
• Knowledge at the expert level of TCP/IP networks, connections, wiring and cabling, and network management
• Solid knowledge of Spanning Tree Protocol
• Solid knowledge of EIGRP / RIP2 / OSPF / BGP
• Solid knowledge of Stacking Protocols. VSS experience is beneficial
• Solid experience of Checkpoint
• IPC Trader Turrets very valuable
• Advanced level networking certifications such as CCVP/CCNP (Cisco) & CCSA/CCSE (Checkpoint), CISSP a plus
• Experience with EIGRP/OSPF/RIP2, STP/RSTP, Etherchannel, VLAN tagging/trunking, VRRP/HSRP, ACL and policy enforcement, SNMP1/2/3 and monitoring platforms, packet capture and interpretation.
• Experience with: BGP, QoS implementations, multicast protocols, VoIP, SONET/WAN transport, WAN switching and routing, Juniper SSL VPN, Cisco MDS SAN storage
• Experience with NAM, WAAS, GSS, ACE, WLC, MARS, Netscalers, Nexus, 6500’s (all Cisco) – is ideal
• Understanding of market data


Please contact Albert Barsoumian with qualified resumes via email at albertb@avidtr.com or via phone at 617-951-1893.