Sr. Network Security Engineer

Job Summary

The Sr. Engineer, Information Security Operations, can be based in Orlando FL, Las Vegas, NV or Carmel, IN, supporting the company’s security infrastructure organization. The team provides global 24x7 support to the business across all data centers, corporate offices, contact centers, and properties.

Essential Job Responsibilities

The Sr. Engineer, Information Security Operations will be a member of an information security team that safeguards the enterprise infrastructure and information across Wyndham Destinations, both domestically and internationally. At the core, the scope of this position involves implementation, maintenance and configuration of key enterprise security devices supporting various initiatives. Specific initiatives include maintaining and configuring the following products as well as other security devices & daily operational tasks:

• Proactively monitor, maintain, manage and support network and security operations infrastructure throughout the enterprise
• Perform change control and device configuration management activities on the security infrastructure
• Provides management level reporting of firewall, proxy, and Intrusion Protection System (IPS) device activity on a periodic basis
• Participates in security incident response team activities, providing and implementing tactical risk mitigation to incidents
• Works with other Enterprise security team members to review security architecture and design documents to ensure consistency, accuracy, adherence to our compliance standards
• Provide vulnerability management and implementation support
• Participates in tactical and operational planning of vulnerability assessment activities
• Assist Senior Information Security Engineers in the review, development, testing, and implementation of security plans, products, and control techniques
• Participates in operations and tactical planning
• Engineer will be required to participate in a rotating on-call shift for 7 days per cycle

The Sr. Engineer, Information Security Operations is expected to maintain professional working relationships at all times. Contacts will include key corporate stakeholders, business unit personnel, associated working groups, and external contacts within the information security industry. The individual is expected to meet objectives with integrity and efficiency.  

Travel Requirements

Travel may be required at times on an as needed basis.  Estimated travel:  15%.

Minimum Requirements and Qualifications  

Education

• Bachelor Degree in IT field or equivalent experience

Qualifications:

• 8 years + industry experience.
• Expert troubleshooting skills and ability to research complex issues
• Extensive experience in field and ability to mentor and guide engineers
• In depth knowledge of network security best practices
• Expert level experience with Check Point Firewalls. Must have the ability to troubleshoot complex issues.
• Experience with Provider One or Check Point's Smart Center management station
• Experience managing Symantec Bluecoat proxy devices
• Experienced in configuration and implementation of:
• Checkpoint Firewalls
• Bluecoat/Zscaler Proxy
• Pulse Secure VPN
• CISCO ASA
• Cisco TACACS/ISE
• RSA Authentication Manager

Training requirements

Any certifications around the specific Network Security Operations Infrastructure tools utilized by Wyndham (Checkpoint, Bluecoat, Pulse Secure, RSA, are a plus.

Relevant security certifications preferred:

• SCNA
• GCI/GCIA
• CISSP
• CISM
• OSCP
• CCNP Security
• Other certifications may include:
• CISSP-ISSAP
• CISSP-ISSEP
• CCMA
• GSE
• CCIE-Security

Knowledge and skills

People skills:

• Ability to coordinate, work with and gain the trust of business stakeholders, technical resources, and third-party vendors.
• Able to work under pressure in time critical situations.

Process Skills:

• Strong attention to detail in conducting analysis combined with an ability to accurately record full documentation in support of IAM processes.
• Detailed knowledge of current regional and international best practices in the IAM arena.

Communication Skills:

• Ability to communicate effectively with business representatives in explaining impacts and strategies and where necessary, in layman's terms.

Technical Skills

• Check Point firewalls via Provider-1/Smart Console, GAIA R77- R80.30 experience preferred
• Checkpoint IPS Blades
• Pulse Secure and Checkpoint VPN appliances
• AWS and Security Groups
• Cisco ASA VPN (site-to-site)
• Bluecoat Proxy, Zscaler, various proxy experience
• RSA two factor configurations
• Experience with SolarWinds Orion NMS is a plus
• Demonstrated ability to work under pressure, possess good written and oral communication skills, attention to detail, and be self-motivated
• Ability to analyze business processes to improve security assurance posture of the department.
• Ability to work independently to achieve departmental objectives
• Understanding of operating system level security and user access audit logging
• Some experience with account management within Unix
• Fundamental knowledge of SOX/PCI/PII regulations

Job experience:

This role will have technical lead responsibilities. As such, the individual must have a minimum of 5 years’ experience in the area of team/vendor management, and 5 years of experience in Network Security Operations Infrastructure in large, mission-critical environments.