Job Description :
Cloud Network & Security Engineering :
- In this role the candidate is responsible for the design, development and management of Data Centre, Cloud Network and Security services infrastructure.
- He or She will build, manage and enhance a highly fluid network, and managed security service while understanding the challenges of supporting a 24x7 operation.
- This candidate should use strong understanding of all aspects of a highly converged data center network and the ability to troubleshoot, identify and resolve very complex problems in a timely and professional manner.
- The role also requires strong execution and focus to meet the needs of our Cloud customers.
- He or She will also help in the build of runtime environments and will be responsible for developing and maintaining these environments for high-availability, ease of maintenance, and scalability.
- Frequent collaboration with customers will also be important, especially when dealing pre-sale process explaining the key features and benefits of our Cloud and Security services for relevant use-cases.
- The position also requires a high level of technical knowledge and experience in security configuration, and implementation practices.
- He or She should be able to lead security implementation and management projects and their scoping including having tracked and managed projects to completion.
Some of the core competencies are :
- Design Security Architecture, Technology Security Vulnerability Management, Security Policy Management, Patch Management, Risk Management, Compliance Management, Incident handling and response Management, Network Security and Cyber Threat & Attack Investigations.
- Will be responsible for network and security services architecture for, Data Centre & cloud and storage services.Working knowledge on Openstack Cloud IaaS deployments would be necessary.
Work experience : 12-15+ years of relevant experience
Key Responsibilities :
- Design, Implement, and support maintaining network services serving as one of the highest levels of escalation for network and security issues.
- Make ongoing recommendations of network policies and standards.
- Manage multiple medium- to large-scale projects in a fast paced challenging environment.
- Quickly turn business problems into technical solutions.
- Manage configurations and the deployment of equipment in compliance with established technology policies.
- Recommend technical solutions that will enhance performance, increase redundancy, and add flexibility to the existing infrastructure.
- Troubleshoot and resolve network performance issues.
- Maintain system and network availability and monitor network services.
- Maintain the appropriate relationships with 3rd party vendors and evaluate vendor hardware, software, and communications products and to provide recommendations.
- Design and implement data communication architectures including: integration of applications, data, and other infrastructure architectures
- Oversee all aspects of our Cloud Network & Security infrastructure
- Document high-level design of the cloud network and its associated components part of the overall service.
- Regularly interact with other team members to offer assistance in troubleshooting, and knowledge transfer activities in effort to cross-pollenate others with the required knowledge to effectively support our cloud environment
- Work directly with customers- IT staff and/or Network Consulting vendors to implement, troubleshoot, and optimize networking solutions.
- Candidate should have a deep understanding of various security technologies and controls.
- Demonstrated hands-on experience analyzing logs, network data, and other attack artifacts in support of incident investigations.
- Experience with malware analysis concepts and methods
- Ability to respond to and interpret security incidents, and to provide root cause analysis.
- Utilizing creative problem-solving abilities and a consistent consultancy mindset while working on, as well researching problems and/or issues and developing and/or offering effective solutions.
- Understanding or working knowledge on open-source network services such as Open V-Switch, Iptables, HA proxy etc will be required.
- Understanding of projects such as Open daylight and knowledge of Cloud Security Alliance's Cloud Control Matrix would be an added advantage.
- Understanding of Openstack deployment for Cloud IaaS services and its network and security service capabilities will be required.
- SDN and NFV knowledge will be suitable for handling Cloud Services engineering.
Technical skills :
- Current professional level certification: CCNP/JNCIP/FCNSP/CCNP-Security or equivalent
- Professional level certification CCIE/JNCIE a plus
Role and responsibilities
- Design, engineer and enhance DDoS product line
- Design, develop and deliver technical solutions based on products and solutions
- Managing solution implementations and related troubleshooting - Collaborate and assist internal teams during new service roll out
- Perform cross functional trainings and KT sessions
- Analyze, diagnose and repair network and service outages and incidents. Simulating network incidents in LAB to identify root cause
- Maintain updated product and service life cycle documentations
- Lead and mentor a technical team
- Should have experience in o Planning and designing enterprise class LAN/WANs and Datacenters o Either operating or engineering service provider class network o Implementing, design DoS, DDoS mitigation systems o Network based security mitigation systems o Services like WAF, cloud WAF, proxy etc o SDN/NFV technologies o Open V-Switch, HA Proxy, Iptables and similar open source components.
- Should be proficient in new trends like Network Function Virtualization [NFV] and various Software defined networking [SDN] technologies
- Strong understanding of network design principles, strategies and best practices - Understanding of TCP/IP protocol stack and operation
- Strong understanding of Layer 1 till Layer 4 of OSI protocol stack
- Operation of TCP, UDP, ICMP, IPv4, IPv6, DNS, HTTP, HTTPS - Strong VPN technology understating such as IPSec based VPNs, GET VPN, DMVPN, GRE
- Strong understating on UTM technologies such as IPS,IDS, Url Filtering, AntiX, DoS, DDoS
- Strong hands on experience in products like Radware, Arbor, F5 .
- Strong Understanding on Server Load Balancing, Global Site Load Balancing
- Understanding of MPLS and its operations
- Hands on experience in - Routing protocols - RIP, OSPF, BGP, EIGRP At least two of them o - Switching protocols - STP, RSTP,MSTP, VTP, GVRP, LACP, Q-in-Q, VLAN o - Security - Firewall, IPSEC and SSL VPN, DDoS mitigation and control, Access control o
- Server load balancers, global server load balancers - SNMP - Version 2 and 3, traps
- Should have experience in troubleshooting critical and complex network issues
- Should have experience in testing and evaluating new features and products
- Should have hands on in multi OEM environments
- Understanding services like CDN is a plus
Didn’t find the job appropriate? Report this Job