Network Security Engineer II

 Job Description

Network Security Engineer II

For HR:  No management functions, no travel requirements, physical demands of walking, standing, bending, repetitive motion, lift 50 lbs from floor to waist.

Job Summary:

You will not see any vendor names in the responsibilities listed below.  We are more interested in aptitude and attitude, than specific OS experience.  Let us know your history, but of more interest is your grasp of technical concepts, not specific user interfaces.  We want team members who will take ownership of recognized needs and drive them to resolution, not simply perform tasks as assigned.  You will work with direction from subject matter experts (SME) on behalf of our customers (other business units within 7-Eleven), ensuring appropriate security posture is put in place in a timely manner, to allow their initiatives to succeed.  You must have a passion for learning, not simply working with what you already know.  You will be provided with the tools to produce your own career success, and should exercise initiative to seek assistance in creating that success.  You will be challenged in a fast-paced environment, but success in handling these challenges will not go unnoticed or unrewarded.

Responsibilities:

• You will be a member of a team responsible for all aspects of Network Security within 7-Eleven.  You will continue developing your substantial understanding of required job skills, and apply company policies and procedures to work on a variety of issues of moderate difficulty, in one or more (but not likely all) of the following domains.  As a senior administrator, you will receive limited direction for all but complex tasks, with more detailed guidance on new assignments:
  • Firewalls and network filters, in both Enterprise, Stores, and cloud networks
  • Intrusion Prevention policies
  • Site-to-site and remote-access VPN connectivity
  • Network Access Control
  • Authentication, Authorization and Accounting (to include multi-factor authentication)
  • Web access proxy servers and URL filtering
  • PKI and certificate issuance and management
  • DNS Security
  • Threat research, vulnerability remediation, and creation of compensating controls
  • Network Security policy creation, exception documentation and approval
  • Management of multi-factor authentication tokens
• Assist team lead/manager in creating your professional development and training plan.
• Prioritize taskings assigned based on importance to accomplishment of business objectives.  Seek assistance from senior teammates as needed.
• Complete wide range of tasks of moderate difficulty requiring considerable judgment and initiative in resolving issues and make recommendations for solutions.
• Given requirements, implement appropriate configurations on devices under Network Security team administrative control.  Resolve routine ambiguities without assistance.
• Successfully troubleshoot routine problems and escalate more complex issues to team engineers without delay.
• Implement compensating controls and mitigations to identified security risks as directed.
• Maintain network security policies, standards, processes and workflows as directed.

Requirements:

Education/Experience

• Bachelor’s Degree in Computer Science, Information Technology, Information Security, or equivalent
• 3-5 years of related experience

Certification/Licenses

• Desirable: Pursuing one entry-level vendor certification in the Networking or Network Security arenas (Palo Alto PCNSA/PCNSE preferred, Cisco CCNA/CCNP (Security preferred), Juniper JNCIA/JNCIS (-SEC preferred), etc.) or one entry-level vendor-neutral certification in the Information Security arena (GICF, GSEC, CISA, CEH, etc.)