CrowdStrikeRemote
Senior Network Security Engineer
United States
Full Time
1 hour ago
$140,000 - $215,000 USD
Visa Sponsor
Key skills
AnsibleAWSCloudDNSFirewallsGoogle Cloud PlatformTCP/IPGCPGoogle CloudLoad BalancingNetwork Security
About this role
Role Overview
- Be the hands-on subject matter expert for Audit/Compliance, DDoS, VPNs, network segmentation spanning network infrastructure, hosts and services, and all things related to network security best practices
- Provide technical security direction and insight for projects, discovery, and problem management
- Operate and improve DDoS detection, mitigation, and response capabilities across scrubbing services, flow-based analysis, and edge traffic engineering
- Create network segmentation through various technologies such as routing, virtual networking, Software-Defined Networking(SDN), and host/service level controls
- Provide operational security support for multi-vendor, multi-region production network at-scale
- Manage Network Security protocols and concepts, access management (AAA), and network ACLs/Firewalls
- Identify, test and integrate new network security products, operating systems and feature sets
- Manage documentation and frameworks relative to network security practices
- Perform vulnerability scanning and create remediation plans
- Participate in 24x7 on-call rotation
Requirements
- Proven track record in leading security initiatives independently with minimal supervision
- 7+ years of experience in network security engineering
- Strong understanding of network protocols such as TCP/IP, BGP, OSPF, IPsec.
- Deep knowledge of DDoS attack vectors and mitigation strategies including scrubbing services and flow telemetry analysis (sFlow, NetFlow, IPFIX, BGP Flowspec, etc.)
- An in depth understanding of encryption and how it translates to network traffic (HTTPS, IPSec)
- Understand compliance requirements to perform and manage periodic audits
- Experience with security management and orchestration tools such as Tufin, Firemon, or AlgoSec
- Experience with load balancing, anycast and DNS.
- Experience with developing security automation tools/scripts used to manage, or interact with network infrastructure such as Ansible, NETCONG, or YANG
- Experience with cloud service providers such as AWS and GCP
Tech Stack
- Ansible
- AWS
- Cloud
- DNS
- Firewalls
- Google Cloud Platform
- TCP/IP
Benefits
- Market leader in compensation and equity awards
- Comprehensive physical and mental wellness programs
- Competitive vacation and holidays for recharge
- Paid parental and adoption leaves
- Professional development opportunities for all employees regardless of level or role
- Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
- Vibrant office culture with world class amenities
- Great Place to Work Certified™ across the globe