CrowdStrikeRemote
Sr. Network Security Engineer (Remote)
United States of America
Full Time
3 weeks ago
$140,000 - $215,000 USD
No H1B
Key skills
AIAWSGCPAnsibleLoad BalancingSaaSNetwork Security
About this role
CrowdStrike is a global leader in cybersecurity dedicated to stopping breaches with their advanced AI-native platform. They are seeking a Senior Network Security Engineer to develop and deploy network security measures, improve management and visibility of security practices, and drive major security initiatives. The role involves collaborating with other teams and requires a strong background in network security engineering.
Responsibilities:
- Be the hands-on subject matter expert for Audit/Compliance, DDoS, VPNs, network segmentation spanning network infrastructure, hosts and services, and all things related to network security best practices
- Provide technical security direction and insight for projects, discovery, and problem management
- Operate and improve DDoS detection, mitigation, and response capabilities across scrubbing services, flow-based analysis, and edge traffic engineering
- Create network segmentation through various technologies such as routing, virtual networking, Software-Defined Networking(SDN), and host/service level controls
- Provide operational security support for multi-vendor, multi-region production network at-scale
- Manage Network Security protocols and concepts, access management (AAA), and network ACLs/Firewalls
- Identify, test and integrate new network security products, operating systems and feature sets
- Manage documentation and frameworks relative to network security practices
- Perform vulnerability scanning and create remediation plans
- Participate in 24x7 on-call rotation
Requirements:
- Proven track record in leading security initiatives independently with minimal supervision
- 7+ years of experience in network security engineering
- Strong understanding of network protocols such as TCP/IP, BGP, OSPF, IPsec
- Deep knowledge of DDoS attack vectors and mitigation strategies including scrubbing services and flow telemetry analysis (sFlow, NetFlow, IPFIX, BGP Flowspec, etc.)
- An in depth understanding of encryption and how it translates to network traffic (HTTPS, IPSec)
- Understand compliance requirements to perform and manage periodic audits
- Experience with security management and orchestration tools such as Tufin, Firemon, or AlgoSec
- Experience with load balancing, anycast and DNS
- Experience with developing security automation tools/scripts used to manage, or interact with network infrastructure such as Ansible, NETCONG, or YANG
- Experience with cloud service providers such as AWS and GCP
- Work experience in data center, telecom, SaaS, or cloud operations companies
- Ability to communicate technical detail into succinct and fact-based business terminology, both verbally and in writing
- Customer-focused mindset, with demonstrated skill in managing expectations, providing proactive status updates, and producing high-quality work products
- Ability to use independent judgment to make sound, justifiable decisions and take action to solve problems
- Ability to plan, organize and prioritize work independently and meet deadlines
- Ability to work collaboratively with a distributed team in multiple time zones