Job Title: Network and Security Engineer
Team: Hosting (IT)
Location: Lake Oswego, OR
Reporting to: Manager, IT Hosted Operations
Status: Exempt, Full-Time
Imagine a place where each day you are engaging with some of the best people in their field committed to innovation as much as they are fun; the type of place where you can grow your career and make a difference by what you do.
The Network/Security Engineer is responsible for the design, implementation, and maintenance of the corporate LAN, WAN, and WLAN infrastructures in all offices and datacenters. This role is also responsible for the maintenance and administration of all security hardware and software used, and for monitoring and enforcing the security policies adopted by the company.
If you are seeking to find “that place” where you can take your ambitious career goals to the next level, we would like to hear from you. NAVEX Global is one of Oregon’s fastest growing companies, supporting clients around the world; we believe great things are waiting for you on our team!
Essential Duties and Responsibilities:
This role requires the flexibility to manage not only the responsibilities of Networking and Security, but to assist the Internal and Hosted IT teams when necessary on projects and tasks outside its primary functions.
Design and maintain corporate networking architecture including all switches, routers, wireless AP’s, firewalls, IPS, and all other network- and security-related appliances.
Design, implement, and enforce security solutions and standards based on business requirements and industry best practices as it pertains to servers, appliances, desktops, personal devices, appliances, networks, etc. in both the hosted and internal environments.
Monitor, maintain, and troubleshoot a variety of devices from different vendors including Cisco, HP, Dell, Palo Alto, Fortinet, McAfee, F5, ISS, and 3eTI.
Collect and analyze network and security logs. Use log information to proactively avoid device failures, security threats, etc. Generate reports on log activity as requested.
Performs proof of concept testing and validation of network security design in accordance with the policies adopted by the business.
Assist in researching and testing new technologies.
Participate in the design and review of security awareness programs for employees.
Document activities in progress via weekly status reports, incident reports, logs, etc
Assist with special projects and other company efforts.
Participate in appropriate meetings, seminars and training sessions.
Carry out all responsibilities in an honest, ethical, and professional manner.
Participate in a rotating on-call schedule.
Potential for travel.
B.S. degree in a related field (e.g. Computer Science, IT, MIS) or equivalent experience.
5 years’ experience in network administration, information security, or information technology.
Required certification: CISSP and either CCNA or Network+.
Desired certifications: CCNP, CCSP, or SSCP.
Solid knowledge in common layer 2 and 3 protocols including, but not limited to IPv4, IPv6, Ethernet, STP/RSTP, PaGP/LACP, QoS, Wireless (802.1b/g/a/n), 802.1q, 802.1x, HSRP/VRRP, ARP, IPsec, SSL.
Thorough understanding of routing protocols including BGP, OSPF, and EIGRP.
Proficiency with network management, monitoring, and troubleshooting tools including, but not limited to ping, traceroute,packet sniffers (e.g. Wireshark), SolarWinds Network Performance Monitor, NFdump, NFsen, SNMP, TACACS/RADIUS, AAA.
Experience with all or some of the following vendors: Cisco, Palo Alto, McAfee, F5, HP, Dell, Fortinet, CoyotePoint.
Experience configuring, troubleshooting, and performance-tuning networks on virtualized hosts
(VMware, Hyper-V), including network-based storage using iSCSI and NFS.
Capable of troubleshooting and resolving problems in all layers of the OSI model.
Practical experience in deployment and management of applied IT security technologies and tools (i.e., two-factor authentication, enterprise PKI, email encryption, network access control, intrusion detection/prevention systems, centralized endpoint protection, etc.)
Familiar with best practices for securing an Internet-connected X-tier SaaS application.
Knowledgeable in IAS, as related to the DoD.
Understands security concepts, principles and practices, including fundamental knowledge of OSI model and intrusion detection.
Ability to communicate effectively through speaking and writing to both technical and non-technical audiences.
Other experience considered a plus: NetApp SAN, Active Directory, VMware ESXi 4.1/5.0, RedHat Enterprise/CentOS.
Candidate must be fluent in English. Capable of lifting objects up to 50 lbs. Ability to sit or stand at a computer for extended periods.
The office is clean, orderly, properly lighted and ventilated. Noise levels are considered low to moderate.
This is a salaried, exempt position. Employee will participate in an on-call rotation and will occasionally be required to work more than 40 hours in a workweek. Employee may be scheduled to work evenings or weekends according to the needs of the business.
Fast-paced team environment (frequent tight deadlines, multi-tasking, etc.).
Strong customer orientation.
Willingness to take risks and openness to change.
Extensive computer and phone use; email intensive environment.
Must be able to read, write and speak English fluently.
Must be able to pass a background and reference check.
About NAVEX Global:
NAVEX Global (formerly EthicsPoint, Inc.), a leading provider of enterprise risk awareness solutions, helps organizations align their governance, risk and compliance (GRC) processes with overall business strategy. We protect corporate cultures and reputations by proactively revealing risk-related trends via the collection, management and understanding of their GRC-related data. More than 2,400 organizations currently use our solutions to increase the quality of GRC data reported to boards and executive teams to facilitate better business decisions. To find out how, please visit www.ethicspoint.com.
NAVEX Global is an equal opportunity employer that employs qualified individuals based upon job related qualifications regardless of race, religion, ancestry, gender, sexual orientation, national origin, age, disability, marital status, domestic partner status, medical condition, political affiliation or any other classification proscribed under applicable federal, state or local law. EthicsPoint, Inc. complies with all laws regarding reasonable accommodation for disabled candidates and employees. Applicants requiring reasonable accommodation in order to participate in the interview process are requested to contact Human Resources in order to arrange such accommodation. We offer competitive compensation and an attractive benefits package. No recruiters or agencies without a previously signed contract.