security
Posted Apr 15Network Security Engineer II
at Rackspace
Remote
Responsibilities
- Application Delivery & Security: Design and manage F5 BIG-IP solutions, focusing on LTM (Local Traffic Manager) for load balancing and ASM/WAF (Application Security Manager) for protecting web applications.
- Software-Defined Networking (SDN): Implement and manage micro-segmentation policies and virtualized security services within VMware NSX (T/V) environments.
- Research, plan and coordinate complex maintenance activities Participate in Root Cause Analysis (RCA) exercises to drive process & technology improvements.
- Collaborate and share knowledge with other administrators and engineers via articles and training presentations Contribute to the development of technical best practices for administrative
Requirements
- Responsibilities: Multi-Vendor Firewall Management: Lead the migration, configuration, and maintenance of Cisco ASA (Classic) and Firepower (FTD) systems, while managing a robust Palo Alto environment via Panorama.
- Legacy to Next-Gen Migration: Architect strategies to transition legacy Cisco ASA rulesets to Cisco Firepower or Palo Alto NGFWs without service disruption.
- Must be able to work a flexible schedule, 24x7x365 coverage, including holidays and weekends Technical Skills &
- Qualifications: Security & Networking Stack Cisco Specialist: Advanced knowledge of Cisco ASA (CLI/ASDM) and Firepower Threat Defense (FTD) managed via FMC. Palo Alto Expert: Deep
- experience with Palo Alto NGFW features (App-ID, User-ID, SSL Decryption).
- Load Balancing: Proficiency in F5 BIG-IP, including iRules development, SSL offloading, and traffic steering.
- experience with VMware NSX, specifically in configuring distributed firewalls (DFW) and edge gateways.
- Protocols: Mastery of TCP/IP, BGP, OSPF, and deep packet inspection.
- Required Certifications Candidates must hold industry recognized certifications: Cisco Security (Primary): CCNA Security – Required.
- Specialist certifications in Firepower or ASA are a significant plus.
- Palo Alto Networks (Secondary): PCNSE (Palo Alto Networks Certified Network Security Engineer) – Highly Preferred.
- VCP-NV (VMware Certified Professional – Network Virtualization). Experience
- experience in network security engineering. Demonstrated