Beschreibung
We are looking for a “Networks Engineering Consultant (m/f/d)" for our customer in the energy sector with the following basic conditions:Start: asap
Duration: 5 months+
Location: Düsseldorf (remote)
Responsibilities:
• Analyze security concepts provided by the business project teams to identify outdated technology, gaps and insufficiencies. Present the results to the company accordingly including professional consulting about how to meet security standards along with corresponding measures; sign off by the company prior to requester to be able to submit FCRs (Firewall change request). The company will hand out relevant documents beforehand. Check if all requirements are fulfilled and advise the requester to submit the FCRs.
• Review security concepts (Q-gate) and technically consult business for release to the technical workstream for the implementation in accordance with the defined FCR process (Firewall change request). Approve / reject the requests in a workflow tool where the security concepts are filled in (workflow process).
• Steer the quality of the previously analyzed security concepts acts on a third level by checking the quality, technical requirements and information of the security concepts and technical requirements. Once quality is met, the business submits the security approval for implementation to the security officers. The quality standards are defined by the industry standards – ENISA, NIST or ISO 27001.
• Provide guidance to teams on how to resolve potential security flaws / findings on the submitted concept before approval so the requesting party can submit for final step approval. The guidance is based on elaborate test cases and in the later hyper care phase (pre-implementation) the guidance is based on industry best practices (defined in international standards) and information about the purpose of the request.
• Consult requesters on how to properly resolve issues identified on security concepts and how to get these successfully approved - the information is ingested via the application. If rejected by a security officer, review the information. In such cases, advise the business on how to correct the issues. This can be done by email, in virtual meetings via MS teams or phone. The progress will be visible on the amount of FCRs processed from the queue. Reduce the backlogs due to the overwhelming number of applications to the minimum (as much as possible) and get the FCRs in good quality for approval.
• Consult business requesters about design, concept creation & implementation of network security aspects in the areas of: Architecture design, Architecture review, validate technical documentation according to best practices created by requesters, technically consult on finalizing design and architectural documents (write, review, edit)
• Manage escalation activities related to network security domain-related to the domain of network security. (Proxy, Network Segmentations Design and architecture questions, best practices principles according to industry, testing, understanding of frameworks provided by NIST, ISO27001, ENISA.) Technically consult the cyber defense team to adequately cope with security risks and issues and their mitigation. The process of escalations is handled fully by the security team.
Requirements:
• Please submit Job profiles in English.
• min. 5 years of working experience on network security and firewalls.
• Knowledge on major firewall and network vendors.
• Good communication skills.
• Once the necessary documentation is prepared by the business teams, these need to be reviewed by the security officers, most of these migrations require new network allocations, and specific network configurations (every application behavior is different) in order to provide the necessary know how, and consulting effort to resolve potential challenges. The network security expert reviews, assesses, and consults the business teams on how to make their systems migration sound and security proof. Here the project requires a network security expert with sufficient experience on managing security concepts, understand network architecture, secure protocols, and adequate use of ports.
• Further the network security expert is capable to understand the network traffic problems and advise on the production of a secure solution to the potential challenges. Guide and instruct the business teams in a non-technical language how they best solve the issue how properly describe it and document it for security approval.
• Additionally, the network security expert has adequate vulnerability management experience (pent-tester background is a plus) as part of the security approval process the last step for approval is to perform a vulnerability assessment on the system to be migrated. Usually, this step is performed later in the process but has been decided to speed things up to move this step to be part of the security concept process step. If vulnerabilities might be detected, the network security expert should be capable to explain the business how they can best address and resolve the vulnerability. Systems that do not pass the vulnerability assessment will not be approved forward.
If you are interested, please do not hesitate to send me your current CV to:
Do you have questions? You are welcome to contact me by calling:
Jan Phillip Wolters
– 04
I am looking forward to getting to know you!