TTS – Network Security Engineer II
The “Network Security Engineer II” is responsible for the administration and monitoring of the organization’s local and wide area networks. The “Network Security Engineer II” will investigate network & security related alarms/alerts, respond to service requests, and use all tools at their disposal to monitor for and remediate any internal and external threats, vulnerabilities, and malware. The “Network Security Engineer II” will be expected to work both independently and with peers to complete project work as assigned by the Senior Network Security Engineer.
Ideal candidates will meet the following requirements:
- 3‐5yrs of experience working in a network security capacity, where the responsibilities included management of *Cisco* routers, switches, and firewalls.
- Comfortable with the command line interface of Cisco devices. Good understanding of the most common configuration and show commands.
- Good understanding of the OSI model, IP subnetting, L2 and L3 configuration on Cisco devices (including routing protocols, VLANs, spanning tree, etc.).
- Able to quickly read a routing table and understand what path traffic will take and why.
- Good understanding of DNS and how this relates to troubleshooting.
- Experience with at least one SIEM product, such as Splunk / Splunk Enterprise Security.
- Experience with at least one web filtering product, such as Cisco Umbrella.
- Experience with corporate antivirus and/or anti‐malware solutions.
- Knowledge of network security best practices, network security attack vectors, and possible remediation methods.
- Strong attention to detail.
- Ability to learn and work independently with limited direction.
- Applicant must reside in the Kansas City metro area or be willing to relocate at own expense.
- CCNA or equivalent experience is required. Those without a CCNA will be expected to be certified within 6 months.
2‐3 years experience with one or more of the following solutions:
- Cisco routers & switches
- Cisco ASA or FTD firewalls
- Cisco Firepower Management Center
- Cisco Stealthwatch
- Cisco AMP for Endpoints
- Cisco ISE
- Cisco Umbrella
- Symantec Antivirus
- Solarwinds NPM
Exceptional candidates will also have experience with one or more of the following:
- Splunk
- Splunk Enterprise Security
- Juniper or other vendor security devices / firewalls
- Cisco collaboration products
- Cisco wireless products
Job Type: Full-time
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Employee assistance program
- Flexible spending account
- Health insurance
- Paid time off
- Vision insurance
Schedule:
- Day shift
- Monday to Friday
- On call
Ability to commute/relocate:
- Leawood, KS 66211: Reliably commute or planning to relocate before starting work (Required)
Application Question(s):
- Active (not expired) CCNA certification is required for this position. If you are not currently CCNA certified, will you be able to get certified within 6 months?
- On a scale of 1-10, what is your knowledge level with regard to making configuration changes via command line on Cisco ASA's?
- On a scale of 1-10, what is your knowledge level with regard to making configuration changes via command line on Cisco routers and switches?
- Are you aware that this position requires residency in the Kansas City area, and that no relocation assistance is offered?
- Are you willing to undergo a background check, in accordance with local law/regulations?
Education:
- High school or equivalent (Required)
Experience:
- Computer Networking: 3 years (Required)
- Cisco ASA or FTD: 2 years (Required)
License/Certification:
Work Location: In person
