Information / Cyber Security, Professional 3

Position Summary:

The Firewall/Network Security Engineer primary responsibilities include recommending and overseeing firewall (perimeter) and network security security, setting up alerts and responding to events related to network and firewalls. In addition, the role will be a part of the Security Operations team responsible for investigating and responding to cyber security related events, ensuring appropriate security log sources are being captured, tuning security alerts, retrieving and analyzing data, network traces and other evidence from computers, networks, and data storage devices. In addition, this role will be part of an on call rotation managing, assigning and tracking to closure Security Operations Center (SOC) tickets and investigations. This work requires the engineer to be extremely detailed in their work and thorough in how the work is documented, tracked, and closed.



Organizational Relationships:



This role works with the Information Technology team and the business to support secure information process and technology.

Job Responsibilities:

• Act as Lead Firewall/Network Security Engineer, recommending security best practices, implementing, and overseeing network and perimeter security.
• Reviewing and approving firewall rule requests.
• Reviewing and cleaning up existing rules and policies.
• Identifying perimeter and network security enhancements and implementing.
• Identifying and recommending logging, alerting and event monitoring enhancements.
• Participate as part of the Information Security Operations team. Some after-hours and weekend work required along with participation in an on-call rotation.
• Support security operations activities responding to alerts, participating in on call schedule, owning and supporting security tools.
• Analyze logs, identify, recommend, and improve current logging requirements.
• Make recommendations to management on enhancements to existing and new security hardware, software or related tools. Assist in evaluating, planning, configuration, and implementation of new/existing security applications/tools.
• Perform risk analysis for corporate functional and technical areas relevant to data security.
• Configure, implement, monitor, and support security software/systems that will help ensure compliance with regulatory, industry, and corporate policies and procedures. This includes but is not limited to Intrusion Detection System/Intrusion Prevention System (IDS/IPS) (Host/Network/Wireless), secure file transfer, Data Loss Prevention (DLP), full disk encryption, firewall rule assessments, log management/correlation, secure password storage/retrieval, application whitelisting, vulnerability management, threat hunting, etc.
• Manage Endpoint Detection and Response (EDR) and Anti-Virus solutions deployed within the environment.
• Identify security threats and provide recommendations and remediation steps.
• Perform other job-related functions as assigned
• Demonstrate behaviors consistent with the Company’s Vision, Mission, and Values in all interactions with customers, co-workers, and suppliers and adheres to all company policies, procedures, and safety standards
• Identifying and recommending potential areas where existing data security policies and procedures require change, or where a supplement is required to mitigate key security risks. Partner with various business units to enhance security policies/procedures

Experience:

• 3-5 years’ experience managing firewalls, rules and policies – preferably with Palo Alto and/or Zscaler
• Preferred 3-5 years' experience working in a Security Operations Center (SOC) / alerts handler
• Working with Security Information and Event Management (SIEM) and Security Orchestration, Automation and Response (SOAR)
• Creating and maintaining data security documentation, runbooks, policies, and procedures
• Assisting in the identification, response, investigation, and remediation of potential breaches of and issues surrounding data security
• Providing support during off hours in an on-call rotation
• Supporting programs for compliance monitoring, and security compliance; maintaining information security devices and software; monitoring compliance procedures; and resolving security policy issues

Qualifications:

• B.S. Degree required in Computer Science, Information Technology, or related field of study, or any equivalent combination of relevant background, skills and experience
• 3-5 year’s relevant experience in Information Security in medium to large organizations
• Azure/AWS security experience
• One or more security certifications such as CFCE, CCE, CSFA, CISSP, CISA, SANS GIAC, or relevant security certification(s) required. Additional technology certifications such as MCSE, CCNA/CCNP, PMP, etc. preferred
• Hands-on experience with two or more of the following: data loss prevention technologies, incident response and remediation, network security services, ethical hacking and vulnerability scanning, firewall and intrusion detection technologies
• High degree of proficiency MS Office Suite, Outlook & Internet applications
• Strong analytical, prioritizing, interpersonal, problem-solving, and presentation, project management (from conception to completion) and planning skills
• Strong verbal and written communication skills
• Strong negotiation/mediation skills
• Demonstrated collaborative skills and ability to work well within a team
• Ability to work with and influence senior management
• Ability to work in a fast-paced and deadline-oriented environment
• Self-motivated with critical attention to detail, deadlines and reporting

Physical Requirements:

• Extended working hours may be required as dictated by management and business needs
• Ability to travel (25%) to multiple facilities as business needs dictate
• May be required to lift, push, or pull materials weighing up to twenty (20) pounds
• May be required to sit and review information on a computer screen for long periods of time
• May require repetitive motions of the hands and wrist related to writing and typing at an electronic keyboard

The intent of this job description is to provide a representative summary of the major duties and responsibilities performed by incumbents of this job. Incumbents may be requested to perform job related tasks other than those specifically presented.

Exciting Benefits and Perks Await You:

• Competitive compensation and 401k matching

• Enjoy a healthy work-life balance with insurance plans (health, dental, vision) and maternity benefits.

• Associate purchase and discount programs for new and pre-owned vehicles, services, parts, collision, accessories, and AutoGear

• Access amazing deals and discounts through YouDecide, a website with offers from top providers and retailers

• Join our DRVPNK mission to raise and donate millions of dollars to cancer research and treatment, partnering with cancer charities nationwide

AutoNation is one of the largest automotive retailers in the United States, offering innovative products, exceptional services, and comprehensive solutions, empowering our customers to make the best decisions for their needs. With a network of dealerships nationwide strengthened by a recognized brand, we offer a wide variety of new and used vehicles, customer financing, parts, and provide expert maintenance and repair services. Through DRV PNK, we have raised over $40 million for cancer-related causes, demonstrating our commitment to making a positive difference in the lives of our Associates, Customers, and the communities we serve.

AutoNation is committed to creating a diverse, equitable, and inclusive environment in our workplace and the services we provide. We welcome candidates from all backgrounds who are passionate about making a positive impact. Even if you do not meet every requirement, we encourage you to apply. Join our team and help us foster a culture of belonging while contributing to our revolutionary work in the automotive industry. We value innovation, teamwork, and a commitment to making a positive impact in the world.