This job is no longer available. Continue your job search here.
Infrastructure Security Engineer
Budapest
Job No. r00114270
Full-time
Job Description
Our Infrastructure Projects Delivery Unit specializes in designing and deploying advanced infrastructure security solutions to protect and manage our clients' networks. As an Infrastructure Security Engineer, you will be at the forefront of designing and supporting comprehensive security solutions tailored to our clients' needs. Your work will be crucial in ensuring the integrity and security of our clients' infrastructure, safeguarding them against potential threats.
Key Responsibilities
Due-diligence of existing client’s solution, analyzing physical topology, logical interconnectivity, service dependency, application flows and security constraints.
Attending meetings and workshops with the client to understand requirements, challenges and risks.
Successfully presenting and backing complex designs for critical infrastructure to senior client resources at formal review boards
Developing security solution in cooperation with Network and Application projects team for solid end-to-end secure communication using existing industry standards, best practices and know-hows fitting it into existing infrastructure and operations framework.
Creating designs and support documentation for the delivered infrastructure. Raising change records and executing activity while adhering to client’s processes and procedures.
Support and trouble-shooting of network security devices and systems delivered by the project to the client during transition/handover period. That includes firewalls, intrusion detection systems, virtual private networks (VPN), security device management platforms, etc.
Vulnerability management, platform selection, software production-feature set and load- testing for chosen platform.
Qualifications
Role Requirements
Have 4+ year(s) of infrastructure security experience working with major firewall platforms (Palo Alto, Juniper, Cisco, Fortinet, etc.). Certificate for any of the platform is a plus.
Have 2+ year(s) experience in Data Centre Security and micro-segmentation (zero-trust model and core segmentation, NSX, ACI, Tetration, etc.)
Have 2+ year experience with Cloud Security platforms – either cloud edge IaaS firewall or Cloud SaaS solution (Cisco CSR/vMX, Cisco AMP/SIG, CheckPoint, zScaler, PRISMA, etc.)
Have a good knowledge of networking – either classic (switching, dynamic routing protocols, static and rule-based routing, etc.) or cloud (VPC, peering, gateways, SD-WAN secure fabric). Certificate in any networking area is a plus.
Have a good knowledge of encryption and tunneling protocols (PKI, IPSec, SSL VPN, TLS, IKE, IKEv2, etc.)
Understand application protocols in context of OSI network layers and content inspection (Load-balancing, WAF, IPS, IDS, etc.)
Understand cloud technologies and infrastructure virtualization (IaaS, PaaS, SaaS, NFV, SDN, SD-WAN)
Understand baseline security requirements and platform hardening principles.
Be flexible for international business trips to attend client meetings or workshops or perform remote site installation and configuration.
Have good verbal communication skills (English) in both technical and non-technical communications.
Have good experience creating design documents (HLD, LLD) diagrams (Visio) and presentations (PPT)
Have good analytical mindset for problem solving under stress and time pressure.
We offer
Competitive compensation package including cafeteria budget, private health care, family-oriented benefits, AYCM card, and company shares at a discount price.
Extensive home office opportunity and a nice office to meet with your team members.
Wide range of leading-edge trainings
Employee assistance program: Psychologist support, legal or financial advice.
