Collinwood Technology Partners · 15 hours ago
Fortinet Infrastructure Engineer & Firewall Architect
United States
Full-time
Remote
Entry Level
$125K/yr - $130K/yr
7+ years exp
Maximize your interview chancesConsultingInformation Technology
Insider Connection @Collinwood Technology Partners
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
7+ years of work experience as an Information Security Engineer working with multiple Fortinet products such as the core products plus FortiSIEM, FortiClient, FortiEDR – NSE7+ or equivalent knowledge.
5 years' experience in LAN/WAN/Internet services administration
5+ years of experience with penetration testing, vulnerability testing, blue/red teaming.
Practical understanding of tactical application of various compliance frameworks including monitoring and validating compliance.
Ability to design network and security solutions, effectively utilize Visio, ability to create BOMs (Bill of Materials)
Strong understanding of computer and network security, protocols, packet analysis, authentication & authorization, security protocols and attack methods.
Experience with penetration testing and exploitation tools and methods.
Experience with vulnerability scanners like Qualys, Tenable/Nessus, Nexpose, Whitehat Sentinel, Acunetix or similar.
Experience with forensic data capture, evidence preservation and data extraction and analysis.
Functional programming/scripting experience with the ability to develop custom scripts to automate or simplify tasks and data gathering/munging.
Proficiency with administrative operation, configuration, and debugging/troubleshooting of Linux, Windows, MacOS, Active Directory, Exchange etc. and SSO/MFA technologies.
Ability to organize & communicate effectively, both written and verbal, with technical and non-technical people across functional teams.
Knowledge of the following technologies: Routing, Switching, VPN, LAN, WAN, Network Security, Stateful Firewalling, NGFW, Firewall policies, Identity based policies, NAT, IPS, AntiMalware, Botnet, Application Control, DDoS, Web Filtering
Strong understanding in the following technologies and protocols: TCP/IP, IPv4, IPv6, supernetting and subnetting, DNS, HTTP, SMTP, RADIUS, LDAP, Active Directory, PKI, IKE, Certificates, L2TP, SSL Decryption, SSL VPN, IPSEC, NAT, Stateful Firewall, Firewall Policies, 802.1Q, VLANs, LACP, MD5, SSH, SSL, SHA1, SHA512, 3DES, AES
Experience with encryption and authentication technologies required
Strong communication and writing skills including presentation skills
Technical knowledge in Wi-Fi, Load Balancing and Application Delivery, Ethernet Switching, ACI, API, Two Factor Auth, Malware Sandboxes, Mail Gateways, Web Application Firewalling, Cloud (AWS, Azure, etc.), SDN, NFV, Virtualization, Centralized Management, SIEM, and Data Center redundancy are considered assets.
Previously experience working with telco and large enterprise space.
Hands-on experience in networking and Strong understanding of common network protocols (TCP/IP, GRE, IPsec, BGP, OSPF, MPLS, VRRP, STP, IPsec, SNMP protocols).
Hands-on experience with Carrier / ISP Routing in building and managing large-scale BGP environments with publicly routable Autonomous Systems, Route Arbitration, Peering, IRRs, etc.
Hands-on experience in security including, access and application control, in security products and technologies (e.g. Firewalls, IDS/IPS, DDos, VPN, Web application Firewall) site and content categorization and SSL encrypt/decrypt functions.
Strong technical and problem-solving skills, including experience in at least one scripting language (Bash, Python, etc.) to develop automated methods to mitigate and remediate network events.
Experience in network, servers, and systems monitoring (Zabbix, Nagios, etc.) to analyze and diagnose data and identify root causes to network issues.
Knowledge in server virtualization (VMware, KVM, etc.).
Knowledge in change management process.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
7+ years of work experience as an Information Security Engineer working with multiple Fortinet products such as the core products plus FortiSIEM, FortiClient, FortiEDR – NSE7+ or equivalent knowledge.
5 years' experience in LAN/WAN/Internet services administration
5+ years of experience with penetration testing, vulnerability testing, blue/red teaming.
Practical understanding of tactical application of various compliance frameworks including monitoring and validating compliance.
Ability to design network and security solutions, effectively utilize Visio, ability to create BOMs (Bill of Materials)
Strong understanding of computer and network security, protocols, packet analysis, authentication & authorization, security protocols and attack methods.
Experience with penetration testing and exploitation tools and methods.
Experience with vulnerability scanners like Qualys, Tenable/Nessus, Nexpose, Whitehat Sentinel, Acunetix or similar.
Experience with forensic data capture, evidence preservation and data extraction and analysis.
Functional programming/scripting experience with the ability to develop custom scripts to automate or simplify tasks and data gathering/munging.
Proficiency with administrative operation, configuration, and debugging/troubleshooting of Linux, Windows, MacOS, Active Directory, Exchange etc. and SSO/MFA technologies.
Ability to organize & communicate effectively, both written and verbal, with technical and non-technical people across functional teams.
A BS degree in Computer Science, Cyber Security, other tech-related degree, or equivalent experience.
CISSP, NSE7+ or similar certification or proven knowledge and experience.
Knowledge of the following technologies: Routing, Switching, VPN, LAN, WAN, Network Security, Stateful Firewalling, NGFW, Firewall policies, Identity based policies, NAT, IPS, AntiMalware, Botnet, Application Control, DDoS, Web Filtering
Strong understanding in the following technologies and protocols: TCP/IP, IPv4, IPv6, supernetting and subnetting, DNS, HTTP, SMTP, RADIUS, LDAP, Active Directory, PKI, IKE, Certificates, L2TP, SSL Decryption, SSL VPN, IPSEC, NAT, Stateful Firewall, Firewall Policies, 802.1Q, VLANs, LACP, MD5, SSH, SSL, SHA1, SHA512, 3DES, AES
Experience with encryption and authentication technologies required
Strong communication and writing skills including presentation skills
Technical knowledge in Wi-Fi, Load Balancing and Application Delivery, Ethernet Switching, ACI, API, Two Factor Auth, Malware Sandboxes, Mail Gateways, Web Application Firewalling, Cloud (AWS, Azure, etc.), SDN, NFV, Virtualization, Centralized Management, SIEM, and Data Center redundancy are considered assets.
Previously experience working with telco and large enterprise space.
Hands-on experience in networking and Strong understanding of common network protocols (TCP/IP, GRE, IPsec, BGP, OSPF, MPLS, VRRP, STP, IPsec, SNMP protocols).
Hands-on experience with Carrier / ISP Routing in building and managing large-scale BGP environments with publicly routable Autonomous Systems, Route Arbitration, Peering, IRRs, etc.
Hands-on experience in security including, access and application control, in security products and technologies (e.g. Firewalls, IDS/IPS, DDos, VPN, Web application Firewall) site and content categorization and SSL encrypt/decrypt functions.
Strong technical and problem-solving skills, including experience in at least one scripting language (Bash, Python, etc.) to develop automated methods to mitigate and remediate network events.
Experience in network, servers, and systems monitoring (Zabbix, Nagios, etc.) to analyze and diagnose data and identify root causes to network issues.
Knowledge in server virtualization (VMware, KVM, etc.).
Knowledge in change management process.
Company
Collinwood Technology Partners
Collinwood Technology Partners is an information technology consulting and staffing firm.
11-50 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase
