Senior Network Security Engineer

The Network Security Engineer will be responsible for deploying, tuning and maintaining security policies and enhancements to protect company sensitive and confidential information to mitigate security threats to the corporate network, assets, data, and users.

This position is a hands-on role that requires knowledge of network security technology related to Palo Alto Firewalls, Global Protect Remote Access and Extranet Third-Party Access solutions, intrusion Detection/Prevention, Network Anomaly Detection/Response, Security Orchestration, Automation and Response, Packet Capture and Network Forensic solutions, DNS security, Cloud Security, and other network security technologies. The candidate must understand how the design of these security capabilities impacts management and administration, as well as business applications, network performance, and end user experience. In this role, the candidate will lead areas of the network security engineering team in support of the business to thoroughly test changes to network security solutions in order to ensure efficacy of protections and detections and ensure effectiveness. The successful candidate will demonstrate strong knowledge of and experience with the general information security controls employed to protect networks and computer applications, as well as the ability to identify, test and implement new network security solutions.

The successful candidate will have demonstrated expertise in all aspects of network security and the technologies leveraged for this purpose. The candidate will have at least 10 years of experience working in a large enterprise network environment providing comprehensive solutions and approaches to solving the challenges associated with a large, complex, global environment requiring strong network protection controls are enforced with minimal impacts to the business processes.

KEY RESPONSIBILITIES AND DUTIES:

• Perform installation and configuration management of security systems and applications, including policy assessment of the network security stack and set of policies and standards.
• Perform security related tasks, including the day-to-day administration of the different information security tools and devices, fine tuning configuration of the devices to reduce false positives and improve effectiveness in security event monitoring.
• Ensure that security tools are performing optimally, and security events are detected in a timely manner to ensure rapid detection and remediation.
• Work with the security analyst and content management teams to ensure data ingested by the SIEM is useful, reduces white noise, and is properly leveraged and actioned for incident response.
• Implement security measures to protect the enterprise as well as prevent data loss and respond to security incidents.
• Perform security analysis of traffic patterns and adjust policy and procedures.
• Performing technical and non-technical risk assessments on our systems and make recommendations to identify and improve security risk.
• Determine and implement appropriate levels of security configuration, controls and monitoring.
• Develop quality program metrics to measure program performance as well as enterprise risk. This data must provide actionable intelligence to help drive and track progress of the security program.
• Work with other business units to develop appropriate plans for the implementation and configuration of network security technologies, thereby ensuring business engagement and understanding of the network security initiatives.

QUALIFICATIONS:

Required Skills:

• Bachelor's degree in Information Systems (or related field) or equivalent experience.
• 10+ years in network security engineering and operations in an Enterprise environment.
• 10+ years of experience in IT, or related area, with a focus on security tool technology, security management and policy enforcement.
• Hands on experience supporting security requirements of a large, global enterprise environment.
• Prior experience with network security technologies, including intrusion prevention systems, Palo Alto firewalls, network access control, proxy, packet capture, Remote Access technologies, Extranet and network anomaly detection.
• Experience installing, configuring, and supporting network security tools.
• Experience in developing, documenting and maintaining security procedures.
• Strong knowledge of TCP/IP and networking protocols.
• Strong knowledge of DNS; experience with DNSSEC is a plus.
• In-depth knowledge of operating systems, applications, and network security architectures.
• Strong analytical and organizational skills.
• Excellent verbal and written communication, problem solving and time management skills.
• Ability to work efficiently and productively with minimal guidance or direction.
• Strong team player with initiative and ability to take charge of their area of expertise.
• Ability to clearly and effectively communicate concerns, issues and research to other teams.

Desired Skills:

• One or more IT Security related certifications is highly preferred, such as CISSP, SSCP, CCIE, CISM or CEH.
• Understanding of Security Information and Event Management (SIEM) with knowledge of log collection, parsing of log files and how this data can be effectively used to mitigate risk and respond to threats.

A look at our Benefits

We're proud to offer a range of employee benefits and resources that help you protect what matters most - your health care, savings, financial protection and wellbeing. We provide a variety of leaves for personal, health, family and military needs. For example, our "Giving Back" program allows you to take up to 16 hours a year to volunteer in your community. Our global mental health and wellness days off provide all colleagues with a paid day off to focus on their mental health and wellbeing.

We also believe in fostering our colleagues' development and offer a range of learning opportunities for colleagues to hone their professional skills to position themselves for the next steps of their careers. We have a tuition reimbursement program for eligible colleagues to enhance their education, skills, and knowledge in areas that relate to their current position or future positions to which they may transfer or progress.

We are an Equal Opportunity Employer

American International Group, Inc., its subsidiaries and affiliates are committed to be an Equal Opportunity Employer and its policies and procedures reflect this commitment. We provide equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories such as sexual orientation. At AIG, we believe that diversity and inclusion are critical to our future and our mission - creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.

To learn more please visit: https://www.aig.com/about-us/diversity-equity-and-inclusion

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with physical or mental disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to [email protected]. Reasonable accommodations will be determined on a case-by-case basis.

Functional Area:

IT - Information Technology

Estimated Travel Percentage (%): No Travel

Relocation Provided: No

AIG Employee Services, Inc.