We are currently seeking a Security Network Architect in Overland Park, KS for a full-time, direct hire opportunity. The Security Network Architect implements, maintains, and monitors the organization's security environment and infrastructure.
Hours: Standard Hours, but each person is on call for 1 week, 2x per year
Location: In office 5x per week for 6 months (probation period), then 1x per week remote
Responsibilities:
- Supporting existing security applications, including but not limited to endpoint protection, monitoring systems, IDPS, NAC, and Enterprise NGFW.
- Reviews the current system environment and recommends and implements enhancements.
- Conducts regular system tests and ensures continuous monitoring of network security.
- Maintains and organizes disaster recovery plans and procedures.
- Responds to security incidents and provides thorough post-event analysis.
- Assists IT leadership with cultivating a culture of security awareness through regular training, assessments, and policy review and enforcement.
- Diagnoses and resolves complex network and system issues.
- Plans for and designs security infrastructure (physical and virtual).
- Support the organization's security environment, including planning, installation, maintenance, monitoring, and replacement/upgrade recommendations.
- Keep up-to-date on cybersecurity industry trends and technology developments; make recommendations as appropriate.
- Manage and conduct Threat Intelligence and Threat Hunting analysis activities.
- Design security infrastructure for highly dependable and secure connectivity systems.
- Develop project plans, time and cost estimates, implementation schedules, and project timelines.
- Review, evaluate, and recommend disaster recovery strategies.
- Create and maintain comprehensive documentation for all supported systems.
- Evaluate vendor products in hardware, software, and telecommunications equipment.
- Assist in preparation of proposals and solution presentations.
- Participate in long- and short-range technology planning; recommend purchases consistent with the organization's objectives.
- Recommend networking and security policies and standards to ensure efficient use of resources and adherence to security practices.
- Coordinate internally and maintain contact with outside organizations regarding the maintenance, service, recommendation, implementation, problem-solving, and/or purchase of security services, software, and hardware.
- Troubleshoot security hardware and software problems and consult on complex hardware/software problems and projects.
- Attend classes, seminars, conferences, user groups, and review professional literature to enhance knowledge of trends and developments related to network systems.
- Answer Help Desk phone calls and participate in on-call rotation as required.
- Perform other duties as assigned.
- Must be available to communicate with peers, subordinates, supervisors, customers, vendors, and other relevant parties to accomplish work and employer goals.
- Must be punctual and timely in meeting all performance requirements, including attendance standards and work deadlines.
Education & Special Licenses/Certifications:
- Bachelor's degree in computer science, cybersecurity, computer science, engineering, information technology, mathematics, or a related field, or an equivalent combination of formal education and work experience.
- Must have a valid driver's license and maintain an insurable driving record.
- Access to the Kansas Criminal Justice Information System (KCJIS) may be required. Must be at least 18 years of age and have no felony or serious misdemeanor convictions.
Experience:
- Five to ten years of experience with configuration, installation, and maintenance of enterprise IT security environments.
- Five to ten years of experience with configuration, installation, and management of cybersecurity enterprise systems.
- CISSP certification preferred. Fortinet NSE 4, NSE 5 preferred. Fortinet NSE 6 & NSE 7 desired.
- Certification in networking or server administration preferred.
- Compliance knowledge of NIST and CIS Control Frameworks.
Skills:
- Experience in at least five areas, including:
- Fortinet firewall administration
- Endpoint Protection
- IT risk management
- Security protocols
- Tenable SC+ & Tenable CS
- Threat Hunting
- Identity management technologies
- OSI Model
- IEEE 802.x protocols
- Routing protocols
- Ethernet data networks
- IP addressing
- Advanced administration of applications and environments.
- Ability to document and evaluate the current environment using best practice methodologies for investment utilization.