Network Security Consultant

Job description: Security Consultant Micro Segmentation/Network Security – Guardicore

Location: Düsseldorf, Germany

Candidates skillset and experience covers

· Network fundamentals including the OSI model, TCP/IP, IPv4/6.

· Understanding of complex network designs and zero trust concept network.

· Good understanding of micro-segmentation concepts.

· Redundant and scalable networks providing Backup- and DR solutions.

· Networking & Security including configuration and troubleshooting of solutions.

· Should be able to analyze the traffic and suggest best practices for micro segmenting the environment.

· Must have hands on experience on Micro Segmentation solutions mainly in Guardicore, Colortokens, Cisco Tetration. Preferable in Guardicore

· Traffic packet & protocol analyzer (Wireshark, nmap, etc.), reading data-frames and network packets.

· Implementation and Management of complex micro segmented environment which includes solutions evolution and troubleshooting.

· Implementation of /Understanding of network zone segregation like complex VLAN environments.

· Understanding the concept of Virtual Networking.

· Firewall management and engineering, including rulesets for big and complex infrastructures firewall solutions (Operations or/and Engineering).

· Datacenter or collocation center experience or relevant experience by colaborating with field engineers.

· Understanding and or experience in the use of virtualization solutions, VMware, Hypervisor, Docker and similar

· Understanding of different server types and their required communication protocols and ports.

· 10 years of hands-on experience on security domain managing Security Infrastructure, 3 years experience in deployment and managemnet of Micro segmentation solution.

As an advantage skillset and experience with

· Linux fundamentals including iptables (at least 2 years experience)

· Understanding and or experience of traffic load balancers.

· Understanding and or experience of Next Generation, Web Application, and DB Firewall solutions, IDS/IPS technologies.

· SIEM principals and tools (Qradar/Splunk).

· Bash scripting and well-known programing languages for networking automation (e.g. Power Shell, Python)

· Experience with creating High Level and complex Low Level network designs (topologies) based on existing network areas or planning for building new ones

· Experience with network segmentation concepts.

· Understanding and or experience working within ITIL based frameworks

Beside knowledge from professional career additional metrics to check knowledge

· University degree in IT or/and IT Security

· Certifications such as CCNP or similar

· FW Vendor certifications such as Palo Alto Accredited Configuration Engineer, Palo Alto Certified Network Security Engineer, Fortigate, Checkpoint, Cisco etc.

· Segmentation Vendor certifications such as Colortokens, Guardicore.

What else will represent an advantage?

– Redis knowledge or experience with it.

– MongoDB knowledge or experience with it.

– Elasticsearch knowledge or experience with it.

– Nginx knowledge or experience with it.

– Rabbitmq knowledge or experience with it.

– Consul knowledge or experience with it.