Network Security Engineer

Purpose

This role is responsible to securely design, implement and support Idemia's network infrastructure.

Key Missions

We are currently looking for a Network Security Engineer within the IDEMIA IST division. This position will be based in Romania, Bucharest. Mostly on site.

Job Profile:

• Understand and support Idemia’s business including Data Center SLAs (99.99% uptime) • Complete lifecycle of activities (design -> implement -> operate) together with relevant teams covering Data Center and Global Corporate Network Infrastructure.
• Understanding and supporting Idemia's High Security Areas (HSA).
• Close collaboration with project and operational related teams to meet the deliverables according to projects’ scope and contracts’ SLAs.
• Active involvement in troubleshooting and fixing Incidents and Problems according to processes and SLAs. 
• Prepare, coordinate and implement technical activities together with stakeholders (external vendors, internal teams) according to projects’ scope and contracts’ SLAs
• Support the project team during project's life cycle - from requirements, acquisition, development, integration, deployment and operation of solutions.
• Participate in building and maintaining documentation tasks.
• Support infrastructure standardization and service catalog related activities.
• Work together with our tooling team on building and maintaining a relevant monitoring system.
• Identify and propose ideas of automation and participate in the implementation phase.
• Identify and propose continuous improvement ideas (process & technical). 
• Identify, propose and support implementation of ideas for migration to Cloud solutions.
• Proactively and timely, identify and assist to resolve any relevant key issues and/or risks.
• Close collaboration with relevant teams in order to keep and prepare the infrastructure within the boundaries of existing and future certifications.
• Close collaboration with incident, change and problem management teams to support and continuously improve relevant processes. • Understand, follow and improve all communicated methodologies, processes, policies, and values focusing on delivering consistent, reliable, repeatable, scalable and quality outcomes.
• Perform internal and external technical presentations in the scope of a project, a product, or a technology.
• Be available to work flexible hours.
• Be available to work extra hours on on-call as per the monthly planning but also in case of emergencies.
• Provide support and knowledge sharing to other team members and participate in the up-skilling and training of existing and new colleagues.
• Support relevant teams in PCI\GSMA audit preparations.
• Participate and assure PCI\GSMA audits are passed from a network security perspective.
• Follow change management process (ITIL).

Profile & Other Information

Candidate Profile:

• At least 3-5 years of experience in a Network Security engineer role or similar.
• Experience in solution implementation and operation within Data Center Environments.
• Extensive experience as a network specialist with various technologies - at least some of below:
• Routing & Switching: Aruba, HP, Cisco
• Firewalls: Cisco Firepower, Forcepoint, Fortinet
• Wifi solutions: Aruba
• NAC solutions: Aruba Clearpass
• Load Balancer: BigIP F5, Kemp
• WAF: Ubiqa, Fortinet
• Cloud Platforms: Amazon AWS, Microsoft AZURE
• Software Defined Networking solutions
• Monitoring platforms: Zabbix, Centreon, Observium, Smokeping
• Log Analyzers: Cortex, Splunk, Arcsight
• Zscaler

• Experience in projects delivery through all phases: design, acquisition, implementation, support.
• Experience in operations: ITIL framework (& ITSM tools), leading major incidents, change coordination, stakeholder coordination, and problem management.
• Experience in infrastructure optimization, transformation and continuous improvement
• Experience with global teams and multi-cultural environment
• Experience with: TCP/IP, BGP, VPN, NAT, ACL (must have), OSPF, MPLS, RADIUS, SNMP, LACP.

Skills:

• Good time management skills
• An ability to follow processes
• Have an independent mindset
• Strong documentation skills
• Strong communication skills
• Willingness to learn new skills and tools
• Fluent in English (verbal and written)