About the job
Note: Please submit your CV in English to be considered for this role.
Fortinet is looking for a Senior Security Engineer to join the Corporate Information Security team. This highly technical role is an integral part of the Fortinet’s security team that is responsible for the security of Fortinet’s corporate and research environments. The individual will help in the secure deployment of Network systems and help in the maintenance of non-in-line Security systems and the administration of same in a mission-critical, 24/7 environment.

The ideal candidate should be able to document and articulate proposed designs to both technical peers and service stakeholders. This person is a dedicated self-starter with interest in security and networking technologies and willingness to take on complex issues and resolve them in a timely manner. The candidate will be customer focused with an acute sense of urgency in resolving issues that incur a service interruption. The applicant will have 5+ years of previous experience supporting a highly available Wide Area Network or Internet service with knowledge in OSPF and BGP routing on Cisco IOS, Juniper, or Fortinet devices and who is now looking forward to work on network and systems security challenges. Previous work with IOS based routers, switches and Layer-7 firewall (Fortinet, Checkpoint and/or Palo Alto firewalls, etc.) is a great plus as well as strong current Security Analysis experience for Linux and Windows-based systems.

We are seeking an intelligent, highly motivated, experienced security engineer with an extensive background in networking, who understands and enjoys cutting edge security technologies and has a passion for troubleshooting, learning, and sharing knowledge. A willingness and aptitude to learn pen-testing is highly desired. This engineer will work in a team-oriented, fast-paced, flexible environment with a wide array of responsibilities across the organization. The person is expected to be a team player with good problem solving, organizational and verbal and written communication skills.
Responsibilities:

1. Help in implementation of strategies for threat analysis and vulnerability assessments
2. Design, implement and support security-focused tools and services
3. Maintain intrusion prevention systems and other security devices
4. Maintain and deploy network infrastructure to support security operations
5. Participate in security compliance efforts (e.g., SOX, ISO 27001, SSAE-16, etc.)
6. Evaluate new and emerging security products and technologies
7. Participate in tier 2 and tier 3 security operations support
8. Respond to physical and logical security incidents through remediation efforts including implementation of a secure infrastructure and the development of and adherence to incident response and recovery processes
9. Monitoring IDS, Firewall, and log correlation tools for potential threats, initiate remediation actions per procedures where required
10. Performing log analysis and participating in the incident response lifecycle
11. Helping to audit, prevent, respond, or remediate security incidents
12. Initiate escalation procedure to counteract potential threats/vulnerabilities
13. Help Monitor, optimize, troubleshoot, document, and otherwise ‘pamper’ the network
14. Work with Operations team in helping the management of vulnerability and automated penetration testing process to ensure proper security for the organization
15. Generate scripts to automate common tasks
16. Proactively assess potential items of risk and vulnerability in the network & systems
17. Reviewing of SIEM events/alarms
18. Performing log analysis and participating in the incident response lifecycle and on-call rotation duties
19. Understand new and emerging threats that can affect Fortinet’s information resources.
20. Work with other security and technical staff to conduct network testing, documenting incident results and providing management with incident reporting and summary observations
21. Maintain required documentation and management of security operations strategy plus compliance for the organization.
22. Assist technical or support services staff with information systems capabilities assessment reviews and/or audits.

Required Skills/Qualifications:

1. At least 5 years hands-on work experience in IT networking and/or security engineering
2. Experience working with development team(s) that delivered commercial software or software-based services (development, QA testing, or security role)
3. Solid experience and technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security
4. Strong foundation in network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, DNS, DHCP NetFlow, IPv6 etc.)
5. Solid understanding in designing and deploying networks
6. Knowledge of threat modeling or other risk identification techniques
7. Knowledge of system security vulnerabilities and remediation techniques
8. Knowledge of IDS/IPS, Load Balancers and SIEM systems
9. Knowledge of Network Design, Operation and Architecture principals (hardware, routing, switching, segmentation)
10. Excellent written and verbal communication skills
11. Excellent teamwork skills
12. Results oriented, high energy, self-motivated
13. A BS degree in Computer Science, Cyber Security, other tech-related degree, or equivalent experience