- Ensuring the stability, availability, performance and security of the enterprise network; including, but not limited to, internal/external network security, vulnerability scanning, patching and remediation, software/firmware updates, server class operating systems, managing cloud services and other duties as assigned.
- Planning and scheduling periodic maintenance of all networking hardware and software systems, creation of and maintenance of detailed network design drawings and configuration best practices.
Network Security Engineer - Hackensack, United States - Bernard Nickels & Associates
Description
Network and Security Engineer
Responsible for administration, monitoring and maintenance of a top law firm's enterprise network environment including, but not limited to:
Managing technologies, vendors, and products, such as:
Servers/Networks: Dell servers, Netapp storage, VMware, Veeam, Zerto, Cisco, co-located data centers, Microsoft Azure IaaS and Azure AD, Active Directory, VDI/Azure Virtual Desktop
Security tools: Microsoft 365 E5 Suite, Tenable/Nessus vulnerability management, a SIEM, Logmonitor
Online services: Exchange, SharePoint, Teams, OneDrive, Mimecast
Connectivity: WAN, VPNs, Palo Alto firewalls
Management tools: Intune, Configuration Manager, Citrix
Legal-specific software: iManage, Intapp, Litera, Elite
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Network and Software Systems
• Ensuring all "network hardware" and all end-user hardware not managed by the Firm's Help Desk is configured, updated, and regularly maintained for optimal security and operational uptime
• Responsible for performing semi-annual inventory of server software, hardware, firmware, creation of inventory reports, and end of life or end of support dates that impact yearly budgets and hardware refreshes
• Escalation point for Help Desk and escalated support tickets
• Responsible for diagramming entire network including internal/external IP address spaces, subnets/vlans, and networking gear
Security
• Subject matter expert for performing monthly internal and external vulnerability scanning; reports to Directors and CIO on any emerging threats and critical alerts/vulnerabilities. Researches and plans remediation procedures for vulnerabilities
• Responsible for fine tuning alerting systems, such as iManage Threat Manager, Crowdstrike, Microsoft Defender for Identity and all other firm security systems
• Responsible for auditing monitoring systems to ensure proper configuration and functionality
• Schedules and coordinates monthly security meetings with the Firm's Engineering team to address vulnerabilities, assign patching/remediation and follow up on post-remediation scans
• Responsible for reviewing daily security alerts and ensuring all alerts are acted on timely and properly. Also responsible for documenting processes followed for different alert types to ensure the Firm's Engineering team can assess and act upon alerts independently
• Recommends policies and procedures to ensure maximum security of firm resources while maintaining end user 'ease of use'
• Ensures compliance of departmental policies and procedures as established within the department, including, but not limited to, change control management policies, network security policies, systems maintenance procedural policies, disaster recovery and business continuity procedural policies and system documentation policies
• Ensures the security of the Firm's applications, as directed by the Chief Information Officer, is properly administered throughout the enterprise
• Responsible for managing the configuration, maintenance and testing of the applications in the Firm's office facilities, datacenter facilities and cloud-hosted environments to ensure maximum availability
• Schedule and coordinate with the Director of Technology Services for the timely procurement of the necessary server and network hardware components. Responsible for ensuring all faulty equipment is sent for repairs when necessary and the requisite follow-through is timely
• Coordinates with the Directors, Managers and Staff to ensure that projects are completed efficiently
• Provides quality customer service to all of the Firm's staff and clients including direct end-user support from the Firm's technical support department.
• Contribute ideas, vision and expertise to management on any activity (current or future) that has impact to the Firm's enterprise application systems and technology advancements. Stay current on all technology advancements in respect to their application within the Firm
• Contribute ideas, vision and expertise to management on any activity (current or future) that has impact to the Firm's enterprise application systems and technology advancements. Stay current on all technology advancements in respect to their application within the Firm
EDUCATION AND/OR EXPERIENCE
Minimum 5 years' experience in management, design, and implementation of network infrastructure in a heterogeneous operating system environment with hands-on experience in maintaining mission critical enterprise applications at a high level of availability.
Requires broad knowledge of the specialized and technical field of computer science, and business/management acumen equivalent to a complete college or university education; includes thorough skills knowledge.
4-year college degree preferred, equivalent experience considered.
TECHNICAL SKILLS & REQUIREMENTS
Minimum of 5 years' experience in the management, design and implementation of Windows computer systems. Experience administering and maintaining Microsoft SQL, Microsoft Exchange, Office 365/Azure and MS Active Directory is desirable. Experience with iManage document management administration, Thomson Reuters 3E finance management systems and Foundations system administration preferred. Proven experience supporting large number (200 or more) of end users.