Senior Network Security Engineer

Job Description

The End-User Computing Division (EUC) empowers employees to do their best work from anywhere, through smart, seamless, and secure experiences.
 
As digital workspaces continue to evolve, we are designing and engineering VMware Anywhere Workspace, a holistic platform built on our industry-leading solutions for virtual apps, desktops, unified endpoint management and security. Our platform enables us to deliver upon our Autonomous Workspace vision, the next evolution of our offering that leverages data and artificial intelligence, to create workspaces that are self-configuring, self-healing, and self-securing. Together, our work is enabling organizations to optimize both employee experience and security, while modernizing IT and lowering operational risk.
 

Working with the Network Security team, you will be engaged in cutting edge design, implementation, problem-solving and troubleshooting core network services such as but not limited to NSX, PAN Firewall Security infrastructure and many other technologies. If you are passionate about Virtualization Systems, Networks and Security then you will feel right at home. If you are looking forward to working on the latest and top of the line technology stack related to Infrastructure which keeps you always engaged and gives you ample learning opportunity, then this is the right place for you.  You are naturally curious and persistent and do the right thing when no one is looking. Leveraging your experience and working with teams of different expertise and be a key player to help towards the organizational goals.  Above all, you will get to work in a culture and team where new ideas and calculated risks are strongly encouraged and appreciated.

Success in the Role: What are the performance goals over the first 6-12 months you will work toward completing?

Analyze and interpret incoming colleague Firewall changes from a security perspective:

·        Within 30 days of employment, become competent with VMware’s Security rules, guidelines, and standard operations.       

·        You will work closely with Engineering, Finance, and internal Cloud operations to provide day-to-day operations support for the Network Security Services portfolio

·        Within 90 days of employment, you will be deploying new PAN Infrastructure and be responsible to resolve internal customer technical issues through diligent research, reproduction, and troubleshooting.

·        Within 180 days you will be in a position to work on escalation’s, Lead Trouble shoot sessions with PAN TAC and help out on a rotation basis with On call Support.

·        Within 360 days along with the above, you will be reviewing project requirements and putting together design packages which will be used from a PAN infrastructure deployment perspective. You will be a self-started and lean into to projects until the best solution is found.  You will also help define security standard for the entire company.

What type of work will you be doing? What assignments, requirements, or skills will you be performing on a regular basis?

Your regular activities may be modified to suit your professional strengths, but you can expect a variety of the following assignments:

·        Preparation of internal and external firewall changes

·        Create Change Management workflow’s for security changes

·        Analyze Customer requests and implement the necessary policy changes on the Firewall infrastructure.

·        Use Visio to represent you design suggests and implementation recommendations.

·        Assist as an escalation point for remote work VPN issues.

·        Quickly and accurately communicate the necessary changes needed from a security perspective

·        Assist with quarterly and annual budgetary costings

·        Daily you will make hands on changes to our firewall infrastructure.

·        On a quarterly basis review our implementation flow to see where optimizations and automation can help efficiency.

The successful candidate will be deploying and troubleshooting Firewall technology daily.  They will be using command line, GUI and their scripting skills to achieve this.  Wireshark analysis and any other analytical tools can be used for same.  As part of a global team, you will have access to the infrastructure North and South of the Security platform giving the successful candidate a really exciting opportunity here to grow.  The opportunity for leaning and growth has no celling here.  For new deployments the successful candidate will be responsible to document and share that knowledge with the global team.

You will be responsible to install, configure, manage, maintain, and support security production services for Internal and External Customers. You will be also involved in planning for disaster recovery, other backup contingencies, diagnose and troubleshoot services, software, and other network services related problems. You will also assist with coordinating between different teams for smoother 24/7 day to day technical operations and executions.

You will be primarily responsible for the installation, configuration, and maintenance of all the Palo Alto Networks Firewalls infrastructure.  Furthermore, you will be required to perform all PAN Firewall operations to include creating NAT Polices, Security Firewall rules changes, Trouble shoot PAN GP issues and many more functions. You should possess expert knowledge of TCP/IP, IP routing, LAN and WAN protocols, campus and data center switching. 

The team is distributed across and works from different parts of the Globe. The team follow Dynamic, Open culture at work and encourages to learn from others, teach others and grow along with others while being collaborative and courteous.

Broadcom is an equal opportunity employer. Broadcom is firmly committed to providing equal employment opportunity for all employees and applicants without regard to race, color, sex, gender, gender identity, gender expression, sexual orientation, religious creed, national origin, age, physical disability, mental disability, medical condition, pregnancy, genetic information, ancestry, marital status, military or veteran status, union membership, political affiliation, or other bases protected by applicable federal, state, or local law. Broadcom will not discharge or in any other manner discriminate against any employee or applicant because they have inquired about, discussed, or disclosed their own compensation or the compensation of another employee or applicant. Broadcom will consider for employment all qualified applicants with criminal histories in a manner consistent with applicable law.