F5 Security Consultant

F5 Security Consultant is needed for The Network Infrastructure & Security Team which is responsible for the operations, maintenance and support of the Data Centre Network & Application Delivery, Security components for delivering voice, video & data.

As part of the Centre of Excellence, our mission is to ensure the stability and integrity of such infrastructure as well as providing advanced technical support, lead, coordinate and drive the resolution of any issue in order to meet the established SLA’s, always focus on maximizing the customer satisfaction.

Main Responsibilities:

• Focus on managing our F5 install base, vendor management, understanding the strategy of the vendor and manage communication/collaboration with engineering teams and architecture to ensure maintainability & support, and act as technical escalation for the team/team members, handle service review meetings and escalations.
• Responsible for management, support and implementation of Data Centre network, application delivery and security infrastructure, principally firewalls (Checkpoint, Cisco), application delivery controllers (Radware, F5), routers and switches (Cisco Nexus Fabric Path, Cisco ACI) in all LG operating countries.
• Ensure systems are maintained with zero impact on B2B and B2C customers relying on critical service such as data, voice and video.
• Assist all LG operating countries and take the lead with the troubleshooting of complex production issues.
• Network security (risk analysis, compliance, vulnerabilities, attacks, etc .)

Next to:

Advance support:

• Responsible for monitoring performance and fault management tools, auditing access to systems, taking actions to improve the performance and stability.
• Deploy, upgrade, patch and tune the DC network, application delivery and security systems.
• Provide technical expertise on NMS integrations and Operations Readiness Tests.
• Develop custom scripts for the automation of certain operational tasks and service monitoring as well as provide input for internally developed tools.
• Deliver high quality technical solutions to both priority support issues and longer-term operational projects.
• Provide guidance to tier-1 support engineers.
• Vendor management as part of IT service lifecycle management
• Participate in impact assessment and handover processes.

Incident management:

• Working closely with CNO NMC (Tier 1) on incident to provide solutions and follow up to Level 3 support/vendor if required.
• Solving tickets with multiple priorities while providing timely responses based on ticket severity.
• Providing timely updates & performing post-resolution, root cause analysis (RCA) & participating in Problem Management meetings.
• Provide leadership on incident resolution and ensure management is communicated clearly and transparently. Managing escalations.
• Troubleshoot and identify software bugs, perform root cause analysis on performance issues.

Problem management:

• Provide expertise in analysis of major incident root cause and follow up with vendors and other corporate teams as needed.
• Post-mortem forensic analysis
• Provide feedback to corporate teams (CTO, CIO, POMG, CNO) concerning performance and capacity of the interactive platforms in production.

Change management:

• Review and approval of complex network and security changes
• Change implementation on production environments.

Projects:

• Participate in review activities (project plans, requirements, design and test cases) to ensure a smooth transition to production.
• Identify and propose ideas for service assurance improvements.
• Involved in vendor selection process and testing of new infrastructure products.
• Deploying tools to proactively monitor the network performance.

Requirements

Knowledge, Skills & Experience:

• HBO or bachelor’s degree in information technology or Computer / Electrical Engineering
• 10 years+ experience – Telecoms/ISP
• Proven hands-on Experience & Operational knowledge of F5 BIGIP-LTM / VIPRION Chassis (Must).
• F5 BIG-IP knowledge and experience of AFM/ASM/APM/ is a must.
• Strong Knowledge of Web Technologies/Protocols (HTTP Protocol, SSL/TLS Protocol… Known Frameworks…etc.)
• Strong Knowledge of TCP/IP, Troubleshooting Skills with tools (tcpdump, ssldump, wireshark.etc.)
• General Knowledge & Preferably Experience of Security Technologies (Proxies, VPN, IPS, DLP, PKI, Application Inspection/Control. Etc.) is desirable.
• Proven hands-on Experience & Operational knowledge of Next Generation Firewalls (Checkpoint NGX R77.xx & R80.xx), Checkpoint Certified Security Administrator (CCSA level is a plus).
• Proven hands-on Experience & Operational knowledge of Remote Access Solutions (Checkpoint SSL VPN) is a plus.
• Proven hands-on Experience & Operational Knowledge of Cisco Networking Technologies (Software’s IOS/IOS XR/IOS XE, NEXOS, CatOs..etc & Devices Catalyst, Nexus 7k-5k-2k-1k, Fabric Path) is a plus
• Operational Knowledge of Cisco AAA (ACS/ISE) is a plus.
• Good Experience with Unix Systems and Scripting Languages (Python, Bash, JavaScript) is a desirable
• Good Knowledge/Experience with Automation Technologies (Ansible, Chef, Puppet) is a desirable
• Good Knowledge/Experience with ExtraHop is a plus.
• Good Knowledge/Experience with one or more of the Firewall Policy Management solutions like (Tufin, AlgoSec, Skybox…etc) is a plus.
• Good Knowledge of IT Infrastructure, Storage, Virtualization, and ISP systems (DNS, DHCP, VoIP, MX, WWW, etc.) is a plus.
• Cisco DC and/or Firewall/ADC certifications are desirable (CCSA, CCSE, F5 LTM, CCNP, etc)
• Proven ability/experience working in a multi layered international matrix organization.
• Experience working with international teams (direct & indirect) from different cultural backgrounds ensuring clarity, collaboration and efficiency as well as experience in managing external resources.
• Experience in managing several platforms/systems and ability to easily switch between them and keep the overview.
• Fluent in English (speaking and writing) and preferable one other European language.
• Strong and dynamic individual, with the ability to thrive under pressure.

Benefits

• 500 Euros + per day
• Duration of contract is 6 to 12 months