Sonoma Consulting is one of the fastest growing national IT Consulting and Executive Search company in the United States, which was founded in 2011 by Mark McGee, the President and CEO. Sonoma Consulting has two business divisions - IT Consulting Services & Executive Search to serve its 150 national clients which range from entrepreneurial start-ups to Global Fortune 500.

Overview The Network Security Engineer will have practical, hands-on experience with all aspects of network security and its management in an enterprise environment. This role is expected to provide strong leadership and relevant recommendations with regard to the design, implementation and support of the enterprise security environment including patch management process at client. This environment includes approximately 2000 staff members located in more than 50 offices across the globe.

• The ideal candidate will possess a combination of technical expertise in some or all of the areas listed below combined with experience in managing third-party resources in order to successfully execute tasks:

• Network Security Hardware & Software Management

• Patch Management and Vulnerability Remediation

• Security Information and Event Management

Candidates with experience in one or more of the following areas will be strongly preferred:

• Securing Cloud-based servers & applications

• Intrusion Detection/Prevention Systems

• Network Event Correlation

• Linux

• Microsoft Azure

• Understanding linkages between networks, applications and systems.

• Our client currently utilizes a number of third-party organizations to provide Helpdesk and Level 1-3 support. The candidate will be expected to interact with these organizations on an on-going basis to ensure that as-implemented security does not negatively impact the business. The candidate will also be required to provide a high level of technical expertise and leadership on an as-needed basis when complex vulnerability and security-related issues and situations arise.

• Working as a member of a core IT team based in Chicago, IL and reporting to the Manager of Global Infrastructure, the Network Security Engineer will have primary responsibility for all network security management processes design, implementations, maintenance and support throughout the client environment. Will provide leadership and direction to Network Operations Center (NOC) resources and serve as primary escalation point for all security incidents. Also they will be responsible for understanding Common Vulnerabilities and Exposures (CVE), determine whether identified CVEs apply to environment, design and implement patch process to address CVE.

Responsibilities

• Core Responsibilities Documentation & management of enterprise security
  devices including but not limited to routers, firewalls, switches, and
  WAN accelerators.

• Maintain currency of all network documentation.

• Serve as primary Point of Contact (PoC)
  for Manager Network Monitoring Service vendor to assess, prioritize and
  implement recommended remediation to identified incidents.

• Research of identified CVE for operating system platforms

• Provide subject matter expertise on everything from host hardening to web application vulnerabilities.

• Provide leadership in driving internal vulnerability and patch projects across platforms including but not limited to PCs, Servers and Network

• Managing patch implementation across platforms including but not limited to PCs, Servers and Network.

• Find and fix vulnerability issues and assist others to architect solutions with security in mind.

• Assess and implement vendor vulnerability and patch solutions that support the business goals of the organization.

• Prioritize work efforts based on intelligent assessment of risk.

• Perform vulnerability assessments of a variety of applications and systems including but not limited to PCs, Servers, Network.

• Where necessary, build internal tools to fill gaps in vendor provided tools.

• Ability to create detailed and usable documentation of the patch processes.

• Ability to read, analyzes, and interprets technical journals.

• Ability
  to contribute to the development and refinement of client technology
  roadmaps by proactively assessing current technology capabilities
  against current and emerging business needs.

• Ensure proper protection and use of software, including virus protection

The Person

• Education B.S. in Computer Science or equivalent preferred.

• Experience
  Possess a minimum of five (5) years’ experience designing, implementing
  and managing complex network security environments.

• Possess a minimum five (5) years’ experience implementing and supporting vulnerability and patch management in enterprise environment.

• Hands on practical experience working with key network & security hardware and software including Cisco, CheckPoint, Juniper.

• Experience working with multiple operating systems with expert level knowledge of Linux, Microsoft Windows or OS X.

• Strong well rounded background in host, network and application vulnerability and patch management.

• Advanced knowledge of TCP/IP networking and network services such as DNS, SMTP, DHCP, etc.

• Familiarity with regulatory and compliance requirements, such as SOX, HIPAA, PCI-DSS, etc.

• Extensive knowledge of internet security issues and the threat landscape.

• Experience in securing cloud applications, environments and servers.

• Experience with shell scripting and one or more programming languages is strongly preferred.

All your information will be kept confidential according to EEO guidelines.