Sr. Network Administrator FireEye
Join one of the hottest and fastest growing B2B companies in hi tech. FireEye, a leader in stopping advanced cyber-attacks, was recently named ?Silicon Valley?s hottest security start-up? by Forbes, and is backed by pre-eminent investors Sequoia Capital, Norwest Venture Partners and Juniper Networks.
FireEye is experiencing explosive growth and well on its way to an IPO as it continues to transform the security industry. FireEye?s customers are the best of the best in every industry around the world, including the top hi tech, financial services and manufacturing companies and all of the leading government agencies. Our headquarters is located in Milpitas, California, and we continue to expand globally. Join the team that is protecting the world from the next generation of cyber-attacks!
This position will be responsible for FireEye?s overall network and security infrastructure for all customer-facing services. The individual will also define network and security standards, policies, and procedures based on industry best practices and guidelines.
Establish network architecture design principles, practices, implementations, documentation and LAN / WAN maintenance
Evaluate security practices, assess vulnerabilities and develop programs to improve security and mitigate risk
Conduct security assessments and make recommendations on data network (LAN/WLAN/WAN/DMZ/Internet), disaster recovery, remote access, network appliances, servers, and directory services security;
Develop and analyze security policies, procedures and technical standards including corporate compliance and end-user awareness;
Evaluate existing security technology and infrastructure and propose strategic architecture and direction for information security systems
Participate in security incident triage and response, including working with firewall and device logs, investigating security events, protecting forensic value of data and establishing monitoring and incident reporting and response procedures
Establish consistent metric and collection methods for device log aggregation and review procedures
Help management define the bounds and aims of network implementations including developing and reviewing proposals and presentations.
Oversee security of hosted services and applications including security requirements and architecture, risk analysis, and periodic / change reviews
Work hands on with business units to help manage project deliverables, delegating and monitoring tasks of other engineers and providing management with status and progress reports
Provide comprehensive and timely support to all SOX and internal audit issues as they relate to Security Operations including analyzing data privacy requirements and implementing business process and information technology controls
Define and ensure proper implementation of personal computer security configurations and policies including end-point security
Select and manage network and security products, services, evaluations, and vendor relationships
Assess internal/external application and deployment security and collaborate with application developers to ensure that development methodologies incorporate security policies and best practices
Ensure that services provided by other enterprises, including outsourced consultants and providers are consistent with established information security policies.
Extensive background in planning and designing projects and analyzing existing network systems and procedures for efficiency and effectiveness.
Expert knowledge of networking and routing protocols such as, TCP/IP, BGP4 (multi-homing), OSPF (multi-area), ISIS, etc.
Expert working knowledge in the operation of Ethernet LAN switching protocols and standards including, VLANs, VLAN aggregation, Ether Channel, PVLANs, Spanning Tree & Rapid Spanning Tree, 802.1Q, 802.1e, and CAT 5 and fiber cable distribution systems
Knowledge of Data Center design, build-out, and best practices
Experienced in designing and implementing Business Continuity Plans and Disaster Recovery Plans and facilities
Knowledge of Juniper firewalls, including VPN and routing functionality
Experience with multi-tier architectures, including best practices around tier isolation (for databases, etc)
Ability to analyze network packet traces
Ability to perform penetration testing and work with third party security firms to coordinate similar testing
Advanced knowledge of DNS and DHCP
Extensive knowledge of network security systems, intrusion detection systems and protocols including, ACE, ACS, VPN, GRE, IPSEC, IKE, TACACS, RADIUS, ACLs, 802.1x, audits, log files etc.
Basic knowledge of shell scripting and programming languages such a PERL, Ruby, PHP, or Python
Knowledge of Unix/Linux, Active Directory, Exchange and Office Suite applications
Strong analytical skills for interpreting business requirements and translating them into technical specifications
Strong project management, time management, and organizational skills.
Excellent written and verbal communication skills
Qualifications, Education and Experience:
7-10 Years in Information Technology roles involved heavily in networking and security
BS or MS in computer Science or a related field
Network Certifications: CCIE preferred (written and lab)
Security Certifications: One or more information security certifications (CISSP, CISM, CISA, SANS, ISO17799)
Well-versed in commercial information security requirements, guidance and standards
Strong written communication skills including the ability to develop and write network and security policies, documentation, and guidelines for technical staff and end users
||Milpitas, CA |