Network Engineer

Network Engineer

BBH Solutions is presently seeking a security-minded Network Engineer to join our team in a full-time night and weekend capacity.

The primary responsibilities in this role include securing, monitoring, supporting and upgrading client networks. Additional responsibilities include performing project-based implementation, installation and troubleshooting of network and security solutions with our team of engineers.

Skill Requirements:

  • Security/Firewall, LAN and WAN routing and switching support
  • Maintaining Firmware and code for Fortinet, Meraki and traditional Cisco environments.
  • Ensuring IPS/IDS configurations are current
    • Ensuring Network Monitoring tools are performing properly (Auvik)
  • Developing comprehensive graphical and text-based design documentation and effectively managing the documentation and keeping it up to date.
  • Troubleshoot issues as necessary.
  • Act as a focal point for client security and network problems off hours and drive to resolution.

Desired Attributes

  • We seek a bachelor’s degree or equivalent experience and/or military experience along with a minimum of 5 years related experience providing project deliverables in a VAR/MSP environment.
  • Possess Fortinet NSE 8 Certification
  • Possess an Active Cisco® CCNA/CCNP certificate or equivalent experience.
  • We seek experience with security focused network solutions that align with customer’s compliance requirements and industry standards like CIS, PCI, NIST, CSF, ITIL, COBIT, ISO, SANS 20, etc.
  • Working knowledge of host/network common vulnerabilities and exploits (CVEs, IAVAs, • etc.), hacker methodologies and tactics, and the tools used.
  • Must be responsive, efficient, have excellent customer interaction, and exhibit a high level of professionalism.
  • Responsible and reliable, capable of working alone as well as part of a team.
  • Good organization and time management skills with proven ability to manage multiple priorities.
  • Good written and verbal communication skills.
  • Must have critical thinking and problem-solving ability.
  • Be flexible and adaptable to change and hours of work, to meet the needs of the customer.
  • Be a motivated team player.

Required Experience / Capabilities:

Potential candidates will possess experience and demonstrated expertise in at least one or more of the following areas:

  • Fortinet Network Security Implementation, tuning, and support
  • Cisco Network Security configuration and tuning of security appliances
  • Excellent understanding of VPN (SD WAN, site to site, remote access client, IPSec, IKE, tunnel modes, SSL/clientless/AnyConnect, Tunnels between Firewalls, Routers)
  • Fortinet, Meraki and ASA Firewalls and FWSMs (NAT, ACL configuration, IPSec and SSL VPN, configuration of IPS/IDS, CX, BotNet modules; CSM and Next-Gen features, HA configurations, multi-context, transparent mode)
  • IPS appliances and in-line modules, building and tuning of alerts
  • Network Access Control (NAC) / Cisco Identity Services Engine (ISE) integration with wired data, wireless infrastructure & VPN as well as posture, client provisioning, SGT/AGACL’s
  • Content Security (Cisco/Ironport ESA/WSA, Forcepoint, etc.)
  • Security Testing and Audit Platforms (Nessus, NMAP, etc.)
  • SIEM Platforms (Perch, Splunk, McAfee Nitro, LogRythm, etc.)
  • Experience with Windows, Linux, Red Hat, etc. hosts, operating systems and applications.

Application Form