Weyerhaeuser Senior Network Engineer in United States
At Weyerhaeuser, our IT team is on a mission to transform the timber industry. We’re implementing technology that will keep us at the forefront of innovation in the forest products industry. Weyerhaeuser is seeking aSr. Network Engineerto work full-time within North America. We are looking for a talented senior engineer with a focus on network security who is highly motivated to innovate and automate. As a key contributor to our Enterprise Technical Solution - Network Services team, this position provides direct ownership of key intrusion detection and prevention technologies. The position will draw on extensive experience managing network firewalls, as well as strong understanding of network routing concepts such as BGP, EIGRP, and OSPF. A successful candidate will understand the guiding principles of the NIST security standard and how those principles should be implemented in a large enterprise-wide environment.
TheSr. Network Engineerrole**provides design and implementation of core components within a large-scale enterprise network. Candidate will focus on ensuring the security and role-based access to network infrastructure. Responsibilities include planning, engineering, and monitoring the security policies, provided by IT Security and IT Governance, for the protection of the network systems. Additionally, ownership of IDS management and firewall services. Our mission is to deliver innovative, cost-effective solutions and services that enable our customers to rapidly adapt to dynamic environments and drive operation excellence.
Designing, implementing, and maintaining network security
Identifying, monitoring, and defining the requirements of the overall security of the network.
Configuring and implementing IDS, SDWAN, VPN, web protocols and firewalls.
Supervising and hardening the configuration and installation of new software and hardware.
Implementing regulatory systems in accordance with IT security.
Consistent drive towards operational excellence
Reviewing security advisories, design and deploy solutions to mitigate key risks found in security advisories.
Creating different ways to solve the existing threats and security issues.
Participate in Technical Risk Assessments Meetings to note system vulnerabilities
Investigating intrusion and hacking incidents, collecting incident responses, and carrying out forensic investigations.
Drive to automate where opportunities are identified
Audit and report on effectiveness of security initiatives
Design and deploy network security monitoring and provide data-based analysis and recommendations to IT security
Informing IT security and leadership about the security incidents as soon as possible.
Testing and checking the system for weaknesses in software and hardware.
Using industry-standard analysis criteria to test the security level of the network.
Stays current on industry trends and new technologies
Researching latest technologies and processes that improve the overall security of the system.
Understand key vendors’ solution roadmaps, specifically Palo Alto, Cisco, Meraki, & F5.
Participate in the development, and continuous improvement, of network roadmaps
Bachelor's Degree in IT (completed or in progress) and\or 10 years of practical network services experience.
Proven strong understanding of WAN technologies and network routing concepts such as BGP, EIGRP, and OSPF.
Deep and demonstrated understanding of application data flow on a network
3 years of experience deploying layer 7 firewall technology and concepts, including application-based and identity-based defense policies
3 years of experience designing networks following zero trust concepts for layer 2 and layer 3 segmentation and defense
Ability to articulate lateral movement risks on a network to business personnel
Possesses expert level technical knowledge and skills and a fundamental knowledge of how network technologies are integrated
Experience with SD-WAN deployments and operations
Experience operating in a cloud computing environment (AWS, Azure, etc.), include network security groups.
Expertise in authentication and network access concepts including ISE, TACACS, Kerberos, and other AAA services.
Knowledge and experience preventing known malicious activities ie. man in the middle, DDOS, DNS poisoning, etc.
Proven experience designing secure edge architectures
Excellent oral and written communication skills
Skilled in communicating technical topics to non-technical audiences
Effective in creating and delivering presentations to staff and customers
Excellent collaboration skills in working together with others across all IT segments
Proficient in exercising sound judgment in translating IT strategies into achievable IT initiatives
Skilled in solving highly complex problems and translating business requirements into technical solutions
Skilled understanding of ITSM.
Able to apply business knowledge to develop and deliver innovative, value-added improvements
Proven ability to operate and effectively communicate while under pressure; as well as the ability to manage a diverse workload and work under time constraints with minimal supervision
Additional Desired Qualifications:
- Experience designing and deploying networks and security-focused networks in OT/ICS environments
Experience deploying OT/ICS wireless solutions
Knowledge and\or experience with SASE deployments and operations
Job: *Information Technology
Title: Senior Network Engineer
Location: United States
Requisition ID: 01017223
Other Locations: USA-WA-Seattle