Network Security Specialist

Company description:

Digicel Group Limited

Job description:

Primary objective of the job: 

The core elements of the Digicel 2030 transformation see it undertaking a complete re-design of the organizational structure; putting customers in control and making a commitment to deliver a superior superfast network experience.

Cybersecurity is a centralized business function with company-wide oversight to establish the strategy, governance (policies, standards, procedures), operations (systems, coverage requirements), compliance and testing, budgeting, staff training, vendor selection and management, across all 25 Digicel companies across the Caribbean and Central America.

The team’s scope oversees all business units to ensure enterprise-wide scope, and manages the deployment and management of several globally deployed security systems to encompass all Digicel country networks, infrastructure of over 10K devices, and user accounts of over 6K. In addition, the team oversees all cybersecurity testing and provides expert guidance on all new and proposed projects, network changes, new suppliers across the global business. This including support and controls for data protection to ensure compliance and enforcement with data protection standards and laws across the global organization.

As the Network Security Specialist you will conduct network security assessments, develop and maintain network security plans, maintain/review firewall rules, coordinate with external organizations to perform security remediation, work closely to Network/IP teams and maintain network diagrams, perform alert and event analysis, vulnerability management, KPI and SLA management, perform incident investigation, and perform other ad hoc security related activities from time to time. Additionally, monitor threat and vulnerability news, and coordinate / follow-up on activities and communications with key external security partners and other internal stakeholders including IT/Technical teams.

Main Duties and Responsibilities:

• Review network device configurations for non-compliance, best practice setup, or signs of compromise. This includes firewalls, routers, switches, and appliances comprising the mobile network core
• Assess network topology and device configurations identifying security concerns and providing security best practice recommendations
• Respond/Coordinate efforts between key stakeholder teams to emergency security threats from Firewall (FW), Intrusion Detection Systems (IDS), Network attacks such as DDoS, Antivirus
• Collaborate with technical leads across all countries: IT, IP/Technology, Service Desk, Applications owners on matters related to security across global footprint
• Collaborate and respond to alert events with the Managed Security Service providers
• Ensure follow-up of vulnerability remediation, and patching for network devices
• Find innovative ways to promote and support vulnerability remediation and good security practices with Digicel’s entities
• Perform analysis of log files from a variety of sources (e.g., network traffic logs, firewall logs, intrusion detection system logs, Domain Name System (DNS) logs) to identify possible threats to network security
• Conduct network/IT security audits
• Develop and maintain network security plans
• Work with the vendors to establish network security plans and verify/guide compliance
• Collect logs and evidence for investigations
• Assist with configuration and management of network user accounts, access controls, and vendor access
• Assist in the configuration, tuning of firewalls across all country networks, as well as administering the Azure firewall connecting all internal networks to Digicel Azure cloud network. This includes ensuring required source and destination, ports and protocols are appropriately defined and regularly checked to maintain a secure posture and connectivity
• To assist with other duties as assigned from time to time

Academic Qualifications and Experience Required:

• Bachelor’s degree in IT/Computer Science, or equivalent education and/or experience
• 1 - 2 years’ experience in IP/IT/Network Administrator or equivalent knowledge OR One 1+ year of experience in IT Security domains (Network security, security operations, compliance and regulations)

Functional Skills:

Technical:

• Good understanding and knowledge of network and application security principles
• Good knowledge of TCP/IP, common internet protocols and applications, including experience working with firewalls, routers, switches.
• Good experience with Network protocols and packet analysis tools.
• Sound knowledge of various security methodologies and processes, and technical security solutions and their administration (firewall, DDOS solutions and intrusion detection systems).
• Good general knowledge of IT and networked systems: web servers, active directory, mail servers, file servers, databases
• Good knowledge of Unix/Linux and Windows Operating system and Active Directory and their security
• Good understanding of cloud based critical infrastructure systems security threats
• Familiarity with latest security vulnerabilities, advisories, incidents, penetration techniques, attack vectors, and countermeasures.
• Deployment/Configuration of Cisco routing/switching/firewall devices
• Deployment/Configuration of Network Monitoring tools and devices
• Industry accepted certifications preferred (eg. CCNA, CISA, CISSP, GIAC, Comptia security+, Azure fundamentals, Azure Security Engineer)

Personal :

• Deeply passionate about cybersecurity and emerging technologies and techniques utilized by threat actors.
• Out of the box thinkers that enjoys constantly learning new things and can adapt that education into new processes
• Dynamic with excellent analytic skills
• Excellent reporting and documentation skills
• Ability to prioritize tasks