Network Security Operations Engineer (Level 3)

Software Guidance & Assistance, Inc., (SGA), is searching for a Network Security Operations Engineer (Level 3) for a contract assignment with one of our premier Healthcare Services clients in Austin, TX. This role will be remote supporting CST hours.

Responsibilities :

• You will play a pivotal role in our organization's cybersecurity efforts.
• Responsible for leading and executing complex cybersecurity operations and incident response initiatives to safeguard our systems and networks against advanced threats.
• Working closely with cross-functional teams, you will provide expert-level guidance to junior analysts and other teams within the organization.
• Review proposed change requests to rules or policies for firewalls, router access control lists, IPS, and proxies.
• Perform regular reviews or audits of deployed rulesets to identify drift from baseline.
• Serves as primary point-of-contact in reviewing threats and vulnerabilities and ensuring servers and firewalls are properly configured and managed.
• Monitor and address security incidents, implementing measures to enhance incident response and resolve security issues.
• Perform regular reviews or audits of deployed rulesets to identify drift from baseline.
• Review proposed change requests to rules or policies for firewalls, router access control lists, IPS, and proxies.
• Perform triage of potential security incidents in accordance with the SOC (Security Operations Center) case handling procedures, alert handling procedures, and customer-specific procedures.
• Mentor and provide guidance to junior network security engineers.
• Perform continuous improvements on services by identifying and correcting problems and gaps in knowledge and document materials.
• Participate in on-call rotation (including weekends) to ensure continuous operations.

Required Skills:

• A Degree in Cybersecurity, Network Engineering, Computer Science, Information Systems or other related field, or equivalent work experience
• 5-7 years of combined IT and Network security work experience with a broad range of exposure to cybersecurity functions.
• Profound knowledge of network security principles and best practices.
• Analyze network communication flows (based on WireShark traces or Firewall loggings)
• In-depth knowledge of network protocols (TCP/IP, LAN/WAN, Routing, HTTP, DNS, SMTP)
• Hands-on extensive experience and proficiency performing network security investigations with the following security tool categories: (Firewalls, Network IDS/IPS Solutions, Switch/Router ACLs, Network Access Control solutions, Proxy Servers and Secure Web Gateway, SIEM, EDR, Email Security Gateway, SOAR, Anti-virus).
• Deep understanding of cyber security industry frameworks (e.g. MITRE ATT&CK, D3FEND, NIST, Cyber Killschain, etc.)
• Excellent written communication skills, with a focus on translating technically complex issues into simple, easy-to-understand concepts in English
• Experience in leading major incident breach response activities.
• Ability to develop new, and follow existing operating procedures and runbooks
• Highly skilled in technical incident report writing and maintenance of document and evidence repositories
• CCNA, CCDA, CCNP, or Network+ certification required.

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .

SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy