IP Networks Engineer

Secure Sites

Salary: Competitive

Location: Porto Salvo, Portugal

Posted: 10 Feb 2020

Main Purpose of the role

We're developing and operating Consumer and M2M Remote SIM Provisioning platforms deployed in several locations globally. These platforms are used to securely provide and manage eSIM profiles that are made available for devices to utilize. The platform serves several critical applications and hosts hundreds of millions of profiles in a security intense environment. The secure site team deploys and manages the secure sites including datacenter, compute, storage, network, firewalls, secure access, secure logging, HSMs, backup and restore, deployment procedures and pipelines. The secure site team is reponsible for deployment of a fully functional site that can be audited and certified for live operation. We truly care about our customers and worry about functional and non-functional scope in a highly collaborative and diverse environment.

Key Responsibilities

The IP Networks Engineer is responsible for designing, deploying and maintaining the IP network and security.

  • Deploy and maintain secure platforms in distributed sites around the world;
  • Responsible for creation of end to end monitoring for infrastructure, application and service layer;
  • Automation of configuration changes;
  • Systems hardening, working with our security team;
  • Set a high standard for documentation of systems;
  • Maintain system efficiency;
  • Perform daily system monitoring, verifying the integrity and availability of all network components;
  • Monitor, detect and mitigate network and security related events;
  • Management of FW rules according to the company security policies;
  • OS/security patches and upgrades release review on a regular basis;
  • Evaluate and modify systems performance;
  • Troubleshoot reported problems.

Experience

  • A minimum of 3 years as IP Network Engineer;
  • IPSEC, site to site and remote access VPNs;
  • Experience managing Fortinet Firewalls;
  • Experience managing L2 infrastructure with STP and MSTP;
  • Dynamic routing protocols like BGP and OSPF;
  • Experience managing Catalyst and Nexus series Cisco switches;
  • Working knowledge of Nexus VPC is an advantage;
  • Experience with automation tools such as terraform and Ansible is an advantage;
  • Hands-on scripting experience;
  • LDAP, RADIUS and DNS knowledge;
  • Understanding of essential TCP/IP protocols: TCP, UDP, ICMP, SMTP, SNMP, LDAP, DNS, NTP and others;
  • Ability to present ideas in user-friendly language;
  • Hardening of OS and Systems according to company security policies E.g.: PCI-DSS, PCI-CP, CIS, ISO27K;
  • Good interpersonal, oral and written communication skills.


  •  

    Apply now

    No agencies. We do not accept CVs from 3rd parties

    Apply now

    No agencies. We do not accept CVs from 3rd parties