Lead Systems Engineer - Network Security/Proxy
Responsibilities
- We are looking for a Lead Systems Engineer to setup, maintain and support our growing network proxy infrastructure. You will be part of the External Connectivity team that is responsible for designing and developing scalable, maintainable, highly available network architectures used for –
- Connectivity of SG infra to our partners
- Remote access solutions for internal users (SSL VPN)
- Site to site VPN connectivity (IPSEC)
- MPLS connectivity
- E-banking connectivity (familiar with banking network design & terminologies is a plus)
- Connectivity of SG infra to our partners
-
- Internet connectivity
- Web hosting infra (Technologies that encompass an application to run – F5 LTM/WAF, NetScaler Sec, Fortinet/Checkpoint and R&S)
- Web browsing infra (Mc Afee proxy)
- Internet Access point ( DMZ setup )
- Internet connectivity
Profile required
You will be responsible for leading efforts to implement and support the web proxies across the globe focusing on services traversing through enterprise wide proxy solutions. Newtork design is a plus.
Document chronic issues related to proxy implementation.
Ramp up proxy initiatives, train individuals and mentor individuals on the team.
Proficient and thorough knowledge in installation, configuration and troubleshooting on proxies.
Extensive hands on experience with various Layer 7 proxies. (Mc Afee preferred, not mandatory)
Setting up rules, rule sets and list configuration.
Global threat intelligence and URL filtering
Media type filtering and data loss prevention.
HTTPS scanning - review SSL scanning engine, SSL rule sets.
Web caching, next hop proxies, progress pages and block pages.
Logging
Dashboards and monitoring.
Web hybrid solution and advanced threat defence.
Expert knowledge on proxies : Implementation and life cycle management is required.
Implement and support proxies ,set up devices, perform tasks that ensures compliance with production.
Expert responsibilities : Internet access point, Web browsing
Skill set : Internet, Web proxy, deciphering mechanism and DLP solutions.
Good understanding in setting up Leased Line connections. Architect Solutions – micro-study about resiliency/bandwidth, nature of the circuit. Meeting with partners. Pre-quotation of the connectivity offer to propose to the client. Experience with working with vendors for lease line connections is required.
Lead technical discussions related to micro study and addressing plan, definition of the target solution to offer.
Expert knowledge on WAN technology & protocols (OSPF, BGP is required)– perform hands on test to validate customer POC setups, network designs and network deployments using new products and features.
Experience in planning and designing WAN networks.
Solid TCP/IP knowledge.
Experience working on switches, load balancers and firewalls. Work involves setting up the devices, passing Operational Acceptance test for production.
Perform complex migrations from development to production, upgrades, installations and configurations.
Provide technical leadership for the migration.
Experience working with multiple security vendor's is needed ( Checkpoint/Fortinet)
Experience working with Netscaler ADC and McAfee webproxy is required
Document High level design, low level design, migration plan, test plan and SOP's.
Should be well versed and lead VPN migrations of the customer.
Should be willing to work in EMEA Shift ( Paris time )
Requirement and skills
- University degree in Computer Science or a related subject.
- General experience across a broad spectrum of network technologies is a plus ( routing, switching, firewall, TCP/IP,DNS, WAN) etc.
- Perform complex network migrations, upgrades, installations and configurations across network devices.
- 10+ years of experience in Network Services domain.
- Solid understanding of the OSI and TCP/IP model.
- Proven hands-on network engineering experience with Web proxy and network security products)
- Proxy design skills.
- Network Security certifications preferred but not mandatory.
- Ace customer business relationship.
- Strong team player.
Why join us
“We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status”.
Business insight
At Société Générale, we are convinced that people are drivers of change, and that the world of
tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious.
Whether you’re joining us for a period of months, years or your entire career, together we can have
a positive impact on the future. Creating, daring, innovating and taking action are part of our DNA.
If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a
daily basis and develop or strengthen your expertise, you will feel right at home with us!
Still hesitating?
You should know that our employees can dedicate several days per year to solidarity actions during
their working hours, including sponsoring people struggling with their orientation or professional
integration, participating in the financial education of young apprentices and sharing their skills with
charities. There are many ways to get involved.
We are an equal opportunities employer and we are proud to make diversity a strength for our company. Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination.