Network Security & Connectivity is responsible for the design, delivery and monitoring of a secure network infrastructure environment, the secure application delivery and access policy enforcement via the network. The Network Security team is responsible for the maintenance and support of the global Firewall, IDS/IPS and DDI (DNS/DHCP) and DDOS-firewall services. The team manages the daily operations and maintenance of the security products. As a result of the constantly growing demands of a robust and secure global IT network infrastructure, more detection and response responsibilities need to be managed by specialized network security teams. Major parts of these security functions will be delivered as a global service to the regions. Because of these changes we are in the process of expanding our team with Network Security specialists that also have a focus on anomaly detection, analysis and pre-emptive response on our on premise and cloud managed security services. 
A few examples of security functions that belong to our service portfolio are: Secure Application Delivery, Network DDoS mitigation, build One Corporate Internet Policy, Maintain and constantly improve Rabobank’s security perimeter 

As a Network Security specialist you must be able to work in small and large teams but also work independently and actively search for answers and solutions in a complex technical enterprise environment. We expect you to actively work on the continuous improvement of our IT services by utilizing current and future solutions in our datacentres and in the cloud. You collaborate with other teams to find, design, build, test, implement and maintain security solutions for our client. 

Duties and responsibilities:

• Design, configure, implement and maintain additional network security safeguards 
• Design, configure, provision and maintain IDS/IPS security policies 
• Design, configure, provision and maintain Threat Prevention security policies 
• Security monitoring – network monitoring and intrusion detection analysis to determine if there have been any attacks. Analyse network traffic to identify anomalies and test the information security controls for weaknesses 
• Threat response – Take action to contain malicious activity that has been detected, to minimize damage. Facilitate forensic analytics to determine the threat source. 
• Research emerging threats – conduct research in IT Security to gain awareness of the latest information security technological developments 
• Communicate Security issues to management and Cyber Defense Center 
• Identify areas for improvement in detection & protection measures and initiate solutions 
•  Provide 2nd and 3rd line support (during business hours and during standby) 
• Implement customer Firewall and DNS requests. 
• Participation in projects 
• Create and solve network security change and problem tickets 
• Lifecycle Management : Manage updates/upgrades/patches 
• Maintain relationship with stakeholders and vendors 
• Create and maintain operational support procedures 
• Create and maintain related documentation 
• Run usage reports 
• Security & Compliance 
• Maintain CMDB 

Functie-eisen

Required skills & experience:

• Personal drive to learn and work with new technologies and products as required with a strong focus on cloud transformation and zero trust architecture 
• The ability to analyse and troubleshoot in a logical manner in order to rectify customer issues efficiently 
• Solid Networking skills at layer 3 and above 
• Experience with networking and security in enterprise network infrastructure environments 
• Experienced trouble-shooter on network issues and familiarity with the necessary tools Tcp dump and Wireshark 
• Knowledge & Experience with a broad portfolio of security services like Firewalls, IDS/IPS, Threat Prevention, VPN’s, Web Gateways like Palo Alto, Checkpoint, ZScaler, F5, Akamai, Clearpass, Infoblox 
• Knowledge & Experience with Networking (Routing/Switching, DNS/DHCP) 
• Knowledge & Experience with IPv4, IPv6, HTTP, SSL, FTP, DNS 
• Knowledge & Experience on Web browsers and PAC-files 
• Knowledge of Authentication systems and Identity Providers such as LDAP, MS AD, ADFS 
• Experience with (API) scripting is a plus 
• Experience in any programming languages is a plus 
• Strong analytical and communication skills 
• English writing and speaking 
• Knowledge and experience with Agile, Lean and ITIL. 

Working conditions:

This job role is split between operational (run) and project (build) work (75%/25%). Some changes are planned outside business hours to minimize business impact. This job vacancy is for the location Zeist (NL).”

Direct reageren op deze vacature