Cyber Fusion - Network Security Senior Analyst – IBM DataPower
Employment Type : Full-Time
Job Description: Network Security Senior Analyst – IBM DataPower
Are you interested in improving the cyber and organizational risk profiles of leading companies? Do you want to be involved in delivering Fusion Managed / Security Operations Center (SOC) Services including identifying unauthorized activities and intrusions in their networks in real time? Are you excited about rapidly changing operational environments, learning what you need to get the job done, and producing accurate and timely results?
If yes, then Deloitte’s Fusion Managed Services (FMS) team could be the place for you! Transparency, innovation, collaboration, sustainability: these are the hallmark issues shaping cyber initiatives today. Deloitte’s FMS business is passionate about making an impact with lasting change. Delivering our industry leading services requires fresh thinking and a creative approach. We collaborate with teams from across our organization in order to bring the full breadth of Deloitte, its commercial and public sector expertise, to best support our clients. Our aspiration is to be the premier integrated services provider in helping to transform the cyber security services marketplace.
Our team is client focused and mission driven. As a Network Security Senior Analyst in Deloitte's Fusion Managed Services, you’ll work with our diverse teams of passionate professionals to help solve for some of today’s toughest cybersecurity challenges to enable or clients to achieve business growth and manage risk.
Work you’ll do
The key job responsibilities will be to:
- Designing, developing, and implementing solutions using Data Power services including, but not limited to Web Service Proxy, Multi - Protocol Gateway, XML Firewall, XPath/XSLT, SOAP/REST/JSON formats, WS - Policy, WS - Addressing, and WS - Security considerations like Authentication, Authorization, Encryption, Digital Signatures, PKI, SOMA/CLI scripting, etc.
- Implementing API service setup / on - boarding on Mashery
- Working on performance tuning / load testing of services / APIs
- Collaborate with application teams and businesses to understand DataPower connector development requirements and drive the solution
- Develop DataPower connector based on the application teams and business teams request
- Conduct testing for the developed DataPower connector in non-production environments
- Deploy the DataPower connector in production environment
- Provide operational support and conduct troubleshooting for the DataPower connectors
- Manage and administer any enhancements to the DataPower connectors
- Manage proxy policy and ruleset configurations – for e.g., adding new policy/ruleset, blacklisting/whitelisting URLs, updating existing policy/ruleset etc.
- Manage storage and backup of current configuration
- Maintain and update current network topology diagrams
- Resolve operational incident tickets (P1/P2/P3) or service request as per the agreed upon SLOs
- Perform periodic health monitoring and maintenance of the security tool, specifically monitoring capacity, monitoring logs for issues etc.
- Monitor license expiry for the instances of the in-scope tools
- Monitor and renew certificates for the in-scope tools (as applicable)
- Coordinate with solution vendor for product upgrades/security patches, and troubleshooting product-related defects and issues
- Perform upgrades and deploy patches post impact analysis in non-production and production environment in accordance with change management protocol
- Interact with clients, including working with client teams in an onsite and offshore delivery model
- Lead requirements gathering, design documentation by conducting workshops in onsite/offshore delivery model for multiple projects
- Lead and work closely with vendor alliances
- Manage project deliverables and teams
- Manage and mitigate project risks
- Enabling business development by assisting in request for proposal and sales processes
- Lead process compliance activities by identifying and driving initiatives that are relevant for the project delivery and help factor reusability and related benefits
- Contribute to eminence activities, such as whitepapers pertaining to Network Security technologies
Qualifications
Required:
- Bachelor’s degree in engineering, computer science, information security, or information systems
- Candidate should have minimum 6 years of experience in Cybersecurity engineering with experience in supporting complex network infrastructure environments
- Experience with IBM DataPower is a must
- Extensive understanding of the protocols and technologies including, but not limited to TCP/IP, OSPF, BGP, STP, SIP, MPLS, HSRP, LDAP, DHCP, DNS and VRFs
- Extensive understanding of security concepts including, but not limited to: IDS/IPS, Antivirus, Web-filtering, SSL encrypt/decrypt, two-factor authentication, SSL, and VPN
- Experience working with DataPower and APIM suite Mashery
- Knowledge in Troubleshooting and debugging Data Power services by using the problem determination tools, logs, and probes that are provided within the Data Power appliance
- Experience in applying Security policy certificates, encryption in various DataPower devices
- Experience in configuring SSL/TLS security
- Hands-on Experience in Implementation of Web Service Proxy, Multi-Protocol Gateway XML Firewall service implementation
- Hands-on Experience in AAA (authentication, authorization, auditing) and Customization of AAA Policy
- Hands-on Experience in SSL Proxy configuration and certificate management
- Hands-on Experience with SOAP and/or REST-based Web services with emphasis on Security, including familiarity of SSL/TLS, WS-Security and federated security
- Excellent Logical and Practical understanding of SSDLC
- Ability to create, plan, and execute advanced Network Security trainings and drive proof of concepts involving emerging technologies
- Willingness to travel up to 25% required (Mon - Thurs) on a weekly basis (while travel up to 25% is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice).
- Must be legally authorized to work in the United Stated without the need for employer sponsorship, now or at any time in the future.
Preferred:
- General knowledge of various Linux operating systems
- Experience with Public Cloud Networking (Azure, AWS, Google) a plus
- Possess good communication and interpersonal skills including use of Office365 suite for documentation/presentation.
- Working knowledge of Linux, Windows OS and command line functions
- Experience working with Splunk for log analysis and data extraction
- Experience working on performance tuning / load testing of services / APIs.
- Exposure to database, messaging, and scripting language
- Good knowledge of SOA, SOAP, REST, WSDL, XSD, XML, XSLT, XPATH and JSON
- Error Handling Logging in DataPower
- Familiarity with Scripting knowledge (SHELL, Python, Perl) would be appreciated
- Experience in IIB administration on windows and UNIX systems. Troubleshooting and Managing IBM WebSphere channels, listeners, intercommunications (TCP/IP) and triggering.
- CISSP, PMP certification
- Certifications related to DataPower or other Application Gateway tools
- Exposure to other security domains other than Network Security
The team
Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice.
How you’ll grow
At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center.
Benefits
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Deloitte’s culture
Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.
Corporate citizenship
Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world.
Recruiter tips
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.