What you'll do:
Job Summary
The main purpose of this position is to engineer, deliver, architect, and support solutions to address business and technical requirements, leveraging standard principles and patterns that follow Eaton's security and networking standards. This position is focused on building, delivering, maintaining, and updating all aspects of site-based infrastructure security next generation firewalls, IT/OT segmentation, traditional networking services (routing, switching, wireless), F5 load balancers, DNS, automation technologies (Ansible/Terraform/Python), and team processes.
Responsibilities:
• Provide input as a subject matter expert and leader to security and network design principles, engineering/architecture, delivery, support, and life cycle management.
Want more jobs like this?
Get jobs in Pune, India delivered to your inbox every week.
• Lead projects/initiatives and work with resources across multiple IT and business functions to deliver technology, platform, and system solutions to meet customer requirements, providing solution options, making recommendations, highlighting operational or security risks, as well as providing alternative solutions.
• Perform monitoring and lifecycle functions on platforms, networks, and systems to ensure required performance, availability, and capacity.
• Identify process improvements to drive overall team and IT efficiency, while delighting our customers.
• Support operational functions of global, business critical IT systems.
• Work with Business Relationship Managers and various lines of business to deploy and secure network aware solutions.
• Configure, deploy, and maintain hardware-based and software-based security tools that support network and endpoint posture.
• Continually determine process, configuration, and deployment efficiencies with automation technologies including Ansible, Terraform, Python, Powershell, Perl, Security/Network Management systems, and homegrown solutions.
• Tune and optimize existing systems to minimize external threats and meet internal needs, balancing security, operations, engineering, and delivery.
• Collaborate with Information Security stakeholders to improve prevention, detection and response.
• Support network and security related activities for acquisitions/divestitures.
Qualifications:
- Bachelor's degree from an accredited institution in Information Systems or Cyber Security; Network and Security certifications preferred (Examples include applicable security certifications, CCNA/CCNP, Cloud-based certifications, F5)
- Excellent proficiency with the English language (written and verbal) - English is the standard global language of Eaton.
- Preferably, 7 - 10 years of experience in the IT field with and minimum of 3 years of experience in Network and Security technologies.
- Agile mindset focusing on strong analytical and problem-solving skills, multi-tasking, time-management, and team-oriented initiatives.
- Firewall configuration, deployment and management (Checkpoint NGFW, Legacy Juniper SSG).
- Configuring Virtual Private Networks and DMZ segments (GRE, IPSEC, etc.)
- Expert knowledge of Layer 3 routed protocols including IPv4 and IPv6, as well as Layer 3 routing protocols including BGP, OSPF, static routing.
- Expert knowledge of Layer 4 transport layer protocols including TCP/UDP, port-filtering, etc.
- Cisco switching platforms including Catalyst 3600/3800/9200/9300 (IOS and IOS-XE), Nexus 9Ks (NX-OS and ACI), and associated network switching technologies.
- Cisco wireless platforms including various Wireless LAN controllers and Access Point models, and authentication/authorization technologies (Cisco ISE).
- Network Management/Monitoring Systems - Checkpoint Smartconsole, Algosec, Cisco DNA Center, Cisco Prime, IP Address Mgmt systems, SolarWinds, Dynatrace, etc.
- Engineering, management, and support of Eaton's public cloud solutions (PaaS, SaaS, IaaS) working across multiple different providers (Azure, OCI, AWS, Alibaba, GCP).
- Remote computing and Intrusion Detection / Prevention systems.
- Familiarity with Linux/Unix operating systems via CLI.
- Domain Name System (DNS) and Security Proxy administration.
- Additional recommended specialized skills: Check Point GAIA firewalls (DMZ, VPN, IPS, PBR, VSX), Zscaler ZIA and ZPA, F5 Big IP platform (DNS, Load balancing, WAF, iRules), JIRA, Service Now, Cisco ISE (RADIUS & TACACS), WAN technologies and SD-WAN concepts, Certificate Management.
Skills:
- Certifications: CCNA, CCNP, CCIE
- DataCenter: ACI, NX-OS, F5, Load balancer
- Routing: BGP, OSPF, Static Routing, Redistribution, MPLS, BFD
- Switching: NX-OS, IOS, IOS-XE, GRE, VxLAN, VLAN, SVI
- Network Management: Prime, Netscout, SolarWinds, Data Broker, Gigamon, SNTC
- Wireless: FlexConnect, Controllers, Lightweight, APs
- Security: AAA, RADIUS, TACACS, Firewall
- Automation: Ansible, Python, Postman, Agile
- Load Balancer: F5, BIG-IP, BIG-IQ