company_logo

Full Time Job

Principal Engineer, Network Security Capabilities

Paramount

New York, NY 12-08-2024
 
  • Paid
  • Full Time
  • Senior (5-10 years) Experience
Job Description
The Paramount Technology department supports our global content company through the delivery of a high-quality viewing experience, system infrastructure support, and crafting innovative ways for our employees to collaborate. If you are interested in a strategy that has growth, transformation, and ongoing innovation where you can help ''reinvent the broadcasting wheel'', Paramount Tech has a role for you!
Overview & Responsibilities:

As the Principal Engineer, Network Security Capabilities, you will join the Paramount Security Capabilities Team and work with technology and business teams across the globe to expand and mature Paramount's network security capabilities! The ideal candidate will have experience handling common network security tools, developing reference architectures, and building network specific guidelines, standards, and procedures. They will be eager to explore innovative solutions to improve the security stack, enhance user experience, and contribute positively to company business objectives. They should also excel at communication and engagement with partners. This role is an integral part of the team and will have day-to-day operational and advisory responsibilities.

Responsibilities:
• Ensure network security solutions are appropriately configured and maintained in accordance with our internal MITRE ATT&CK based framework
• Leverage industry standard benchmarks (i.e., CIS) to develop Paramount network security baselines
• Drive adoption of network security guidelines and standards
• Document, maintain, and improve standard operation procedures (SOPs), processes and standards regarding Network Capabilities Management
• Champion network security technologies to business partners, helping them to understand network-based risks and gain their support for the program
• Advise technical partners on appropriate configuration of security adjacent network management tools, including Palo Alto Prisma, Global Protect, CISCO ASA and FTD platforms, Solarwinds, Infoblox, Gigamon
• Provide day-to-day support of network security technologies, including Stealthwatch, Forescout, Palo Alto Panorama, Cisco FMC, Skybox or other similar firewall management tools (Firemon/Tufin)
• Support implementation of network privileged access and device trust programs
• Liaise with vendors to ensure network security products are updated at appropriate intervals and are deployed and configured according to vendor standard processes, particularly as products evolve
• Apply AI/ML to optimize and improve the efficiency of the network security stack and enrich Paramount's network-based threat detection capabilities
• Identify network security controls gaps in the environment and seek innovative solutions to mitigate those risks
• Develop and issue technical requirements and proposals for new network security technologies
• Stay ahead of network security technologies, standard processes, threats, and control methodologies

Basic Qualifications:
• 8+ years of experience in Information Security in a global enterprise environment
• 5+ years of experience as a technical project lead and primary network security support role
• Bachelor's Degree or Equivalent Experience
• Security Certification from Industry Standards (i.e., CompTIA, (ISC)2, SANS, ISACA COBIT)
• Certifications related to vendor specific Network Security technologies

Additional Qualifications:
• Passion for technology, security, and providing superb customer service
• Excellent verbal and written communication skills
• Strong prioritization, problem solving, and troubleshooting skills
• Experience developing network benchmarks using industry standard frameworks (i.e., CIS)
• Ability to apply countermeasure techniques against common attack using MITRE ATT&CK and MITRE D3FEND frameworks
• Deep understanding of network security adjacent domains, including endpoint security and identity and access management, vulnerability management, and incident response
• Experience leading, implementing, and tuning network security management, observation and detection tools, including Stealthwatch, Skybox, Firemon, Tufin, and Forescout
• Experience handling, implementing, and tuning next generation firewall configuration and security policies on a variety of platforms including Palo Alto, Cisco, and cloud firewall platforms (i.e., AWS, GCP, Azure, and OCI)
• Experience hardening networking devices (i.e., Palo Alto, Cisco) and cloud networking configurations
• Experiencing implementing zero trust with a focus on the network pillar
• Experience using PowerShell, Python, or Shell scripting languages to automate tasks
• Experience in media, entertainment industry, broadcasting
• Experience working with Security Auditors, Compliance Officers, and BISOs
• Experience with virtual and cloud firewalls including AWS, GCP, Azure, OCI.
• Experience with SQL or Regular Expressions
• Live in the Tri-State area with the ability to come into NYC when required

ADDITIONAL INFORMATION

Hiring Salary Range: $185,000.00 - 200,000.00.

The hiring salary range for this position applies to New York City, California, Colorado, Washington state, and most other geographies. Starting pay for the successful applicant depends on a variety of job-related factors, including but not limited to geographic location, market demands, experience, training, and education. The benefits available for this position include medical, dental, vision, 401(k) plan, life insurance coverage, disability benefits, tuition assistance program and PTO or, if applicable, as otherwise dictated by the appropriate Collective Bargaining Agreement. This position is bonus eligible.

https://www.paramount.com/careers/benefits

Paramount is an equal opportunity employer (EOE) including disability/vet.

Jobcode: Reference SBJ-g3epk9-3-139-93-242-42 in your application.

Salary Details
Salary Range: $185,000 to $200,000 Per Year ($ USD)