Zero Trust Consultant required for global financial services firm. This role is primarily focused on evaluating networks, assessing the configuration and design of complex network environments, and ensuring that they meet Zero Trust security principles. The ideal candidate will have CCNP or CCDP accreditations and extensive experience in reviewing and improving network infrastructure in relation to Zero Trust.
Key Responsibilities:
1. Network Reviews:
1. Perform comprehensive reviews of network configurations, architectures, and policies to ensure adherence to Zero Trust principles.
2. Analyze and assess firewalls, routers, switches, VPNs, and other network devices for misconfigurations, vulnerabilities, or potential security risks.
3. Ensure the use of least privilege access and micro-segmentation across the network infrastructure.
2. Zero Trust Implementation:
1. Evaluate existing network infrastructure to ensure it aligns with Zero Trust security models.
2. Provide recommendations for network segmentation, access control policies, and secure network communication channels based on Zero Trust principles.
3. Guide and assist in the design and implementation of identity verification processes, secure access, and endpoint protection within the network.
3. Configuration Review and Compliance:
1. Review network devices' configurations, ensuring they comply with security standards and organizational policies.
2. Validate that configurations are in line with regulatory requirements, industry standards, and best practices (e.g., NIST, ISO, etc.).
3. Identify gaps in network security and recommend remediation strategies.
4. Network Security Analysis:
1. Conduct risk assessments on the current network environment, identifying potential entry points and vulnerabilities that could be exploited by attackers.
2. Provide actionable insights to optimize network security, including Firewall rules, ACLs, IDS/IPS configurations, and encryption standards.
3. Perform continuous monitoring of the network environment and recommend necessary updates or improvements to maintain security.
5. Documentation and Reporting:
1. Develop detailed audit reports outlining findings, recommendations, and corrective actions.
2. Create technical documentation, including network diagrams, configuration templates, and audit processes.
3. Collaborate with stakeholders to ensure that recommendations are understood, prioritized, and implemented effectively.
6. Collaboration and Advisory:
1. Work closely with network engineers, system administrators, and other IT security professionals to ensure an integrated approach to security.
2. Provide expert advice to the organization's leadership on network security trends, emerging threats, and potential risks.
3. Offer guidance on ongoing network and infrastructure upgrades with a focus on enhancing security.
Qualifications:
1. Cisco Certified Network Professional (CCNP) or Cisco Certified Design Professional (CCDP) or equivalent certifications are highly advantageous
2. Relevant security certifications such as CISSP, CISM, or CEH are a plus.
#J-18808-Ljbffr