Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively in order to deliver high quality technology solutions.
The Network Firewall Specialist manages the day-to-day operations of network firewalls in order to maintain a secure, stable, and regulatory compliant network. Duties include processing Firewall rule requests, building network DMZs and managing segmentation, working with clients to troubleshoot real or perceived Firewall or network issues, managing and maintaining hardware and operating systems, capacity planning, creating procedures to meet regulatory requirements, collecting and providing evidence to auditors and regulators to prove compliance to policy and regulations and operating and maintaining various tools systems. Additional duties may include being primary or backup resource to manage, maintain and operate the RSA SecurID system. Must be able to implement high-level designs, provide constructive feedback and input to architects and solutions engineers, and update operations documentation for any new configurations or procedures resulting from changes to production environments in a way that produces evidence of regulatory compliance.
Network Management & Operational Support:
Performs the operation, management, and maintenance of network systems in order to enhance network operations and provides evidence that such work was done in a way that meets internal and external agency compliance. Responsible for technical support and administration of critical infrastructure network components (eg, firewalls, etc). Responsible for maintenance and support of RSA SecureID Maintain and operate systems and services associated with PG&E's network infrastructure in a way that internal and external agency compliance. Provides 3rd tier support in analyzing, diagnosing and resolving problems. Work closely with other IT groups to ensure systems are maintained in an efficient manner, and communicate all issues, changes, outages, and maintenance in accordance with processes, procedures, policies, and regulations. Participates in developing, recommending, and establishing policies and procedures as needed to meet internal and external agency compliance obligations. Projects: Provide on-site or remote support for project implementation and works to keep projects compliant with internal and external policies and regulations. Work closely with peers, supervisor, team members and others as needed to identify, plan, prioritize and implement project deliverables. Perform testing and evaluations of new technologies in a lab environment.
Consult with Information System client groups on the development and updates of policies, standards, guidelines, configuration manuals, and process manuals. Review procedures for compliance with established requirements. Maintain awareness of laws and regulations affecting information technology throughout the industry. Work with stakeholders and Subject Matter Experts on the maintenance and/or development of documentation (include Standards, Configuration Manuals, Process Manuals, and exception requests) as a result of audit or compliance findings. Provide technical, policy, and regulatory advice to technical architects. Compliance and Process Improvement: Assures compliance with industry and company standards and regulations. Continually look for opportunities to improve processes, reduce costs, increase efficiencies, etc. Apply security procedures and evidence for all work. May initiate process improvements.
Assist other specialists, analysts and technicians as appropriate in developing their own technical skills and industry regulatory knowledge through training, presentations and involvement in the process of maintaining and supporting these systems (installations, upgrades, troubleshooting, problem resolution, etc.). Ensures compliance/training documentation are reviewed and maintained. May establish compliance/training tracking systems for programs and serve on compliance/training committees or forums. Create and maintain training class curriculum, conduct internal classes and coordinate vendor training.
Knowledge, Skills, and Abilities:
Experience with Cisco FWSM/PIX/ASA and/or Palo Alto Firewalls in highly available environments Understanding of basic network security concepts, including segmentation and defense-in-depth strategies Ability to write and install/remove ACLs on firewalls Understanding of RSA SecurID Understanding of network concepts from layer 2 through 7 including NAT/PAT and application identification (Cisco inspect/fixup or Palo Alto AppID) Ability to perform work while maintaining integrity and stability of network and meet regulatory compliance guidelines Ability to work with Architects, Solutions Engineers, and Project Managers to meet aggressive project deadlines. Ability to work overtime when required. Available for 24x7 on call rotation
Bachelors Degree in Computer Science or job-related discipline or equivalent experience4 years experience in IT-Information Technology operations Experience in the Utility Industry and meeting audit requirements for NERC and WECC
5+ years' experience of network operations experience CISSP, CISM, CISA or other industry standard network or security certification Experience with RSA Experience with security/compliance monitoring tools and reporting Experience with monitoring or data collection/analysis tools Experience with Cloud-based solutions Experience or knowledge of DNS or DHCP Experience with web, middleware, or database Servers