Digitization Miele requires constantly increasing IT performance to support our specific processes worldwide and to connect our innovative products.
We are looking for a Firewall Specialist for our global network team as a part of Brasov IT Infrastructure Service Team, Our IT IS team provides service for our Miele Group .
Our ITIS team is responsible for the stable, high-performance and secure operation of our local and wide area networks, wireless technologies as well as basic network services and monitoring.
To connect and secure our IT systems in more than 180 locations with our central data centers and our cloud applications, we use modern technologies such as IPSEC, MPLS, SD-WAN, prioritization (QoS), cloud proxy, routing, switching and zoning based on the network (VR) and IDS / IPS Layer-7 firewalls.
Our market-leading products are manufactured in state-of-the-art with best in class technology.
Your responsibilities will include :
Administrate and manage (technical operations) firewall infrastructure
Participate in security designs, validate and test applications communication via firewalls.
Approve Network Firewall related requests after analyzing the impacts it may have on the infrastructure.
Participate in CAB meetings - Change management.
Review security logs to monitor unauthorized system access attempts, both internal and external.
Prepare technical reports, memoranda, and instructional manuals as well as documentation of network design and operational requirements.
Collaborate with service providers / clients / vendors, and other technical engineers for seamless and secure functionality of the networks.
Work within customer requirements to design & deliver relevant projects within agreed timescales.
Work to achieve service levels with defined quality of service metrics that will enable to maintain and demonstrate high quality of service.
Day-to-day support of internal and external projects including cooperation with other sites as necessary.
Bachelor’s degree in the IT field or relevant comparable qualification (eg. Computer Science)
At least 3 to 5 years’ experience in firewall operations
Certification is preferred but not mandatory : Palo Alto : PCCET, PCNSA or PCNSE; Checkpoint : CCSA or CCSE; Juniper : JNCIS-SEC, JNCIP-SEC, JNCIE-SEC
Work experience with any of the following : Palo Alto / Checkpoint / Juniper (SRX) / Cisco / F5 Firewalls
Knowledge of firewall technologies : packet filtering, stateful packet inspection, application firewalls, application-level gateways, dedicated proxy servers, (GRE / SSL / IPSEC-) VPN, network access control, UTM, web application firewalls, next generation firewall, virtual firewall, cloud firewall, intrusion detection and prevention
Firewall policy : policies based on IP addresses and protocols, policies based on applications, policies based on user identity, policies based on network activity
Experience in network zoning with firewalls in combination with VRF routing instances Experience on the following : Routers, Switches, Firewalls and other security related gateways
Full understanding of ISO / OSI Model, TCP / IP protocol suite
Structuring networks with VLANs as well as IP addressing, sub netting and routing concepts including VRFs
Hands on experience in use of packet capture and network analysis tools for troubleshooting - Wireshark, Nmap etc.
Understanding of high available and zoned DMZ networks in a two-tier firewall architecture
Intrusion detection and prevention system (IDS)
Firewalls in network architecture
Routing protocols OSPF, IGRP and EIGRP
Basic knowledge of Multi-Protocol Label Switching (MPLS), Voice over IP (VoIP) as well as DNS and DHCP Administration
Ability to work in a team, initiative and the willingness for continuous further training in an international network security team
Strong troubleshooting skills and self-driven and responsible person, high customer orientation and high degree of personal initiative and flexibility
Strong verbal, written, interpersonal communications skills in German and English language
We offer to stay and come in contact with latest network technologies and to improve your skills in this challenging environment continuously.
Come and join our team!