Executive Summary
Smart IMS Inc provides Digital technology & Cloud transformation services, Application & Infrastructure Management Services, Unified Communications and Insurance implementation services to customers across the Americas, Europe, Middle East, and Asia-Pacific regions. As the trusted technology and business partner of leading MNCs, including Global Investment Banks, Smart IMS is also a Microsoft Gold Certified Partner, Oracle Platinum Partner and AWS MSP Partner.
We are looking to hire a Firewall Engineer to support our client in Singapore which is a top global investment bank.
Job Description:
Leads and/or participates in the design, development, and implementation of complex system engineering activities involving cross-functional technical support, systems programming and data center capabilities. Responsible for components of highly complex engineering and/or analytical tasks and activities. Establishes input/output processes and working parameters for hardware/software compatibility, coordination of subsystems design, and integration of total system. Viewed as a technology subject matter expert; able to provide and communicate complex technology solutions across differing audiences including technical, managerial, business executives, and/or vendors. Will have responsibility for multiple, complex projects; will direct activities of teams related to special initiatives or operations and may have direct reports. Leads the resolution process for complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Information Technology degree and/or technology certifications preferred or substantial equivalent experience. Typically 7-10 years of IT experience
Required Skills:
• Minimum 8-10 years of hands-on experience with large scale, complex network/DMZ environments preferably in the banking and finance industry.
• Strong analytical and technical skills with proven experience in network DMZ security technologies especially Firewall, IDS/IPS, Web Content Filtering & Load Balancer technologies.
• 5 years or more experience with deep understanding in Firewall technologies – Fortinet, CheckPoint, etc vendor platform & IDS/IPS technologies.
• 5 years or more experience in Web Content Filtering technologies – Bluecoat, McAfee proxy etc vendor platform.
• Advanced networking troubleshooting and knowledge of web connectivity and protocols (PAC files, TCP/IP, HTTP, HTTPS, SSL, FTP, Socks, etc.).
• Strong knowledge of networking communication principles, network standards, and network security practices.
• Expertise in creating Application and network diagrams including all pertinent flows and decisions.
• Capability to summarize complex issues into executive summaries.
• Proven leadership experience, ability to motivate teams and drive execution, with performance driven with the necessary intensity and optimism to succeed and deliver.
• Possesses strong analytical skills and root cause investigation techniques with a desire to expand horizon to next-gen products, applications and technology.
• Familiar with product deployments within a global banking environment.
• Willing to work some irregular hours based on the needs of global operating model and the location of clients.
• Understanding in Automation (Python, Ansible etc).
• Communicate with business partners at an enterprise level; interfacing with internal business representatives and information security partners.
• Strong analytical skills with ability to identify gaps, challenge others with positive intent, and drive debate towards identification and remediation of underlying risks.
• Knowledge of regulatory risk management in Technology and Information Security domains preferred.
• ITIL processes knowledge: Change Management, Incident Management, Request Management, and Problem Management. ITIL certification preferred.
• At least one professional level certification in Network Security [ CheckPoint/Fortinet, CCIE, CISSP, etc] is desirable.
• Educated to degree level in IT/Engineering field.
What you can expect
The APAC Network DMZ Services team is responsible for end to end engineering and deployment of DMZ services within the bank. Team provides end-to-end network security infrastructure solutions for internal clients, lines of business and external 3rd parties.
The candidate be part of a regional team and be responsible for working with stakeholders to deliver connectivity that balances business, security, availability and resiliency requirements across Network Security technologies and serves as 3rd level escalation for operational issues.
What you will do :
• Be accountable for end to end engineering and deployment of DMZ services within APAC region, serving as the escalation point of contact to senior leaders.
• Responsible for hands-on implementation, configuration of devices and engineering new services into production.
• Ensure security controls are implemented and operating effectively as part of solutions delivery.
• Create designs based on industry best practices, engineering standards and security principles.
• Manage a wide variety of DMZ technology infrastructure and business aligned initiatives.
• Collaborate with Product managers, global engineering domain leads and operations teams from service design through operations transition process for new services.
• Understanding the design/purpose of each application or infrastructure project, defining resource requirements to efficiently collaborate across other technology technical teams to deliver high visibility projects.
• Ensuring documentation is updated to reflect new additions to or modifications in the environment and handed into Operations successfully.
• Identifying and managing the mitigation of risks within the environment.
• Liaise with Information Security partners to enforce compliance with standards.
• Support activities related to Audit, Compliance Reviews & Regulatory Exams.
• Review of all capacity metrics to ensure availability of all services.
• Facilitate meetings among all stakeholders/ vendors regularly and produce status update reports periodically.
