Best Buy’s Dgital & Technology team is seeking a Senior Network Engineer to help lead and innovate our network security solutions. This engineer will work with other engineers to implement, manage and support areas to include: security platforms (firewalls, proxies, web application firewalls SSL Decrypt, Cisco ISE), as well as the design and deployment of various levels of security zones in the network infrastructure; storage solutions, load balancing solutions and cloud-based computing solutions. This engineer will work with other engineers supporting areas of Data Center design and integration, including large route/switch platforms and Software Designed Networking solutions such as Cisco ACI as well as support remote sites, vendors, employees, and applications/technology teams.
Key responsibilities include:
Design, implementation, and integration of data center, cloud, and end-user network architectures as required with other security technologies and network technologies (retail locations, corporate campus, data centers)
Setting network standards and processes for Tier 1 and 2 staff
Work with Project Management, architecture, business, technical, and security teams to achieve project delivery regarding network security-related initiatives
Escalation support for firewall, load balancer, proxy, SSL Decrypt, DNS, and ISE platforms
Vendor management skills (hardware/software security vendors as well as third party vendors)
Collaboration with cross-functional teams to ensure alignment and resolve concerns
Maintaining a working knowledge of security and network standards
Building strong relationships with stakeholders
Work with leadership and architecture teams to advance and improve the current network and data center Security and Load Balancing platform solutions on-premise and in cloud environments
Work with leadership and architecture teams to advance and improve the current network security posture for end-users and data center resources.
Take leadership on root cause analysis of problems and potential solutions in your area of expertise
Minimum Requirements:
8+ years' information technology experience in networking and a bachelor’s degree or 10+ years of the same experience without a bachelor’s degree
5+ years’ experience working with multiple data center and perimeter security environments
3+ years’ experience as a Senior Network Engineer with responsibilities including support of security hardware
2+ years’ IDS/IPS Firewalls (such as SNORT, Wildfire)
3+ years’ experience with Load Balancers (Local & Global, Citrix, and F5 preferred)
2+ years’ experience with Proxy and SSL Decrypt solutions (Bluecoat and A10 preferred)
Routing Protocol knowledge (BGP, OSPF, EIGRP)
Prior experience with network monitoring and security products
Ability to work on-call and alternative hour schedules when required
Preferred Qualifications:
PCI / HITRUST Audit Knowledge
Prior experience with common network scripting programming languages
Prior experience with common automation tools such as Ansible, Puppet, Chef
Prior experience with API integrations
Prior experience with Cisco ISE support for both RADIUS/TACACS and security group tagging
Prior experience engineering networks with more than 2000 devices
Prior experience with Cisco technologies/solutions including Nexus 7000/6000/5000/2000, LAN controllers, fixed-configuration switches, and Cisco ISR and ASR series routers
Recent hands-on experience with enterprise firewall and VPN platforms (Cisco ASA/Sourcefire & Firepower)
Experience with Cisco ACI
Prior experience with the DNS/DHCP (Infoblox preferred)
Experience managing partner and vendor relationships to achieve business outcomes