Sr. Network Security Engineer at LPL Financial in Los Angeles, California

Posted in Other 14 days ago.





Job Description:

Do you have a passion for defeating threats and defending against bad actors?

Would you like to be a key decision maker and creative problem solver in how we do so?

Have you successfully defended an active attack, APT or volumetric? If so, keep reading on....

LPL Financial is one of the nation's leading financial services companies and a publicly traded company under ticker symbol LPLA. We support over 18,000 financial professionals-including over 14,000 independent advisors, more than 700 financial institutions, and over 4,000 institutional clearing and technology subscribers. We enable advisors to focus on their clients by reducing the complexity of running their practice and we support their business by offering enabling technology, comprehensive clearing and compliance services, practice management programs and training, and independent research. At LPL, we take care of our advisors, so they can take care of their clients. And Technology is at the center of our mission.

Job Overview:

LPL is seeking a Sr. Network Security Engineer to lead their network security products including Palo Alto and Cisco Next Generation firewalls. This individual will be part of a team of technical engineers, overseeing design, engineering, and operations management of network security products operating in a multiple data center environment and the cloud. The position directly relates to securing and protecting LPL, our Advisors and their clients.

Responsibilities:


  • Design and engineer solutions focused around Palo Alto and Cisco FTD, Fortigate firewalls


  • Automation development using scripting languages such as Python or PERL and leveraging API's for data exchange.


  • Engineering and operations of VPN and Cisco ISE/NAC remote access environment


  • Implementing firewall solutions in AWS cloud environment using an auto-scaling design


  • Troubleshooting complex network security issues and identifying root cause of issues and developing continuous improvement of the platform


  • Security hardening of platform devices reducing vulnerability footprint


  • Managing firewall service request using firewall orchestration services


  • Manage and optimize logging of firewall traffic and rule base activity


  • Maintain security baseline standards and design documentation and diagrams


What are we looking for?

We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement.

Requirements:


  • 5+ years Engineering and administrating an enterprise level Palo Alto and/or FTD environment


  • 5+ years of Networking experience.


  • Demonstrated experience and knowledge of network devices (routers, switches, etc.), including such topics as HTTP headers, ISO layers, and TCP flags.


  • Ability to generate and read packet captures for troubleshooting of data traffic flow.


  • Experience in scripting languages such as Python, PERL, TCL, etc.


  • Fundamental knowledge of encryption to include HTTPS decryption and re-encryption to examine data traffic content.


  • Ability to reduce vulnerability footprint of Firewalls (Harden).


  • Experience in engineering, implementing and troubleshooting IPsec tunnels


  • Experienced in Engineering, implementing and troubleshooting Panorama appliances


  • Comfortable accessing and utilizing CLI functions of a Palo Alto Firewalls and Panorama management system.


  • Experience in managing and optimizing Logging of Firewall traffic and Rule Base activity.


  • Experience working within Federal or Public Regulatory Agency guidelines such as FINRA, PCI-DSS, NERC-CIP helpful.


  • Experience with Cisco ISE/NAC and the broader Cisco security portfolio


  • Knowledge of Palo Alto auto-scaling deployments on AWS or Azure.


Core Competencies:


  • Excellent troubleshooting skills and ability to identify root causes of issues and provide solutions.


  • Strong interpersonal and presentation skills, both oral and written, with the ability to articulate and educate others about complex technology with business acumen.


  • Accurate diagraming and documentation skills.


Preferences:


  • Palo Alto Professional Security Certifications desirable such as PCNSE.


  • Security and Network Certifications desirable such as CISSP, CEH, CCNP, CCNA, CCIE.


  • Bachelor's Degree in Computer Science or related field.


  • Enterprise level Network Routing protocols such as OSPF and BGP configuration.


  • Familiarity with industry standard automation tools


Why LPL?

At LPL, we believe that objective financial guidance is a fundamental need for everyone. As the nation's leading independent broker-dealer, we offer an integrated platform of proprietary technology, brokerage, and investment advisor services. We provide you with a work environment that encourages your creativity and growth, a leadership team that is supportive and responsive, and the opportunity to create a career that has no limits, only amazing potential.

We areone team on one mission. We take care of our advisors, so they can take care of their clients.

Because our company is not too big and not too small, you can seize the opportunity to make a real impact. We are committed to supporting workplace equality, and we embrace the different perspectives and backgrounds of our employees.We also care for our communities, and we encourage our employees to do the same. This creates an environment in which you can do your best work.

Want to hear from our employees on what it's like to work at LPL? Watch this!

We take social responsibility seriously. Learn more here

Want to see info on our benefits? Learn more here

Join the LPL team and help us make a difference by turning life's aspirations into financial realities. Please log in or create an account to apply to this position. Principals only. EOE.

Information on Interviews:

LPL will only communicate with a job applicant directly from an @lplfinancial.com email address and will never conduct an interview online or in a chatroom forum. During an interview, LPL will not request any form of payment from the applicant, or information regarding an applicant's bank or credit card. Should you have any questions regarding the application process, please contact LPL's Human Resources Solutions Center at (800) 877-7210.