VPN Security Engineer
Crossfire Consulting
TX - Southlake
3d ago


Lead efforts to analyze network security designs, engineer solutions to network elements, develop deployment strategies, and update technical documentation for the Telecommunication IP Security Networks in our various MSCs and NECs.

Engineer solutions to VPN security requests in a timely manner while meeting business needs and maintaining network security risk management policies.

Participate in design discussions with Telecommunication Planning and Design Teams to engineer new designs, and build transport systems security policies for systems.

Responsible for analyzing new application data flows and designing VPN and firewall policies that support application requirements, adhere to Telecommunication security practices, and meet project timelines.

Responsible for analyzing VPN change requests and integrating changes into existing firewall policies, while maintaining security standards.

Responsible for analyzing requirements and designing VPNs that provide secure network connectivity to Partners and Vendors.

Lead efforts to create new MSC and Network Equipment Center security designs based on current business needs, capacity increases, customer growth, directional platforms and emerging technology releases.

Lead forums and projects on the above and work with other Security, Product Development, Transport Systems, and Commercial teams to discuss and solicit feedback on the designs, standards and implementation approaches related to VPNs.

Provide technical leadership and guidance to other members of the Security team.

Develop and maintain security documentation and standards documents, as required.

Manage, maintain, and configure security network hardware (ex. Firewalls, VPN devices, Logging Systems, Security Provisioning Systems) when necessary.

Provide higher tier technical support to the Operations-Implementations, Security-Implementations, Operations-Maintenance and Engineering teams on all security related networking issues.


Must possess the experience and ability to lead and participate in technical sessions, to lead projects that span multiple organizations, and to coordinate technical, implementation and / or troubleshooting discussions.

Must be available for occasional overnight work as required for high profile changes and supporting Implementation teams.

A strong understanding of structured network design and deployment, the OSI Interconnect Model and how it relates to the design and deployment of structured networks, is required as well as strong project management skills, strong interpersonal and communications skills (written and oral), and the ability to handle multiple projects simultaneously.

Must have hands on working knowledge of IPsec VPNs including Site to Site and Client VPNs preferably on Fortinet. Must have experience building and troubleshooting IPSec VPNs including troubleshooting negotiation failures

  • Must have STRONG KNOWLEDGE of the following :
  • Fortinet FortiGate (5.2 or later)
  • Fortinet FortiManager and FortiAnalyzer
  • TCPdump and / or WireShark
  • Building and editing firewall rules / policies
  • Building and maintaining Site to Site IPSec VPNs

    Must have BASIC KNOWLEDGE of the following :

  • IPv6
  • Juniper ISG / SRX Hardware and Junos SPACE
  • F5 Big-IP AFM (Advanced Firewall Module) and Big-IQ
  • IDS and IDP concepts
  • Access Control Lists (ACL) concepts
  • Routing Protocols (OSPF & BGP)

    Bachelor of Science in Telecommunications, Electrical Engineering, Computer Science, Information Technology, or equivalent data security and networking experience required specifically in a Wireless Service Provider environment.

    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form