Principal Network Engineer
Job Description:
Position Description:
Performs security engineering through the use of firewalls, intrusion detection and intrusion prevention systems, proxy gateways, and network security devices to provide defense-in-depth protection from cyber security threats in an Agile environment. Monitors networks to ensure availability to all system users and performs maintenance to support network availability. Installs, configures, and supports Local Area Network (LAN), Wide Area Network (WAN), internet systems, or a segment of a network system. Performs scripting, using Perl and Python. Automates pipelines using Jenkins. Oversees overall network security design and provides secure connectivity solutions to the team.
Primary Responsibilities:
• Uses business knowledge to translate the vision for divisional initiatives into business solutions.
• Designs new enterprise network solutions, enables new customer connectivity, secures environments through tactical change management, and works in a cross-organizational fashion to consult and enable services.
• Advises on risk assessment and risk management strategies for projects.
• Plans and coordinates project schedules and assignments for multiple projects.
• Advises senior management on technical strategy.
• Mentors junior team members.
• Implements and improves systems and processes for TCP/IP network infrastructure.
• Ensures the delivery of information technology services to meet the needs of the business community using IT Service Management methodologies (ITSM).
• Manages and designs highly complex firewall and network environments to protect critical resources and enable revenue producing services.
• Troubleshoots issues related to a network or security environment (on call rotation).
• Documents complex technologies and topologies based on security based practices.
• Manages the lifecycle of technologies.
• Ensures 24x7 availability of services.
• Assists in troubleshooting network issues.
• Researches new technologies by attending seminars, reading trade articles, or related professional development.
• Implements or recommends the implementation of new technologies.
• Diagnoses, troubleshoots, and resolves hardware, software, or network and system problems, and replaces defective components when necessary.
Education and Experience:
No Degree and seven (7) years of experience in the job offered or seven (7) years of experience architecting and supporting multi-vendor network environments within the financial services industry .
Or, alternatively, Bachelor's degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Systems, Mathematics, Physics, or a closely related field and five (5) years of experience in the job offered or five (5) years of experience architecting and supporting multi-vendor network environments within the financial services industry.
Or, alternatively, Master's degree (or foreign education equivalent) in Computer Science, Engineering, Information Technology, Information Systems, Mathematics, Physics, or a closely related field and three (3) years of experience in the job offered or three (3) years of experience architecting and supporting multi-vendor network environments within the financial services industry.
Skills and Knowledge:
Candidate must also possess:
- Demonstrated Experience ("DE") configuring and supporting Amazon and Azure based Cloud network concepts according to enterprise cyber-security strategies, using VPCs, VNets, Security Groups, and policy-based routing in a multi-vendor Cloud environment.
- DE architecting and supporting secure application hosting environments, using Checkpoint and Juniper firewall high availability designs, VRRP, NSRP, chassis-based clustering capabilities, virtualization concepts -- LSYS and VSYS -- and advanced threat protections via IDS/IPS technologies.
- DE implementing Juniper remote access infrastructure using Azure two factor services for authentication; and analyzing and incorporating changes to desktop environments into remote access environments to align with end user computing strategies, using Splunk and Funk Radius.
- DE architecting and engineering a multi-tiered datacenter network environment, using Multiprotocol Lab Switching (MPLS), Spanningtree, Etherchannel, and multicast protocols (PIM, IGMP, static, and dynamic routing) and WAN Optimization technologies (Riverbed and Cisco WAAS); and performing capacity management and planning, using Cisco Works/Prime, SNMP, and Netflow.
#PE1M2
Certifications:
Company Overview
Fidelity Investments is a privately held company with a mission to strengthen the financial well-being of our clients. We help people invest and plan for their future. We assist companies and non-profit organizations in delivering benefits to their employees. And we provide institutions and independent advisors with investment and technology solutions to help invest their own clients' money.
Join Us
At Fidelity, you'll find endless opportunities to build a meaningful career that positively impacts peoples' lives, including yours. You can take advantage of flexible benefits that support you through every stage of your career, empowering you to thrive at work and at home. Honored with a Glassdoor Employees' Choice Award, we have been recognized by our employees as a Best Place to Work in 2022. And you don't need a finance background to succeed at Fidelity-we offer a range of opportunities for learning so you can build the career you've always imagined.
As a result of COVID-19, many of our associates are continuing to work remotely. When Fidelity employees eventually return to the office, our goal is for most people to work flexibly in a way that balances both personal and business needs with time onsite and offsite through what we're calling "Dynamic Working."
We invite you to Find Your Fidelity at fidelitycareers.com.
Fidelity Investments is an equal opportunity employer. We believe that the most effective way to attract, develop and retain a diverse workforce is to build an enduring culture of inclusion and belonging.
Fidelity will reasonably accommodate applicants with disabilities who need adjustments to participate in the application or interview process. To initiate a request for an accommodation, contact the HR Leave of Absence/Accommodation Team by sending an email to accommodations @fmr.com, or by calling 800-835-5099, prompt 2, option 2.