What you’ll be doing...

MSS Client Security Engineer (CSE)

In an effort to customize and drive greater value out of the Managed Security Services and Vulnerability Management Services, Verizon clients have the ability to purchase additional Support via a Client Security Engineer (CSE) (formally Security Life Cycle Engineer (SLCE) or Client Engineer (CE).

Client Security Engineer (CSE) is another integral part of the managed security solution. Our CSE partner with the customer’s network and security architects to create security designs based on best practices and customized to meet the customer security policies. They will ensure that new designs support appropriate capacity levels and then provide ongoing capacity management though-out the design life cycle. The CSE is tasked with lifecycle ownership of the environment and works closely with Security Operations Center and back office MSS teams to provide 3rd and/or 4th level operational support, problem resolution, and identify production pain points. As part of the solution, CSE can be engaged to provide proactive project proposals based on capacity monitoring and operational pain points. All security designs are created to support SLA and are therefore optimized to support business continuity. Where possible, we will also look for opportunities to consolidate infrastructure to reduced cost and/or dedicated lanes built for high priority applications. Our CSE have extensive experience with complex designs including those associated with the wide variety of vendor platforms supported by MSS today.

Potential CSE Roles & Responsibilities

Client Security Engineer/Security LifeCyle Engineers are involved in a number of tasks typically specified and bundled in an agreed upon and approved SOW and contact that enhance our world-class device and policy management offering. Some of these tasks may include:

  • Security Architecture
    • CSE maintains standards for custom MSS engagements
      • Customer Premise Equipment (CPE) lists
      • Version control
    • CSE ensures that all MSS designs are
      • Technically sound
      • Compliant with the customer’s security policy
      • Manageable & Supportable from the 24x7 SOC
      • Within Scope of the contract and SOW
  • Projects
    • CSE provides functional expertise for customer projects that contain in-scope security requirements and SOW.
    • Responsibilities may include: requirements mapping, consulting, project response, level of effort determination, equipment specification, and implementation recommendations and guidance.
    • CSE also proactively generates proposals for recommended, corrective, courses of action based on problem management or RCA reports.
  • Ops Support
    • CSE provides 3rd or 4th level Operations Support as defined in SOW
    • CSE are stakeholder in effective designs throughout their life-cycle
    • Because of their tight integration with Operations, engineering and service management, CSE is able to assist in developing pain-point resolutions.
  • Understands how to upload vulnerability details into Online Guardian, analyze Level 0 through Level 4 incidents, and provide guidance & recommendations or perform device level and SEAM policy tuning.
  • Defines action plans that are easy to implement, effective at reducing risk, and as much as possible will take advantage of existing people, processes, and technologies.
  • Assist Ops in prioritizing remediation efforts based on business need, compliance need, and/or risk reduction need.
  • With the Security Services Adviser (SSA or SSA+), participates in status calls to discuss risk intelligence, incidents, vulnerability details, change request, implementation state, compliance state, and/or risk state.
  • Other duties per the specific client SOW which may include:
    • Designated engineer(s) assigned to the contract who:
      • Become increasingly familiar with the full & current state of the topology, CPE, routing, applications and traffic flows.
      • Are cognizant of the day to day operations on the network and specific business requirements that drive the changes and their history.
      • Are familiar names that establish credibility, confidence, and working relationships with key customer points of contact.
      • Can minimize the risk of negative effects resulting from poorly planned network changes
  • Act in an advisory capacity as the network evolves and grows, to:
    • Determine the appropriate hardware and software features and functionality required for a change or enhancement.
    • Verify that the new hardware and software levels are interoperable with the existing legacy network. and
    • Carry the customer forward with new technology while attempting to protect the customer’s investment in the process.
  • Gives technical advice and guidance on network cutovers and implementation plans while understanding how these changes/modifications can affect the customer’s business.
  • Work customer shared challenges in with moving the network forward with new technology, features and functionality.
  • Provide guidance, technical, and troubleshooting support on Tier 4 escalations. This benefit is particularly relevant in environments that Verizon has built and/or provided a refresh.
  • Maintain quality assurance through adherence to established process, procedures, baselines, and CPE standards.
  • Technical liaison between the customer and Verizon for problem resolution assistance with regards to critical network and Change issues.
  • Product and technology evaluations
    • environment–specific evaluation
    • partners at the cutting edge
    • special management arrangements
  • MTO, Merger, and Separation
    • CSE supports Management Take Over (MTO) for custom MSS client contracts
    • CSE has typically successfully led a number of significant merger and acquisition efforts
  • Complex Association and Application flow determination
    • CSE works with the customer during due diligence phases to associate each device with a corresponding Perimeter Complex.
    • CSE also attempts to identify and document key applications associated with each Perimeter Complex ; including relevant details about each flow

This process forms the foundation for Managed Changes and Incident management in these highly visible perimeter environments.

What we’re looking for...

You'll need to have:

  • Bachelor’s degree or four or more years of work experience.
  • Four or more years of relevant work experience.

Even better if you have:

  • 8 or more years of hands on, technical, support of networking and network security technologies.
  • Experienced and certified in multiple vendor (Palo Alto, Fortinet, Cisco, Checkpoint, etc.) devices & technologies, including UTMs, Firewalls & IDS/IPS, Routers, Switches, NAC devices.
  • Vender certifications – such as CCNA, CCNP & CCSP preferred.
  • Security certifications from SANS, or ISC(2) such as CISSP, or CompTIA Security +.
  • Previous experience in a NOC/SOC and/or as a project or lifecycle engineer, providing complex technical support.
  • Ability to travel and work flexible schedule as necessary.
  • Project management experiences a plus, time management essential.
  • Excellent communication skills – listening as well as oral and written communication with technician to Executive level.
  • Proficient in MS Office applications including MS excel, project and Visio.
  • Travel may be required.
  • Language support may be necessary

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Learn more

Learn more about Systems/Data Security jobs

Your Careers Account

Create / update your career account

Related Careers

Systems/Data Security Jobs in Dortmund, Germany