Sr. Cyber Security Risks Analyst

Gates Corporation has an exciting opportunity for a Network Security Engineer at our Center of Excellence in Santa Fe, Mexico. This is a key role in our growing Cyber Security group. This position is a full-time, permanent, and is salaried with standard work hours, and requires very little travel. We are looking for someone who can start immediately.

The Network Security Engineer position encompasses a number of responsibilities, including the following tasks related to Network Security:
The Cybersecurity Network Security Engineer position reports to the VP of Cyber Security and Chief Information Security Officer (CISO). In collaboration with business partners and partner teams across IT), you will be responsible for auditing, assessing & architectural recommendations as it pertains to network security infrastructure while continuously improving our Cybersecurity maturity and defensive posture. You will work with our internal customers and partners, to provide support related to security devices (e.g. firewalls, EDR, WAPs, IAM, proxies, and VPN gateways).

**What You'll Do**
- Assist the network management team with maintaining, deploy, continuously improving network security infrastructure (firewalls, proxies, VPN gateways, and load balancers)
- Develop, execute, and improve processes for network security operational activities;
- Assist with design and implement network security requests for projects and initiatives
- Effectively collaborate with the Threat Detection & Response team to improve our threat detection and prevention capabilities
- Mentor junior security analysts in all aspects of network security operations;
- Develop, maintain, and improve standards and requirements related to network security;
- Provide technical support for cyber managed infrastructure & products, including firewalls, proxies, and remote access gateways
- Work on tasks & changes related to security network infrastructure
- Oversee 3rd party network penetration tests.
- Network security lead for CIRT team and provide SME network expertise in incident response crisis management events and table top exercises.

**Minimum Qualifications**
- Excellent interpersonal, written and oral communication skills and ability to communicate in both technical and non-technical language with all levels of staff and management;
- Demonstrated ability to identify requirements/needs, assess solutions and provide recommendations;
- Demonstrates an ability to work in a collaborative environment and influence others;
- Highly passionate and self-motivated;
- Experience with Palo Alto Networks (at least 4 years hands on experience)
- Experience with SDWAN or cloud security (at least 2 years hands on experience preferred)
- Experience with security processes and documentation.
- Network topology and architectural documentation creation expertise
- Firewall rule review skill or expertise desired.
- SME level IPS expertise

**Preferred Qualifications**
- 4-year university degree (equivalent work experience can be substituted for educational requirements)
- 5+ years directly related experience with a focus on network security
- Obtained or demonstrates an active pursuit of one or more of the following certifications: Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Risk Information System Control, (CRISC) certifications, CCNA, CCNP, CCSA, or other related certifications;
- Palo Alto Firewall, Cisco ASA, or F5 Big IP qualifications are a plus;
- 5 years of Cybersecurity experience in the following areas would be beneficial:

- Network Security Engineer in large and regulated organizations;
- Network Design & Architecture experience
- Serve as cyber security SME responding to customer and partner cyber security audits and questionaries.
- Possesses detailed knowledge of industry regulatory environment and risk management practices, and thorough understanding of local and federal regulations such as Sarbanes-Oxley, NIST Cyber Security Framework, NIST 850-53 and ISO 27001/2.
- Education: Bachelor's Degree in Computer Science, Information Systems, Business Administration, or other related field. Or equivalent work experience.
- Experience: Typically has 3 to 5 years of IT Security Risk management and/or Security Audit work experience including risk management, compliance and audit, information security management background.
- Reports to a VP of Cyber Security/ Chief Information Security Office (CISO)

**Compensation**: $

**What you need to have**:

- Bachelor's degree, or equivalent work experience, in computer science, network engineering or other related field of study.
- 3+ years in a cyber security GRC role.
- Have a thorough understanding of ISO 27001, NIST, and other relevant information security regulations and standards.
- Confidence in engaging with key business stakeholders, including technology peers to help them better manage their techno