Data Center Network Security Engineer (Information System Analyst II, Option N)

State of Illinois•Springfield, IL

4d•Onsite

About The Position

Are you looking for a rewarding career with an organization that values their staff? The Department of Innovation & Technology (DoIT) is seeking to hire qualified candidates with the opportunity to work in a dynamic, creative thinking, problem solving environment. This position serves as a Data Center Network Security Engineer for the DoIT, in performing complex hardware and software installations, designing specifications, developing, and modifying secure Data Center network communications, including related security components. In this role, you will assume accountability of deliverables, including maintaining accuracy, compliance with security standards, and alignment with organizational objectives. Additionally, you will collaborate with stakeholders to define secure architecture requirements and design specifications to Data Center security communications, including firewalls, segmentation technologies, intrusion detection/prevention systems, network security appliances, application load balancers, internet filtering solutions, and supporting infrastructure. If you possess these knowledges, skills, abilities, and experience, we invite you to apply for this position to join the DoIT Team! As a State of Illinois employee, you receive a comprehensive benefits package including:• Competitive Group Insurance benefits including health, life, dental and vision plans• Flexible work schedules (when available and dependent upon position)• 10-25 days of paid vacation time annually (10 days for first year of state employment)• 12 days of paid sick time annually which carryover year to year• 3 paid personal business days per year• 13-14 paid holidays per year dependent on election years• 12 weeks of paid parental leave• Pension plan through the State Employees Retirement System• Deferred Compensation Program – voluntary supplemental retirement plan• Optional pre-tax programs -Medical Care Assistance Plan (MCAP) & Dependent Care Assistant Plan (DCAP)• Tuition Reimbursement Program and Federal Public Service Loan Forgiveness Program eligibility For more information regarding State of Illinois Benefits follow this link: https://www2.illinois.gov/cms/benefits/Pages/default.aspx Why Work for Illinois? Working with the State of Illinois is a testament to the values of compassion, equity, and dedication that define our state. Whether you’re helping to improve schools, protect our natural resources, or support families in need, you’re part of something bigger—something that touches the lives of every person who calls Illinois home. No matter what state career you’re looking for, we offer jobs that fit your life and your schedule—flexible jobs that provide the gold standard of benefits. Our employees can take advantage of various avenues to advance their careers and realize their dreams. Our top-tier benefits and great retirement packages can help you build a rewarding career and lasting future with the State of Illinois.Essential Functions Under administrative direction, serves as a Data Center Network Security Engineer for the Department of Innovation & Technology (DoIT) performing complex hardware and software installations, designing specifications, developing, and modifying secure Data Center network communications, including related security components. Collaborates with users/stakeholders to define secure architecture requirements and design specifications to Data Center security communications, including firewalls, segmentation technologies, intrusion detection/prevention systems, network security appliances, application load balancers, internet filtering solutions, and supporting infrastructure. Configures, tests, and maintains diverse firewall models, application load balancers, segmentation solutions, and network security systems such as Intrusion Detection (IDS), and Intrusion Prevention Systems (IPS) to safeguard critical infrastructure. Keeps abreast of new developments in the information technology field by continuing education through online training platforms, meetings, training sessions, seminars, and conferences to increase familiarity with and remain current on products, vendors, techniques, and procedures. Performs other duties as required or assigned which are reasonably within the scope of duties enumerated above.

Requirements

Requires knowledge, skill, and mental development equivalent to completion of four (4) years of college with course work in computer science or directly related fields.
Requires three (3) years of professional experience in Network Services or a related Information Technology field.
Requires three (3) years of professional experience in data center network security, including designing, implementing, documenting and maintaining secure architectures for on-premises and cloud environments in alignment with organizational and regulatory security standards, including experience with formal change control processes, configuration management and audit-ready documentation.
Requires three (3) years of professional experience with enterprise firewall administration, including configuration, testing, maintenance, upgrades, and hardening of diverse firewall models (e.g. Palo/Cisco) to safeguard critical infrastructure, as well as implementing vendor-recommended firmware/software updates, coordinating vendor support, and resolving production incidents in high-availability environments.
Requires three (3) years of professional experience with OSI Model Layers 1 through 7, network diagnostic tool integration, packet analyzers, and complex network troubleshooting, including administration of enterprise security systems and traffic analysis using tools including Wireshark and Panorama and participation in incident response, root cause analysis and SLA-driven break/fix operations using enterprise monitoring platforms.
Requires three (3) years of professional experience with data center and cloud network security architecture, including segmentation technologies, application load balancers, traffic management and internet/content filtering solutions supporting muti-tiered applications, including capacity planning, performance optimization, vulnerability assessment, and collaboration with stakeholders to define secure architecture requirements.

Nice To Haves

Three (3) years of professional experience in data center network security, including designing, implementing, documenting and maintaining secure architectures for on-premises and cloud environments in alignment with organizational and regulatory security standards, including experience with formal change control processes, configuration management and audit-ready documentation.
Three (3) years of professional experience with enterprise firewall administration, including configuration, testing, maintenance, upgrades, and hardening of diverse firewall models (e.g. Palo/Cisco) to safeguard critical infrastructure as well as implementing vendor-recommended firmware/software updates, coordinating vendor support, and resolving production incidents in high-availability environments.
Three (3) years of professional experience with OSI Model Layers 1 through 7, network diagnostic tool integration, packet analyzers, and complex network troubleshooting, including administration of enterprise security systems and traffic analysis using tools such as Wireshark and Panorama and participation in incident response, root cause analysis and SLA-driven break/fix operations using enterprise monitoring platforms.
Three (3) years of professional experience with data center or cloud network security architecture, including segmentation technologies, application load balancers, traffic management and internet/content filtering solutions supporting multi-tiered applications including capacity planning, performance optimization, vulnerability assessment, and collaboration with stakeholders to define secure architecture requirements.
Three (3) years of experience with intrusion detection and protection systems (IDS/IPS), Domain Name Services (DNS) administration and DNS security (DNSSEC), including analysis of security events and implementation of mitigation strategies to ensure secure and efficient traffic flow.
Three (3) years of professional experience in technical project coordination, including multitasking across complex security initiatives, collaborating with stakeholders and vendors, supporting change control processes and strategic planning for data center network security implementations.
Ability to analyze data logically and exercise sound judgement in defining and evaluating problems of an operational or procedural nature.
Ability to lead and coordinate cross-functional teams, aligning individual contributions toward shared goals to consistently deliver high-impact results.Developed verbal and written communication skills to present technical information clearly and precisely to diverse audiences, including business users, development teams, and agency executives.
Certifications in one or more of the following: Cisco Certified Network Professional (CCNP) Security, Cisco Certified Internetwork Expert (CCIE) Security, CompTIA Security, Certified Information Security Manager (CISM), Routing and Switching, Palo Alto Networks Certified Network Security Engineer (CCSE), or similar relevant certification(s) in Information Security.

Responsibilities

Under administrative direction, serves as a Data Center Network Security Engineer for the Department of Innovation & Technology (DoIT) performing complex hardware and software installations, designing specifications, developing, and modifying secure Data Center network communications, including related security components.
Collaborates with users/stakeholders to define secure architecture requirements and design specifications to Data Center security communications, including firewalls, segmentation technologies, intrusion detection/prevention systems, network security appliances, application load balancers, internet filtering solutions, and supporting infrastructure.
Configures, tests, and maintains diverse firewall models, application load balancers, segmentation solutions, and network security systems such as Intrusion Detection (IDS), and Intrusion Prevention Systems (IPS) to safeguard critical infrastructure.
Keeps abreast of new developments in the information technology field by continuing education through online training platforms, meetings, training sessions, seminars, and conferences to increase familiarity with and remain current on products, vendors, techniques, and procedures.
Performs other duties as required or assigned which are reasonably within the scope of duties enumerated above.

Benefits

Competitive Group Insurance benefits including health, life, dental and vision plans
Flexible work schedules (when available and dependent upon position)
10-25 days of paid vacation time annually (10 days for first year of state employment)
12 days of paid sick time annually which carryover year to year
3 paid personal business days per year
13-14 paid holidays per year dependent on election years
12 weeks of paid parental leave
Pension plan through the State Employees Retirement System
Deferred Compensation Program – voluntary supplemental retirement plan
Optional pre-tax programs -Medical Care Assistance Plan (MCAP) & Dependent Care Assistant Plan (DCAP)
Tuition Reimbursement Program and Federal Public Service Loan Forgiveness Program eligibility