Organisational Design Consultant

Network Security Consultant needed for our Financial Services client in Edinburgh. The right candidate must have demonstrable experience in Network Segmentation / Network Separation / Network Divestment concepts and activities.

Candidates must engage via an FCSA accredited Umbrella company, and the role can be worked predominantly remote, though there may be an occasional requirement to attend one of the offices across the UK.

The successful candidate should have a broad technical background as a Network Security Analyst / Engineer covering Networks & Security technologies and tools (including Splunk) and will be responsible for analysis and design work required to be completed ahead of a large-scale IT separation and integration.

Key Skills:

• Demonstrable background as a Network Security Consultant / Engineer within complex, enterprise environments
• Experience working with unstructured large scale estates and rulesets - (6000+ rules)
• Experience in Network Segmentation and separation concepts and activities, with experience enforcing control-point boundaries in a live enterprise environment
• Previous experience performing security or network segmentation specifically in support of M&A or divestment activity
• Experience in creating and running Splunk queries to perform firewall traffic analysis for segmentation purposes
• Fluent in network traffic analysis, including the ability to translate low-level network traffic into business applications and services
• Experience in building least-privilege firewall rules and rulesets derived from traffic studies, structured around business applications
• Fluent in understanding and interpreting existing firewall policies and rules, including gap analysis
• Experienced in understanding traffic flows through cascading or multiple firewalls, and analysing cumulative access paths
• Proven experience in large-enterprise IP networking and network security
• Ability to research and identify unknown or unexpected traffic using enterprise-specific and publicly available information
• Familiarity with Palo Alto firewall technologies and Panorama
• Familiarity with next-generation firewall capabilities, including application-ID, user-based rules, and URL category rules
• General firewall policy optimisation and consolidation experience, including identifying and removing shadowed or redundant rules Understanding of F5 BIG-IP technologies
• Understanding of AWS and Azure cloud networking models
• Understanding of Cisco ACI architecture
• Scripting or automation skills (for example Python) to increase efficiency and throughput of traffic analysis and rule generation
• Excellent analytical and problem-solving abilities

If interested and available, please Apply Immediately!

Head Resourcing is committed to being an inclusive business where diversity is valued and celebrated. Diversity to us, includes but is not limited to educational background, socio-economic background, neurodiversity, age, marriage and civil partnership status, veteran status, gender, gender identity, gender reassignment, sexual orientation, disability, religion or belief, race, and ethnicity. As such we welcome enquiries and applications from everyone. We will be happy discuss with you any workplace adjustments you need in order to be at your best during the recruitment process.