Network Security Engineer III
Company Overview
Spectrum is the nation's fastest-growing mobile provider and leading internet provider. Our tech teams create, develop, and operate leading connectivity products serving nearly 100 million users and 500 million devices. We connect people to what's next.
The Charter Technical Engineering Center (CTEC) facilities in Englewood, CO oversee s the design and architecture of Charter's multi-billion dollar network infrastructure. We investigate, select, develop, and integrate technologies and solutions that meet the needs of the company for short, medium and long term initiatives. This includes the delivery of the technology plan and future architecture for Voice, Video, Data, Optical, Commercial, Cloud, CPE, Network and Access.
This position is eligible to work in a hybrid work model (combination of in-office and remote days)
JOB SUMMARY
Charter's Network Security Architecture team works closely with other Charter Engineering and Operational organizations, as well as a number of Industry bodies, providing design standards and guidance emphasizing cybersecurity best practices in their respective arenas. Primary business functions focus on retiring obsolete security models and addressing long standing operational pain points by institutionalizing scalable security solutions that promote adoption of agile deployment strategies, integration of new service architectures, and speed of delivery which align with overall cybersecurity programs across the different business partners. Additional responsibilities focus on evolving existing Core and Access infrastructure data and control plane security controls by improving upon our portfolio of mitigation capabilities, regulatory requirements, and service availability which align with acceptable risk levels.
This role will assist/lead in design and implementation of other security constructs such as Voice, Video, Data, Cloud, Customer Premise Equipment, Core, Commercial, IT, and Wi-Fi Network and Access. This position has a strong mix of technical and business skills, and will often provide security requirements to other Engineering and Operational teams in order to set strategic direction for the company. Qualified candidates will be expected to possess strong technical aptitude in Automation, Virtual System Environments, Network and Data Center Infrastructure Architectures, and Security technologies.
MAJOR DUTIES AND RESPONSIBILITIES
- Know, understand, and follows company policy
- Adhere to industry specific local, state, and federal regulations as applicable
- Ensure confidentiality, availability and integrity of in-house information systems and processes across the company infrastructure
- Mentor junior team members and guide Leadership decisions for solution and sustaining engineering efforts
- Connects trends and technological innovations in the security industry to strategize Charter's stance against cybersecurity threats and theft of service
- Architecture, develop and document industry best practices to support company initiatives while meeting performance and availability requirements
- Create and present security architecture overviews for various peers and leaders across the business
- Partner with Product, Operations and Engineering organizations to understand requirements and develop security specifications and solutions surrounding their project needs
- Oversee and ensure proper Security Engineering to Security Operations handoff - capturing all required architectural documentation and security results accordingly
- Sustain existing security standards and controls: to include engineering designs, implementation guidelines, and field bulletins for future feature enhancements and solution defects
- Support Operational escalations and vendor concerns/issues around security related matters
- Resolve security vulnerabilities for new and existing security solutions in lab and pre-production environments
- Performs other duties as requested by manager
REQUIRED QUALIFICATIONS
Required Skills/Abilities and Knowledge
- Ability to read, write, speak, and understand English
- Ability to plan, balance competing priorities, and organize independently
- Ability to exhibit strong dynamic characteristics in project and priority flexibility
- Ability to drive multiple projects and tasks simultaneously
- Ability to listen to multiple points of view and synthesize goals for recommendations
- Recognize and execute a sense of urgency to achieve desired results in a timely fashion
- Exhibit strong initiative while working across functional boundaries, building consensus, and driving results
- Experienced in reading at least one scripting or programing language such as Python, Ansible, Bash, or C++
- Experienced in in using ticketing systems and software tools which support company operations
- Strong Operating System knowledge of the different Windows and Linux environments
- Strong knowledge in Word, Excel, PowerPoint, Visio or similar application toolsets
- Strong security knowledge of OWASP Top Ten, Botnet, DDoS, Ransomware, Phishing, Threat Anomaly Detection, Social Engineering, Vulnerability & Patch Management
- Experienced in virtual systems and environments such as vSphere, KVM, ESXi, and/or Hyper-V
- Strong Service Provider knowledge of OSI layers 2/3/4/7, IAM/PAM, Common Network Architectures, Firewalls, IDP/IPS environments, BGP security models, DNS, Routing protocols, Control/Data/Mgmt Plane, Logging, Ethernet and Transport technologies and protocols
- Strong Data Center & Infrastructure knowledge in one or more technologies like NFV, SDN, SDWAN, Application Development, or Containers
Required Education
Bachelor's Degree or 4 or more years related work experience
Required Related Work Experience and Number of Years
Network experience - 5
Cybersecurity experience in Service Provider, Enterprise IT, or Commercial Managed Services - 2 or more years
PREFERRED QUALIFICATIONS
Preferred Skills/Abilities and Knowledge
Knowledge of company products and services
Preferred Skills/Abilities and Knowledge
- Ability to write in at least one scripting or programing language such as Python, Ansible, Bash, and/or C++
- Familiar with Zero Trust architectures for infrastructure and applications environments
- Familiar with vulnerability scanning environment suites such as Qualys, Tenable, Nessus, and/or Rapid7
- Familiar with breach and attack simulators such as Mandiant, Safe Breach, and/or Ixia Breaking Point
- Familiar with Cloud and Container technologies such as AWS, Docker, Kubernetes, and/or OpenShift
- Familiar with Security Information and Event Management (SIEM) and other log management tools
- Familiar with Industry specifications/standards and bodies such as NIST, CSRIC, PCI, and/or CIS
Preferred Education
Bachelor's Degree Degree in Cybersecurity
Industry and/or vendor specific certifications (Linux, Cisco, Juniper, SANS, GIAC)
Preferred Related Work Experience and Number of Years Previous ISP/MSO/Telecom network and security experience - 2 or more years
WORKING CONDITIONS
Office Environment
May work in Network Lab environment
Occasional travel as required ENE311 324130 324130BR
Here, employees don't just have jobs, they build careers. That's why we believe in offering a comprehensive pay and benefits package that rewards employees for their contributions to our success, supports all aspects of their well-being, and delivers real value at every stage of life.
The pay for this position has a salary range of $78,900.00 to $139,500.00. The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience and location. Also, certain positions are eligible for additional forms of compensation such as bonuses.