Network Security Operations Engineer - Python

As a Network Security Operations Engineer at Experian, your primary responsibilities include deploying and maintaining Cloud Web Application Firewalls, performing migrations from legacy firewall equipment to next-generation solutions, and providing crucial expertise during security incidents and audits. You will also configure Intrusion Prevention Systems, analyze security logs, conduct regular security assessments, and maintain security documentation.

Experian requires a minimum of 5 years of security experience, focusing on Web Application Firewalls, Intrusion Prevention Systems, and Next Generation Firewalls. Intermediate proficiency in Python, along with proficiency in managing Fortinet or Checkpoint firewalls and AWS cloud services, is essential. Additionally, any relevant security certifications like CISSP or CEH would be beneficial.

The role offers a permanent home-based work environment in Costa Rica, allowing for flexibility while ensuring you remain engaged with a vibrant team. Experian emphasizes innovation and inclusivity, creating a supportive culture for its employees. They also provide excellent benefits like a performance bonus, education reimbursement, and various insurance options.

In addition to proficiency in Python, a Network Security Operations Engineer at Experian should be familiar with tools like Fortinet or Checkpoint firewalls, AWS cloud services, and DevOps tools such as Jenkins, Docker, and Kubernetes. Experience within an Agile framework is also a plus for this position.

Experian provides a comprehensive benefits package that includes medical, life, and dental insurance, work-from-home flexibility, paid time off, annual performance bonuses, and education reimbursement, among others. They are committed to fostering a positive work-life balance for their employees.

When responding, aim to highlight specific instances where you successfully deployed or managed Web Application Firewalls. Mention the tools you used, any challenges you faced, and how your actions positively impacted the organization’s security posture.

Explain your method for assessing the severity and potential impact of each incident. Discuss how you communicate with team members and stakeholders and the importance of maintaining a calm demeanor during high-pressure situations.

Mention resources you utilize, such as industry blogs, webinars, and online courses. Sharing specific examples of how you’ve adapted your approaches based on recent threats will demonstrate your commitment to continuous learning.

Provide examples of scripts or applications you've built using Python for automating security tasks, analyzing logs, or improving network monitoring. Highlight how these tools improved efficiency or enhanced security protocols.

Describe the Intrusion Prevention Systems you've worked with and the steps you take to configure them effectively. Discuss how you monitor performance and which metrics you analyze to determine effectiveness.

Outline the audit process, including the preparation, execution, and final reporting. Discuss the tools used and any significant findings, demonstrating how you addressed vulnerabilities.

Explain how Agile methodologies promote flexibility and responsiveness in projects, particularly in addressing evolving security challenges. Share any experience applying Agile practices within a security team setting.

Discuss your approach to creating awareness among team members about security policies, conducting regular training sessions, and implementing checks to ensure compliance is maintained across projects.

Detail your methods for deriving insights from security logs, including the tools you use, patterns you look for, and how you prioritize issues based on potential impact on the organization.

Share a specific incident where you detected a vulnerability, outlining how you verified the threat, communicated with your team, and what corrective actions you implemented to mitigate the risk.