Job details

Network Engineer

Network Engineer for Systems Team

Founded in 1968, Gilder Gagnon Howe & Co., LLC (GGHC) is a registered investment adviser and broker-dealer focused on growth investing. Our team of 90 employees is based in Hudson Yards, Manhattan.

Position Overview: We are seeking a Network Engineer to join our dedicated IT team, primarily managing network infrastructure and security. The role includes a wide range of responsibilities, from network management and security implementation to supporting our users.

Responsibilities:

Develop and manage local network security plans, including monitoring, auditing, scanning, intrusion detection, and prevention.
Maintain standard operating procedures related to business continuity, disaster recovery, and security.
Oversee and maintain network and communication infrastructure with vendor assistance.
Manage AWS cloud infrastructure for in-house applications, including AWS firewall and IaC deployment automation.
Contribute to managing a hybrid SOC model.
Provide user support to both on-premise and remote employees.
Collaborate effectively within the team.

Requirements:

Expertise in network administration, management and cybersecurity is a must.
Proficiency in Network Security with extensive experience in implementing and configuring firewalls, VPNs, IDS/IPS systems, and other security measures to safeguard enterprise networks from potential threats.
Full understanding of TCP/IP stack and skilled in Advanced Networking Protocols such as BGP, OSPF, MPLS, and VLANs, with the ability to design and manage resilient and efficient LAN/WAN environments.
Management of DNS and DHCP.
Working with Enterprise Carriers to design and implement Circuits.
Experience with design, implementation and maintaining enterprise wireless networks is a must.
Proficiency in AWS for firewall configurations and resource management.
Excellent team player with strong technical writing/documentation skills.
Fortinet Firewall, Fortinet WAPs, Juniper Switches, Meraki.
Physical on-premise network support, including Fort OS, Fortinet firewalls, Juniper Switches, Meraki, enterprise telephony, and various other systems.
SIEM, log aggregation tools, application vulnerability scanning, PEN testing, auditing, intrusion detection, and prevention.
In-office presence 5 days a week.

Skills:

Security: Firewalls, Network Security, VPN, IDS/IPS, SSL, IPsec
Operating Systems: Windows, Linux, macOS
Tools: Wireshark, NMap, ICMP, FortiAnalyzer, Cisco Packet Tracer, Kali Linux, Nagios, NetFlow Analyzer, Netstat, SolarWinds Network Performance Monitor, Tcpdump, Zabbix.
NIST Framework, SIG1, SIG2
Experience with vendor management platforms, and due diligence principles, a plus.
Knowledge of AWS CloudFormation and IaC, a plus.
Experience with automated IaC deployment, a plus.
Mobile Device Management, a plus.

Current IT Team Responsibilities:

Infrastructure management (both SaaS and on-prem) including networking, security, budget management, and configuration.
Multicast Traffic for trading applications.

Growth Opportunities:

Advanced cybersecurity responsibilities and participation in the GGHC cybersecurity committee.
Leadership role with the ongoing development of the firm’s cybersecurity plan and initiatives.
Leadership role in support of the firm’s business recovery plan and disaster recovery initiatives.
Re-architecting legacy in-house applications with a mix of vendor solutions and new in-house systems.

Salary Range: