Network Engineer for Systems Team
Founded in 1968, Gilder Gagnon Howe & Co., LLC (GGHC) is a registered investment adviser and broker-dealer focused on growth investing. Our team of 90 employees is based in Hudson Yards, Manhattan.
Position Overview: We are seeking a Network Engineer to join our dedicated IT team, primarily managing network infrastructure and security. The role includes a wide range of responsibilities, from network management and security implementation to supporting our users.
Responsibilities:
- Develop and manage local network security plans, including monitoring, auditing, scanning, intrusion detection, and prevention.
- Maintain standard operating procedures related to business continuity, disaster recovery, and security.
- Oversee and maintain network and communication infrastructure with vendor assistance.
- Manage AWS cloud infrastructure for in-house applications, including AWS firewall and IaC deployment automation.
- Contribute to managing a hybrid SOC model.
- Provide user support to both on-premise and remote employees.
- Collaborate effectively within the team.
Requirements:
- Expertise in network administration, management and cybersecurity is a must.
- Proficiency in Network Security with extensive experience in implementing and configuring firewalls, VPNs, IDS/IPS systems, and other security measures to safeguard enterprise networks from potential threats.
- Full understanding of TCP/IP stack and skilled in Advanced Networking Protocols such as BGP, OSPF, MPLS, and VLANs, with the ability to design and manage resilient and efficient LAN/WAN environments.
- Management of DNS and DHCP.
- Working with Enterprise Carriers to design and implement Circuits.
- Experience with design, implementation and maintaining enterprise wireless networks is a must.
- Proficiency in AWS for firewall configurations and resource management.
- Excellent team player with strong technical writing/documentation skills.
- Fortinet Firewall, Fortinet WAPs, Juniper Switches, Meraki.
- Physical on-premise network support, including Fort OS, Fortinet firewalls, Juniper Switches, Meraki, enterprise telephony, and various other systems.
- SIEM, log aggregation tools, application vulnerability scanning, PEN testing, auditing, intrusion detection, and prevention.
- In-office presence 5 days a week.
Skills:
- Security: Firewalls, Network Security, VPN, IDS/IPS, SSL, IPsec
- Operating Systems: Windows, Linux, macOS
- Tools: Wireshark, NMap, ICMP, FortiAnalyzer, Cisco Packet Tracer, Kali Linux, Nagios, NetFlow Analyzer, Netstat, SolarWinds Network Performance Monitor, Tcpdump, Zabbix.
- NIST Framework, SIG1, SIG2
- Experience with vendor management platforms, and due diligence principles, a plus.
- Knowledge of AWS CloudFormation and IaC, a plus.
- Experience with automated IaC deployment, a plus.
- Mobile Device Management, a plus.
Current IT Team Responsibilities:
- Infrastructure management (both SaaS and on-prem) including networking, security, budget management, and configuration.
- Multicast Traffic for trading applications.
Growth Opportunities:
- Advanced cybersecurity responsibilities and participation in the GGHC cybersecurity committee.
- Leadership role with the ongoing development of the firm’s cybersecurity plan and initiatives.
- Leadership role in support of the firm’s business recovery plan and disaster recovery initiatives.
- Re-architecting legacy in-house applications with a mix of vendor solutions and new in-house systems.
Salary Range: