|
Lead Platform Engineer - VPN - Richmond Virginia
Company: Capital One Location: Richmond, Virginia
Posted On: 04/26/2024
West Creek 4 (12074), United States of America, Richmond, VirginiaLead Platform Engineer - VPNDo you love building and pioneering in the technology space? Do you enjoy solving complex technical problems in a fast-paced, collaborative, inclusive, and iterative delivery environment? At Capital One, you'll be part of a big group of makers, breakers, doers and disruptors, who love to solve real problems and meet real customer needs.We are seeking an experienced Lead Platform Engineer with expertise in network security technologies cloud, enterprise, and data center to join our team! - This is an opportunity to design, deploy, and manage VPN technologies that drive the enhancement and evolution of our network security infrastructure.As a Platform Engineer, you'll have the opportunity to be on the forefront of driving a major transformation within Capital One. You will be working with the engineering team to integrate and manage new technologies into the existing production environment; gathering requirements, developing designs to meet documented requirements, and implementing those designs. The Platform Engineer will also function as a mentor and escalation resource for the operations team; developing/presenting training curriculums, mentoring less experienced engineers, and providing on-call incident support. - -You will collaborate and innovate with smart and passionate people within Capital One to deliver results that have a direct impact on the company's bottom line while challenging yourself by learning new technologies and seeking opportunities to advance and improve our enterprise infrastructure.The VPN Engineering team provides secure Virtual Private Network (VPN) connectivity at the Enterprise level that allows associates to access Capital One's network remotely via home based networks, public Wi-Fi networks and smartphone hot spots.What you'll do: - Design, implement, and maintain high quality VPN infrastructure solutions.
- Support enterprise network security infrastructure, regional hubs, and cloud environments.
- Enforce cyber security standards, automation of security services, and deployment of security solutions.
- Work collaboratively across teams and LOBs spanning multiple time zones.
- Consult with various technology support groups as part of network security design and development efforts. -
- Identify gaps in current design and research/propose appropriate solutions based on technical and business drivers.
- Lead/contribute to security solutions development, optimizations, network and cyber security standards, and technology refresh efforts. -
- Provide input to design standards and maintain network security topology diagrams and technical design documents.
- Participate in technology integration efforts with other engineering and support teams.
- Provide direct support of audit and ad hoc consulting engagements.
- Ensure compliance with departmental and enterprise security configuration standards.
- Engage with all internal and external parties as necessary to drive and complete work.What we're looking for:
- Subject matter expert (SME) with a solid network security background and hands on experience with VPN and firewalls
- High proficiency with designing, implementing, and troubleshooting a wide range of network security platforms and VPN technologies such as Palo Alto, f5, AWS, Cisco
- Experience in building, migrating & supporting enterprise VPN platforms and systems for Desktop (macOS, Windows) & Mobile (iOS, Android), and SASE based solutions by test driving proof of concept and deployment of security solutions
- Ability to problem solve in a complex and ever changing environment
- Advanced proficiency with leveraging network security management tools and performing packet analysis during incident/problem resolution -
- Excellent interpersonal and communication skills (both verbal and written). Must be able to represent the team well and effectively communicate/share technical information to a variety of individuals, peers, and stakeholders
- Excellent analytical and problem-solving skills to help detect, communicate, and fix issues while adopting Site Reliability Engineering (SRE) principles so that the availability and performance of the investments in IT networks are optimal
- Excellent time management skills across multiple projects and distributed teams
- Encourage innovation, implementation of cutting-edge technologies, inclusion, outside-of-the-box thinking, teamwork, self-organization and diversity
- Willingness to update and contribute to living engineering documentation
- Must be ready to work flexible hours and need to adjust to changing environments
- Must be prepared for physical work which may involve lifting and carrying equipment of up to 50lbs, besides moving, racking and installing them, if necessary
- Knowledgeable about IPSec tunnels and encryption, VRF, TCP/IP, OSI model, IPv6, cloud based network security architecture, VPN deployment strategies & migrations, data traffic manipulation, Proxy, Load Balancers, DNS / Route53, VPCs
- Good to have knowledge on: general network concepts, protocols, any scripting experience, CM tools including Ansible and Terraform, and a variety of AWS tools and servicesBasic Qualifications:
- High School Diploma, GED, or equivalent certification
- At least 5 years of experience with network security designs & solutions - VPNs, firewalls
- At least 2 years of experience leading team projectsPreferred Qualifications:
|
|