Global Technology Services (GTS) is Aegon's global IT partner that provides infrastructure services, information security and global/corporate application support for Aegon's businesses around the world. From 6 locations in the US, the Netherlands, UK, and Hungary, we support 20+ country units and 24000+ employees in the world. Our support consists of a wide range of centralized global IT services such as programming, database management, project management, agile/dev/ops, and more. We continue to maximize the value from having a clear digital and data technology platform strategy that extends our ecosystem, as an approach to digitization, enhancing customer experience, and improving operational efficiency. All of these teams work closely together to provide innovative and digital solutions as well as critical technology support. This is essential for enabling Aegon's businesses around the globe to be innovative, digital, and competitive, efficient, and effective, and to provide the best solutions and customer experience for our customers and shareholders.

Next Generation Security is a Level 1-3 team responsible for the design, implementation, and operational management of network security solutions and capabilities of a large global enterprise network.

This position will provide 1st- 3rd level support of the Aegon Global Information Security Services which includes implementation and administration of network security hardware and software, enforcing the network security policy, and working with other support teams to meet the enterprise business needs of our customers. This will include troubleshooting incidents, collaborating with the Security Operations Center, providing escalation support for Level 2 Operations, and providing problem resolution. Support of Firewalls in AWS/Azure cloud and in physical datacenters, Remote Access, and the advancement of security capabilities and concepts are the main focus areas.

What You Will Do:

  • Works from established procedures with limited instruction. 
  • Assist in the development and enhancement of procedures. 
  • Performs moderately difficult assignments, requiring a great deal of originality and problem solving. 
  • Complies with information security policies. 
  • Exhibits regular, reliable, punctual, and predictable attendance.   
  • Performs analysis of network security needs and contributes to design, integration, and implementation of new tools/technologies.  
  • Day-to-day operational tasks such as firewall request and incident management  
  • Designs and implements remote connectivity solutions including IPSec VPN, and SSLVPN 
  • Provide security guidance and drive infrastructure decisions in collaboration with other technical and management teams, ensuring Security principles are being upheld. 
  • Development, deployment, or administration of firewalls such as Palo Alto 
  • Conduct regular security assessments on controls and policies to iterate and improve the security posture. 
  • Drive/support global information security initiatives aimed at modernizing security tools and capabilities, reducing the organizations exposure and risks to network-based threats, and delivering quality information security in alignment with the organization’s goals. 

What You Will Need:

Qualifications

  • Strong knowledge of network routing/switching (routing protocols, multicast, other LAN protocols) 
  • Advanced knowledge of layer 7 firewall technologies and capabilities (e.g., Application awareness, user identities, advanced threat detection, etc.) 
  • Working knowledge of project management concepts; able to run small projects. 
  • Development experience working with APIs to automate essential firewall tasks using languages such as Python to improve efficiency of day-to-day tasks. 
  • Experience with firewall assessment and compliance tools such as FireMon or Tufin 
  • Proven ability to understand and decode network traces and capture files. 
  • Proven ability to communicate in the written/spoken language with audiences of diverse technical understanding. 
  • Proven ability to be a self-starter with self-motivation for learning new technologies. 
  • Proven ability to quickly understand customer problems and how they relate to network/security infrastructure. 
  • Strong knowledge of network security, Palo Alto firewalls, intrusion detection systems, authentication mechanisms, encryption technologies, and networking protocols including SMTP, HTTP, DNS, TCP/IP, and SNMP. 
  • A four-year computer science or related technical degree or equivalent work experience. 
  • A minimum of 5 years’ experience in directly related work experience in network security administration\ engineering\ architecture.  

Preferred

  • Prior experience implementing complex network security concepts and technologies using (but not limited to): 
    • Palo Alto Networks Security Appliances (including Panorama)  
    • Remote Access VPN solutions (e.g., Global Protect)  
    • SDN technology – Cisco ACI, Silver Peak 
    • Guardicore 
    • AWS / Azure Cloud 
    • Splunk  
  • Be able to work closely with 2nd and 3rd level Network Engineers, the Aegon Security Operations Center, as well as other teams in GTS. 
  • Proven experience working with diverse cultures on an International level. 
  • Project and time management skills including the ability to handle multiple priorities simultaneously. 
  • Experience with micro-segmentation concepts leveraging technologies such as Cisco ACI and Palo Alto Next Generation Firewall 
  • Experience building and supporting various Palo Alto solutions such as Global Protect, Wildfire, Expedition, etc.  
  • Experience and deep knowledge of Palo Alto NextGen features and concepts such as UserID, AppID, ContentID, and HIPs.  
  • Subject matter expert of 2-4 technologies supported by the Network Operations Team and be able to cross-train other team members in these technologies.  Examples above. 

Working Conditions

  • Fully remote; in-office possible depending on location. 
  • Non-traditional work hours as needed. 
  • Rotating after-hours On-Call.  Amount per year based on number of Full Time Employees. 
  • Domestic and International travel may be required as necessary. 

**Please note that the compensation information that follows is a good faith estimate for this position only and is provided pursuant to applicable pay transparency and compensation posting laws. It is estimated based on what a successful candidate might be paid in certain Company locations.

Compensation:

The US salary for this position generally ranges between $101,600 - $139,700 annually. This range is an estimate, based on potential employee qualifications and operational needs. Salary may vary above and below the stated amounts, as permitted by applicable law.

Additionally in the US, this position is typically eligible for an Annual Bonus based on the Company Bonus Plan/Individual Performance and is at the Company’s discretion.

What You Receive:

  • A Comprehensive Wealth + Health package. 
  • Wealth Benefits; Competitive Pay, Bonus, and Benefits Package
  • Health and Work/Life Balance Benefits

Our commitment to inclusion & diversity means that we value differences. We encourage the unique perspectives of persons and are dedicated to creating a respectful and inclusive work environment.

#LI-Remote