IT Systems/Network Engineer

    • New York, NY

Lazard is looking for a Fortinet firewall engineer to join its rapidly evolving Global Infrastructure organization. This person will be part of a team of firewall and network engineers that manage and administer Fortinet firewalls in a global organization. These firewalls are located on-prem, in col-locations or within the public cloud.


• Control network access to configured networks using firewall policies

• Apply port forwarding, source NAT, and destination NAT

• Authenticate users using firewall policies

• Understand encryption functions and certificates

• Understanding of inspection policies related to SSL/TLS-secured traffic to prevent

encryption used to bypass security policies

• Configure security profiles to neutralize threats and misuse, including viruses,

torrents, and inappropriate websites

• Apply application control techniques to monitor and control network applications

that might use standard or non-standard protocols and ports

• Fight hacking and denial of service (DoS)

• Configure SSL VPN for secure access to your private network

• Deploy FortiGate devices as an HA cluster for fault tolerance and high


• Deploy implicit and explicit proxy with firewall policies, authentication, and


• Manage firewall policies across multiple FortiGate devices using policy packages

with shared and dynamic objects

Core Competencies and Experience:

• Bachelor's degree (required)

• Minimum NSE4 Certification desired

• Ability to excel in a fast-paced environment

• Understand the key features and capabilities of FortiManager for centralized


• Experience of FortiAnalyzer

• Experience of FortiAuthenticator for centralized authentication

• AWS cloud experience with virtual Fortigate firewalls

• Deep understanding of UTM features (AV/IPS/SSL Inspection/etc)

• Experience in a technical support role in a networking or security function

• Experience with segmentation

• Understanding of WiFi 802.11 networks, 4G LTE experience.

• Understanding of TCP/IP, routing protocols, L2/L3 switches

• Experience with security products firewalls, IPSec, IDS/IPS, WIDS

• Strong troubleshooting and problem-solving skills

Back to top