Skip navigation
Firewall Consultant
Apply Now

Firewall Consultant

Job Snapshot

Employment Type Contractor
Job Type Information Technology, Consultant
Education None
Experience At least 3 year(s)
Manages Others Not Specified
Industry Other Great Industries
Required Travel Negligible
Job ID 11513-1

Job Description

SMARTSOURCE is in need of a Firewall resource for several assignments in the Canton, MI area



Job Type: Project

Duration:4-6 weeks

Location: Canton, MI 48187 50% remote



Our customer is looking for a resource to assist with the designing and implementing the SourceFire Intrusion Prevention Modules (IPS) in an existing ASA Firewall. The SoureFire IPS for the Cisco ASA 55x5 Series provides proactive, full-featured intrusion prevention services to stop malicious traffic, including worms and network viruses. As part of this project, Seller will perform the following tasks:

Review configuration of existing Firewalls:

(1) WatchGuard XTM530 – Admin Building

(1) WatchGuard XTM26 – Dept. of Public Works

(1) SonicWall TZ210 – Performing Arts Theater

General configuration of 3 Cisco ASA 5525 w/SF Modules

Set the hostname, domain name, date and time

Configure Ethernet settings and sub-interfaces

Configure appropriate security level of interfaces

Configure IP routing

Design and configuration of security rule sets relevant to Customer’s business and technical requirements

Configure authentication, authorization, and accounting (AAA) services for network access

Configure inbound and outbound access-lists for permitting or denying network access

Design and configuration of NAT/PAT addressing policies to reflect connectivity requirements

Design and configuration of IPSEC and SSL VPN connectivity requirements

Configure IPSec L2L VPN Tunnels VPN

§ (2) Tunnels on Admin Building ASA Firewall

§ (1) Tunnel on Performing Arts ASA Firewall

§ (1) Tunnel on Public Works ASA Firewall

Configuration of SSL AnyConnect client VPN services

§ Generate CSR for SSL Certificate

§ Install 3rd Party Certificate on new ASA Firewall

§ Install AnyConnect Licenses

§ Configure up to (2) RA Group Policies

§ Integration Authentication to Active Directory

§ Create RA IP Pools for each locations

§ Create Backup Servers for redundancy





§ Create full tunnel or split tunnel policy

Installation and configuration of FireSIGHT Management Center (FMC) for IPS management on customer provided VM

Design and configuration of FirePOWER Intrusion Prevention Services

o Configure management settings using FMC for FIREPOWER management

§ Install license for IPS/AVC, URL, and AMP

o Identify traffic requirements and configure service policy rules to divert traffic to FirePOWER IPS

o Design and configure FirePOWER IPS for relevant use cases:

§ Gain insight into network traffic

o Identify traffic to divert from the Cisco ASA appliance to the IPS/IDS service

§ Configure inspection and protection policy to determine how to inspect traffic and what to do when an intrusion is detected

o Install Network User Agent on Domain Controller or Member Server

o General configuration of the IPS/IDS service

§ Update the sensor to latest signature release or service pack

§ Configure network settings, allowed hosts, time, and users

§ Configure the Virtual Sensor and interface

§ Configure Virtual Sensor in IPS

o Analysis and basic tuning of the IDS service in effort to mitigate false positive events and to effectively position intrusion prevention within the relevant environment

§ Basic configuration of the risk rating system based upon the calculation (i.e. logging, IP logging, dropping, etc.)

§ Configuration and basic tuning of Alerts and Exceptions (i.e. filtering SMTP servers, filtering web servers, etc.)

§ Configuration and basic tuning of the Signature Definitions and turning on/off signatures categories relative to Customer’s network environment

o Configuration of AMP for Network for all interfaces

o Configuration of URL Filtering

§ Up to (3) URL Policies
View More Job Details

SIMILAR JOBS

Data Analyst Bartech Group
Job Description If you are an experienced Data Analyst looking for a positi...
IT Network/ Security Lafontaine – Highland Corridor
Network Administrator Technical Skills Cyber Security experience Websense &...
OpTech is seeking a Senior Desktop Administrator in Ann Arbor, MI. This is ...
Systems Network Administrator (15-00421) Global Technology Associates
Title: Systems Network Administrator (15-00421) Location : Pontiac, MI Base...
Network Administrator Dunham's Sports
Network Administrator/Servor Support is primarily responsible to oversee th...
CareerBuilder Tip:
For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder.com you are agreeing to comply with and be subject to the CareerBuilder.com Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.

Firewall Consultant


Enter notes about this job:

Cancel