CenturyLink IT ENGINEER II in St Paul, Minnesota

CenturyLink (NYSE: CTL) at http://www.centurylink.com is a global communications and IT services company focused on connecting its customers to the power of the digital world. CenturyLink offers network and data systems management, big data analytics, managed security services, hosting, cloud, and IT consulting services. The company provides broadband, voice, video, advanced data and managed network services over a robust 265,000-route-mile U.S. fiber network and a 360,000-route-mile international transport network. Visit CenturyLink at http://www.centurylink.com/ for more information.

This position is a supportive role implementing Managed Security Services (MSS) in a Security Operations Center (SOC) environment in a 24x7x365 environment. The SOC function is to provide customers with Network and Security Engineering solutions, constant monitoring, protection, prevention, and detection services as well as reporting and incident analysis based on events collected from multiple sources. This position will be responsible for providing provisioning and technical support associated with the Network-Based Security (NBS) product and associated Fortinet products and services.

Competency Requirements

  • Work typically requires utilization of fundamental principles, methods and concepts within a single engineering discipline. Assignments typically impact steps within a project or process.

  • Ranges from limited and closely supervised contact to routine unsupervised contact with customers and contractors for the purpose of collecting and sharing information.

  • Frequent contact with peers and others within discipline for the purpose of collecting and sharing data. May also act as primary contact for discipline-specific information on projects. Updates supervisor and higher-level engineers on status of assignments.

  • Currently has a responsibility within one or more of the listed security requirements. Regularly provides guidance/assistance in training of less experienced technical employees within their group. Shares technical knowledge with others.

  • Specific direction – detailed guidance relates mostly to specific objectives, critical issues, and all concepts. Follows standard practices and procedures.

  • If not previously approved, candidate must be willing to submit for a T/S clearance. Security and Technical Expertise (Required)

  • Working knowledge of CORE and associated applications (i.e. - LIMS, EFLOW, NTM REMEDY, CONTROL CENTER, etc.)

  • Provisioning experience.

  • Basic understanding of Unified Threat Management (UTM) firewall capabilities.

  • Basic understanding of networking, routing protocols, and IP.

  • Ability to create/modify architectural and technical documents.

  • Good project management skills. The ability to “juggle” multiple activities is required.

  • Good verbal and written communication skills from within the team and with other CTL groups and vendors.Security and Technical Expertise (Desired)

  • UTM firewall - expertise with all aspects of stateful firewall features and functionality (Fortinet and/or Cisco) desired. Expertise desired but not limited to the areas of VPN, address translation, URL filtering, content inspection, content reporting, configuration and change management.

  • DDoS Mitigation - experience in any DDoS mitigation application is desired; Arbor background is a plus.

  • Excellent incident reporting skills are desired; forensics background is a plus. The ability to provide consulting, policy reviews, training, security audits and advisories, will be part of this skill set.

  • Use of any SIEM (Security Incident and Event Manager) application is desired – Splunk experience is a plus.

  • Knowledge of any IPS applications is desired – Sourcefire, SNORT, and /or Fortinet experience is desired. Event analysis via SIEM or vendor application is desired.

Expertise with vulnerability scanning products. Knowledge in Tenable and/or Qualys is desirable. Implementation of both internal and external scanning for premise and network based services, identification of vulnerabilities with recommended actions, and deliverables via multiple options (i.e. – email, pager, web, etc).

Alternate Location: US-Minnesota-St Paul; US-Virginia-Arlington

Requisition # : 140846

This job may require successful completion of an online assessment. A brief description of the assessments can be viewed on our website at http://find.centurylink.jobs/testguides/

EEO Statement

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.


The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.