Network Engineer

Duties

Network Engineers are required to design and possibly manage and monitor network devices (possibly administrators) depending on how the organization breaks the job functions down. Network engineers will design network cabling, determine transmission media to use, determine configuration, and determine the network structure and technologies used. They may manage network cable, firewalls, routers, and switches. Network engineers will work with user support, infrastructure, security, and depot.

Skills Required

Network Engineers must have extensive networking knowledge including technologies, available hardware, and networking protocols. They must have extensive knowledge about network layers, network security, and network layout. They must understand routing and how network traffic flows along with configuring network devices..

Policies Affecting Network Engineers

Must Take Specific action

  • Privacy and Confidentiality Policy - Network Engineers must be sure data stored on servers is adequately protected by being sure confidential data is properly secured on the network using secure encryption methods.
  • Internet Connection Policy - Network Engineers must be sure the network structure and networking services comply with this policy. Firewalls may not be bypassed by any equipment nor can any equipment have a network presense in more than one network zone at a time other than firewalls.
  • Wireless Communication Policy - Network Engineers must be sure any systems they set up or maintain are using approved wireless technologies and are properly configured.
  • Network Documentation Policy - Network Engineers must meet the requirements of this policy when they design network structure or manage network devices or other devices requiring network documentation. These devices include switches, routers, and firewalls but may include other devices.
  • Network and Server Scanning Policy - Network Engineers must be aware of how server scans may impact network traffic and be familiar with network scans against any devices they manage.
  • Perimeter Security Policy - Network Engineers must design the network and systems to comply with this policy. When they manage perimeter security devices they must be sure logs are properly protected and that they comply with device and network traffic flow requirements.
  • Internet DMZ Equipment Policy - Network Engineers must design with equipment that meets the requirements of this policy and be sure configuration and maintenance tasks comply.
  • Router Security Policy - Network Engineers managing routers must be sure router configuration is in compliance with this policy.
  • Telecommunications Communication Policy - Cabling must be in compliance with this policy. Network circuits must be appropriately monitored according to the policy.
  • Virus Protection Policy - Network Engineers must be able to scan network systems for viruses, check to be sure the anti-virus software is up to date, and fix anti-virus problems. Network Engineers shall follow procedures for installing anti-virus programs on equipment as required.
  • Server Documentation Policy - Network Engineers must keep network device information on the server/device list current as changes to network equipment are made. When changes are made to network equipment a means to make affected parties and help desk staff aware of the changes must be utilized.
  • Computer and Printer Naming Policy - Network Engineers must know how to name network devices so they set up according to the policy.
  • IP Address Assignment Policy - Network Engineers must understand how to set up network devices in compliance with this policy and to configure network equipment to support servers and workstations in accordance with this policy.
  • Information Sensitivity Policy - Network Engineers must be aware of this policy and observe to be sure it is not violated when sensitive information is stored on network devices or transmitted between devices or servers.
  • Incident Response Policy - Network Engineers must be familiar with this policy and follow it and associated procedures. They must be able to quickly recognize situations where a computer security incident has occurred or is in progress and notify the security section to begin an investigation while ensuring evidence is preserved. They should be able to help remediate incidents on network and improve security. They should be able to isolate infected machines using networking equipment to contain a security incident.
  • Intrusion Detection Policy - Network Engineers must be able to support intrusion detection equipment and be able to use intrusion detection on network devices where required according to policy and communicate security incidents according to policy and associated procedures. Some engineers may operate network intrusion detection devices and they must follow proper procedures in incident management.
  • Disaster Recovery Policy - Network Engineers must be familiar with disaster the recovery policy and associated processes with knowledge about their role. The network engineer should know how to quickly perform their role when network connectivity is compromised.
  • Extranet Policy - The Network Engineers must support this policy by ensuring that third party connections are properly established using appropriate processes according to the policy. The network engineer must document external connections in compliance with the policy and associated procedures.

Must be Aware

  • Computer Training Policy - Network Engineers should be aware of computer training opportunities and skills that will improve their performance. They should request additional training where appropriate and their supervisor should also recommend training.
  • Risk Assessment Policy - Network Engineers may need to take risk mitigation steps associated with network equipment.
  • Encryption Policy - Network Engineers must be sure certificates on network devices, key management methods, data storage, and data transmission are in compliance with this policy.
  • Physical Security Policy - Network Engineers access will need to comply with this policy and may have entry to server rooms logged.
  • Segregation of Duties Policy - Network Engineers must follow this policy.
  • Change Management Policy - Changes to network devices must comply with this policy.
  • Auditing Policy - Network Engineers must be aware of what items auditors check and how it affects their job.
  • Technology and System Management Policy - Network engineers must implement capacity planning for network devices and network cabling.
  • Preventative Maintenance Policy - Network Engineers must follow preventative maintenance processes and use approved tools. Network Engineers need to be aware of preventative maintenance contracts and what systems are covered.
  • Technology Planning Policy - Network Engineers must be aware of the current technology plan.
  • Configuration Management Policy - Network Engineers must be sure changes to systems are logged and follow the associated procedures. Network Engineers should know where to go to determine whether changes have recently been made to systems.
  • Emergency Access Policy - Network Engineers must be aware of this policy, what their roles are during emergencies, and what access may need to be granted either to them or others.
  • Service Monitoring Policy - Network Engineers must understand the their provided services and server services are monitored and how it can affect their job.
  • Quality Policy - Network Engineers must be aware of the quality policy and may be able to help to improve the quality process by suggesting improvements.

Affects Job but Awareness not Required