Lead, Network Security Automation Engineer

About The Position

Requirements

• Bachelor of Computer Science or Engineering or experience in related fields
• Ability to engage with others with minimal guidance and effectively leverage diverse ideas, experiences and perspectives to the benefit of the organization
• Experience with agile development methodologies such as sprints, use of tools like GitHub and Artifactory and the use of DevOps pipelines and code quality testing tools.
• Knowledge of business concepts and information security tools and processes that are needed for making sound decisions in the context of the company's business
• Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges
• Excellent problem solving, communication and collaboration skills
• Advanced experience and/or expertise with several of the following: NIST and ISO 27000 Standards
• Information Security Control Standards and Engineering Specifications
• Identity and Access Management specifically Microsoft Entra ID (Azure AD) group management and Zscaler ZTA onboarding workflows
• Working knowledge of edge infrastructure including firewalls, WAF's, proxy, advanced bot protection services to name a few.
• Experience with Zero Trust concepts and Zero Trust Network Access (ZTNA)
• International team collaboration, cross functional workflow execution
• Vulnerability and Compliance Monitoring processes and tools
• Privileged access request creation, approval and provisioning processes

Nice To Haves

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Cloud security certifications (AWS or Azure)
• GIAC: Cloud Security Essentials Certification (GCLD)
• SC-200: Microsoft Security Operations Analyst
• ServiceNow Certified Application Developer (CAD)

Responsibilities

• Design and automate end-to-end network security workflows, including request intake, risk evaluation, approval, provisioning, and third-party integrations.
• Build governance decision-making metrics, KRIs, and KPIs tied to service execution and request activity, with reporting delivered through ServiceNow or SPLUNK extracts.
• Perform complex risk analysis on service requests using CMDB data, data types, third-party access scenarios, and data sensitivity factors.
• Report on controls such as Policy Decision Point (PDP), Policy Enforcement Point (PEP), and micro-segmentation enforcement effectiveness.
• Design, build, and maintain technical solutions focused on IT Service Management (ITSM) and IT Operations Management (ITOM).
• Automate workflows and engineer telemetry-driven data collection, metrics, scheduled reports, and dashboard views.
• Enhance operational transparency, support governance decision-making, inform future-state workflow design, and modernize comparable processes across legacy, on-premises, and cloud-based environments.
• Assist team members in agile process and ceremonies.
• Dive into the Service Portal to build and customize clean, intuitive user interfaces that improve the network security and controls exception user experience.
• Write, test, and review upgrade-safe, high-performing client-side and server-side JavaScript, Python, Go Lang, power shell and automation from Microsoft Power Automate tools.
• Perform policy editing including Business Rules, Client Scripts, Script Includes, and UI Policies.
• Build and automate complex, end-to-end business processes using Flow Designer and Integration Hub.
• Run and configure automated test suites within the Automated Test Framework (ATF) to ensure new features deploy smoothly without breaking existing functionality.
• Perform database lookups of CMDB elements including sensitive data types, controls, and other applications for the accurate request submission process.
• Work with the network security team to absorb and leverage knowledge of business and security systems/processes to identify operational risks and build antifragile Information Security capabilities and improve service now processes to address service request based risk.

Benefits

• Market competitive base salaries, with a yearly bonus potential at every level.
• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.
• 401(k) plan with company match (up to 4%).
• Company-funded pension plan.
• Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.
• Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
• Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.
• Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.
• Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance.