Network Security Engineer

About The Position

Requirements

• Extensive experience in network engineering and security engineering, along with proven architectural experience in trusted, untrusted and DMZ environments
• Proven leadership experience in a senior or lead engineering role, with the ability to drive the team and work individually
• Strong understanding of network protocols and the OSI model, with hands-on experience in TCP/UDP-based applications, routing, switching and load balancing
• Extensive knowledge of network security technologies, including firewalls, VPNs, proxies, MACsec, IPsec, HTTPS, certificate chains, DNS, NTP, AAA, and domain-based authentication and authorisation
• Expertise with multiple security vendors, such as, Palo Alto, Fortinet, Check Point and F5
• Strong understanding of Zero Trust principles, segmentation, and secure cloud networking in AWS or Azure
• Familiarity with scripting and automation using Python, Ansible, or Terraform for example
• Certifications such as CISSP, CCIE Security, GIAC (GSEC/GCIH/GXPN), Palo Alto, Fortinet or equivalent highly preferred
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

Nice To Haves

• Core network with VxLAN EVPN DC architecture experience
• Experience with hybrid or multi-cloud environments
• Prior involvement in M&A technical integrations
• Background in building SOC capabilities or working with MSSPs
• Excellent written and verbal communication skills
• Firewall automation experience is beneficial

Responsibilities

• Mentoring junior and mid-level engineers, overseeing team activities and providing guidance in complex troubleshooting and architecture decisions
• Implementing and managing advanced security solutions using firewalls, proxy, system hardening, treat profile and segmentation strategies to secure the intellectual data
• Acting as a lead escalation for critical security incidents
• Developing automation playbooks, network security policies framework and consolidation, treat model and drive root cause analysis with corrective actions
• Overseeing network vulnerability assessments, penetration testing coordination and remediation planning
• Championing the integration of automated tools for infrastructure build, day two support and lifecycle management of all security infrastructure using platforms like Python, Terraform, and vendor APIs, leveraging tools such as Algosec, Tufin, Jenkins and Git
• Working closely with infrastructure, DevOps and application teams to embed security best practices throughout the technology stack

Benefits

• Company-Paid Lunch Stipend: Lunch is provided via GrubHub
• Company-Paid Benefits: 100% Employer-Paid Medical in our High Deductible Health Plan, Dental and Vision benefits for employees and their families, 16 weeks of Paid Parental Leave, Employee Assistance Program, Life insurance, Short-Term Disability and Long-Term Disability
• 401(k): Company will match 100% of your contributions up to 6%
• Optional Employee-Paid Benefits: Medical insurance in our PPO plan and a variety of other benefits such as Health Savings Accounts (with Company Contribution!), Flexible Spending Accounts, Supplemental Life Insurance, Wellhub and more.
• Time Off: 25 days of Paid Time Off plus 12 company holidays