Principal Firewall & VPN Engineer

Verizon•Twinsburg, OH

1d•Hybrid

About The Position

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. Technology Strategy, Global Infrastructure & App Security (TSGI) is looking for an innovative and driven leader with a passion for Cybersecurity and Technology. This Principal Network Security Engineer will support a new organization dedicated to Network & Infrastructure Security, specifically for our Global Technology Services (GTS) Enterprise Network. This role will be responsible for the design, implementation, and maintenance of our site-to-site (Net2Net) VPN infrastructure. This role requires deep technical expertise in Cisco ASA and Cisco Firepower platforms to ensure secure, reliable, and high-performance connectivity between our corporate offices, data centers, and partner networks.

Requirements

Bachelor’s degree or four or more years of work experience.
Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training.
Four or more years of experience in a network security role with a focus on firewalls and VPNs.
Expert-level proficiency with Cisco ASA firewalls, including CLI configuration of IKEv1/IKEv2 IPsec VPNs, NAT, and complex ACLs.
Strong, demonstrable experience with the Cisco Firepower (FTD) platform and Firepower Management Center (FMC), including policy configuration, device management, and troubleshooting.
In-depth understanding of TCP/IP, routing protocols (BGP, OSPF), and network security principles.
Proven ability to troubleshoot complex network and security issues methodically and effectively.
Comprehensive understanding of cybersecurity, network defense, and investigative frameworks (such as NIST 800-53 and CSF 2.0, ISO 27000 series, MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, etc.) into network defense processes

Nice To Haves

Experience with using Checkpoint Smartconsole and Palo Alto Panorama to configure and push firewall policies.
Experience with Tufin FPM for maintaining Firewall rules and policies.
Experience with data analytical tools such as Splunk, Elasticsearch, or Hadoop
Certifications like: Network+, Security+, CISSP

Responsibilities

Architect and deploy secure, scalable site-to-site IPsec VPN tunnels and firewall solutions using Cisco ASA and Cisco Firepower Threat Defense (FTD) platforms.
Drive technology evolution by evaluating new security tools and leading complex migrations, including the deployment of enterprise Firewall Policy Management systems.
Develop and execute long-term strategic goals, ensuring technical initiatives align with business objectives and are communicated effectively to stakeholders.
Serve as the primary escalation point for complex connectivity issues, utilizing advanced packet analysis and diagnostic tools to identify root causes and resolve performance bottlenecks.
Administer and optimize firewall policies, Access Control Lists (ACLs), and NAT rulesets utilizing Cisco Firepower Management Center (FMC) and ASDM.
Ensure network integrity by proactively monitoring VPN status, traffic flows, and security logs to maintain high availability and mitigate vulnerabilities through regular patching and upgrades.
Mentor and upskill the engineering team by hosting focused training sessions and promoting a culture of collaboration, accountability, and continuous improvement.
Champion security best practices by collaborating with Cyber Security stakeholders to identify traffic gaps, mitigate threats, and socialize dependencies.
Lead governance efforts by managing incident Root Cause Analysis (RCA), supporting compliance audits, and maintaining comprehensive documentation and Standard Operating Procedures (SOPs).
Manage cross-functional partnerships, working closely with internal IT teams and external vendors to onboard new connections and support ongoing business requirements.

Benefits

Our benefits are designed to help you move forward in your career, and in areas of your life outside of Verizon.
From health and wellness benefit options including: medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance.
We also offer a matched 401(k) savings plan, up to 8 company paid holidays per year and up to 6 personal days per year, paid parental leave, adoption assistance and tuition assistance, plus other incentives, we’ve got you covered with our award-winning total rewards package.
Depending on the role, employees have the opportunity to receive compensation in the form of premium pay such as overtime, shift differential, holiday pay, allowances, etc.
Newly hired employees receive up to 15 days of vacation per year, which grows with additional service.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume