Sr Manager - Firewall & VPN Engineering

About The Position

Requirements

• Bachelor’s degree or four or more years of work experience.
• Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training.
• Four or more years of people management experience.
• Four or more years of experience in a network security role with a focus on firewalls and VPNs.

Nice To Haves

• Expert-level proficiency with Cisco ASA firewalls, including CLI configuration of IKEv1/IKEv2 IPsec VPNs, NAT, and complex ACLs.
• Experience with using Checkpoint Smartconsole and Palo Alto Panorama to configure and push firewall policies.
• Strong, demonstrable experience with the Cisco Firepower (FTD) platform and Firepower Management Center (FMC), including policy configuration, device management, and troubleshooting.
• In-depth understanding of TCP/IP, routing protocols (BGP, OSPF), and network security principles.
• Experience with Tufin FPM for maintaining Firewall rules and policies.
• Proven ability to troubleshoot complex network and security issues methodically and effectively.
• Experience with data analytical tools such as Splunk, Elasticsearch, or Hadoop.
• Comprehensive understanding of cybersecurity, network defense, and investigative frameworks (such as NIST 800-53 and CSF 2.0, ISO 27000 series, MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, etc.) into network defense processes.
• Certifications like: Network+, Security+, CISSP.

Responsibilities

• Lead and develop a high-performing team by fostering a culture of collaboration, accountability, and continuous skill development through focused training.
• Execute strategic goals by defining long-term and short-term objectives, ensuring cross-functional alignment with wider organizational missions.
• Manage team performance through regular reviews, clear goal setting, and talent retention strategies.
• Drive executive communication, producing and presenting operational read-outs, metrics, and project statuses to senior leadership.
• Design and deploy scalable site-to-site (Net2Net) VPN infrastructure and firewall solutions using Cisco ASA and Cisco Firepower (FTD) platforms.
• Oversee firewall administration, managing policies, Access Control Lists (ACLs), and NAT rulesets via Cisco Firepower Management Center (FMC) and ASDM.
• Support technology migrations, including the architecture of secure IPsec VPN tunnels and the deployment of new Firewall Policy Management tools.
• Act as the primary escalation point for complex connectivity and performance issues, utilizing packet captures and diagnostic tools to identify root causes.
• Ensure operational excellence by monitoring VPN tunnel status, traffic flow, and security events to maintain network integrity and availability.
• Manage infrastructure lifecycles, performing regular maintenance, software upgrades, and patching to mitigate vulnerabilities and ensure optimal performance.
• Collaborate with Cyber Security stakeholders to identify dependencies, socialize gaps in traffic processes, and implement threat mitigation strategies.
• Serve as Subject Matter Expert (SME) for internal and external audit reviews, producing necessary artifacts and executive summaries.
• Maintain comprehensive documentation, including network diagrams and Standard Operating Procedures (SOPs), to support compliance and knowledge sharing.

Benefits

• health and wellness benefit options including: medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance
• matched 401(k) savings plan
• up to 8 company paid holidays per year and up to 6 personal days per year
• paid parental leave
• adoption assistance and tuition assistance
• incentive based position with the potential to earn more
• Newly hired employees receive up to 15 days of vacation per year, which grows with additional service.