Sr. Network Security Engineer

About The Position

Requirements

• 5+ years of progressive experience in network security engineering, with hands-on work in firewall management, network segmentation, VPN/ZTNA, and intrusion detection/prevention.
• Demonstrated experience with micro segmentation platforms and ZTNA.
• Strong working knowledge of TCP/IP, DNS, routing/switching, proxy architectures, and cloud networking.
• Familiarity or strong willingness to learn AI/ML concepts, prompt engineering, and agentic automation frameworks.
• Excellent communication skills with the ability to translate complex technical concepts for both technical and executive audiences.
• Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience).

Nice To Haves

• Experience in financial services, banking, or other heavily regulated environments (FFIEC, SOX, PCI-DSS).
• Hands-on experience building or managing AI agents, LLM-based workflows, or security automation pipelines.
• Industry certifications such as CCNP Security, CISSP, or equivalent.

Responsibilities

• Own the day-to-day engineering, configuration, and optimization of ZTNA and microsegmentation across environments.
• Design and implement microsegmentation policies that enforce least-privilege network access across data center, cloud, and hybrid workloads.
• Drive enterprise-wide ZTNA adoption, partnering with infrastructure, application, and DevOps teams to onboard users and services.
• Build and maintain segmentation maps, traffic flow baselines, and policy rule sets aligned to business-critical applications and regulatory boundaries.
• Support and troubleshoot network access issues related to ZTNA policy enforcement, split tunneling, and identity-aware access controls.
• Learn to design, build, and manage AI agents (using platforms such as Kindo.ai, n8n, and Claude/Anthropic APIs) that automate routine network security operations including policy reviews, firewall rule audits, segmentation gap analysis, and anomaly triage.
• Build AI-assisted runbooks that enable autonomous or semi-autonomous handling of common network security events, escalating only when human judgment is required.
• Instrument and monitor AI agent performance, accuracy, and safety using human feedback loops and governance frameworks established by the CISO organization.
• Contribute to the team’s AI Governance practices, including prompt version control, agent testing, and compliance with the Axos AI Governance Management Directive.
• Participate in incident response for network-layer events, providing technical expertise during investigation and containment.
• Document architectures, standard operating procedures, and AI agent configurations to a standard that enables knowledge transfer and auditability.
• Stay current on emerging Zero Trust frameworks, AI/ML developments, and network security threats relevant to a federally regulated financial institution.

Benefits

• Medical, Dental, Vision, and Life Insurance
• Paid Sick Leave, 3 weeks’ Vacation, and Holidays (about 11 a year)
• HSA or FSA account and other voluntary benefits
• 401(k) Retirement Saving Plan with Employer Match Program and 529 Savings Plan
• Employee Mortgage Loan Program and free access to an Axos Bank Account with Self-Directed Trading