Systems Infrastructure & Network Security Operations Engineer

About The Position

Requirements

• Networking: 6+ years configuring firewalls, switches, VPNs, VLANs, and traffic load balancing. Deep knowledge of L2/L3 protocols (OSPF, BGP, MPLS, VXLAN).
• Systems & Infrastructure Engineering: Architecture governance (TOGAF/ArchiMate). Design documentation, lifecycle management, and change control. Infrastructure-as-Code expertise.
• Automation & DevOps: Proficiency in Python, Ansible, Terraform, Git, Jenkins/GitLab CI. Proven CI/CD for network assets, automated testing, and policy-as-code pipelines.
• Security & Compliance: Vulnerability management, policy-as-code, zero-trust design.
• Tools & Platforms: VMware vSphere, Proxmox, Linux, Windows, F5, InfoBlox. Experience with cloud networking (AWS VPC, Azure VNets).
• Soft Skills: Strong attention to detail and documentation. Excellent stakeholder communication. Proactive, self-directed learning mindset.
• Bachelor’s degree in Computer Science, Information Technology, or related discipline OR equivalent professional experience.

Nice To Haves

• Certifications such as CISSP, CCSP, or equivalent preferred.
• Technical cybersecurity certification (SANS, ISACA, CompTIA, Cisco, etc.) preferred.
• Demonstrated hands-on experience with network automation, IaC, and infrastructure-as-code tools.

Responsibilities

• Zero-Trust System Design Draft, review, and maintain zero-trust SOPs across identity, device, data, and infrastructure. Produce reusable reference models mapped to HP’s enterprise architecture and expressed as policy-as-code.
• Infrastructure-as-Code & Automation Extend Net-Sec-Ops pipelines with IaC (Ansible) for firewalls, switches, SD-WAN, and edge fabric. Deliver automated, version-controlled playbooks with unit, integration, and compliance tests in CI.
• Systems Resilience & Disaster Recovery Architect and automate backup, failover, and DR workflows for all network devices. Conduct recovery drills, validate RTO/RPO against SLA targets, and produce post-mortem runbooks.
• Security & Compliance Orchestration Integrate vulnerability scanners (Nessus, Qualys), threat-intel feeds, and policy-as-code into CI/CD pipelines. Automate remediation playbooks and generate compliance dashboards for SOC/DevSecOps.
• Network Configuration & Lifecycle Management Operate configuration managers to centralize topology, inventory, and device state. Enforce change-control gates, audit drift, and maintain traceability from design to production.
• Cross-Functional Architecture Governance Collaborate with platform, edge, security, and product teams to embed network security into CI/CD and DevOps pipelines. Present architecture reviews and maintain traceability matrices.
• Capacity & Performance Modeling Model traffic and compute link utilization; forecast capacity needs using historical data and predictive analytics. Deliver capacity-planning reports to product, finance, and data-center stakeholders.
• Continuous Process & Tool Improvement Evaluate emerging trends (intent-based networking, programmable data planes, network observability). Propose tool/process changes to reduce manual effort and improve security posture.
• Prototyping & Customer Validation Rapidly spin up proof-of-concept environments to test complex customer requests. Translate business requirements into secure, performant, and automatable designs.

Benefits

• Health insurance
• Dental insurance
• Vision insurance
• Long term/short term disability insurance
• Employee assistance program
• Flexible spending account
• Life insurance
• Generous time off policies, including; 4-12 weeks fully paid parental leave based on tenure
• 11 paid holidays
• Additional flexible paid vacation and sick leave