network security engineer

We are looking for a skilled professional to oversee the deployment and management of our network security infrastructure. In this role, you will be responsible for enforcing security policies, resolving incidents in partnership with the Security Operations Center, and acting as a senior escalation point for our operations team. The primary focus will be on managing firewalls within AWS and Azure cloud platforms, physical data centers, and advancing our remote access capabilities.

• Handle daily operational duties, such as managing firewall change requests and responding to security incidents.




• Architect and deploy secure remote access solutions, including IPSec and SSL VPN technologies.




• Continuously assess and improve our network security posture by integrating emerging security technologies.




• Act as a security subject matter expert, providing guidance on infrastructure projects to ensure alignment with security best practices and compliance mandates.

• Champion forward-thinking global security programs and consistently evaluate the effectiveness of existing security controls.




• Contribute to the continuous improvement of operational security protocols and ensure adherence to all information security policies.

• A minimum of five years of direct experience in network security engineering, administration, or architecture.




• Demonstrated proficiency in automating routine firewall operations using APIs and scripting languages like Python to enhance operational efficiency.




• Hands-on experience with compliance and assessment tools for firewalls, such as Tufin or FireMon.




• Expertise in analyzing and interpreting network packet captures and trace files for advanced troubleshooting.




• In-depth understanding of network security principles, including intrusion detection, authentication, encryption, and core protocols like TCP/IP, HTTP, DNS, SMTP, and SNMP.




• Extensive, practical experience deploying and managing both physical and virtual Palo Alto firewalls.




• Familiarity with network segmentation strategies using technologies like Guardicore.




• Expert-level knowledge of micro-segmentation principles and their implementation with tools like Palo Alto Next-Generation Firewalls and Cisco ACI.




• Deep familiarity with the Palo Alto Networks ecosystem, including building and supporting solutions such as Global Protect, Wildfire, and Expedition, as well as features like AppID, UserID, ContentID, and HIPs.




• Proven expertise in two to four core network technologies with the ability to mentor and cross-train other team members.




• Prior experience implementing complex network security solutions is essential, and certifications such as PCNSA/PCNSE, GCSA/GCSE, or AWS/Azure Cloud certifications are highly valued.




• Experience with SDN technology like Cisco ACI or Silver Peak and remote access solutions like Prisma Access is strongly preferred.