Primary/Essential Duties and Key Responsibilities:



Review, test, and implement security solutions related to

Email Protection (eg.. Proofpoint, Barracuda, SpamTitan, Mimecast, or Barracuda)

DLP – Must have

Public Cloud (eg.. AWS, Azure, or GCP) – Must have

ZTNA solutions (eg. Zscaler, Axis, Prisma Access) - Strongly encouraged.

DDOS/WAF (eg. Cloudflare, Silverline, Cloud Armor) – Strongly encouraged.

Firewalls/IDS/Network Detection and Response tools – Must have



Assess network security architectures, document findings and recommendations based on industry best practices. 

Solid understanding of network protocols, including TCP/IP, DNS, DHCP, and routing protocols – Must have

Define and review security policies to control access to systems. – Must Have

Experience with firewall administration, VPN configuration, and network intrusion detection/prevention systems – Must Have

Strong knowledge of security best practices and standards (e.g., ISO 27001, NIST)

Relevant certifications such as CISSP, CISA, CISM, or CCNP Security are a plus

Perform implementations and configuration of network security technologies

Apply Zero Trust principals to control network access to resources

Recommend, create, and maintain security configuration baselines to be used to harden systems

Ensure all systems security operations and maintenance activities are properly documented and updated.

Automate manual tasks for improved efficiencies (eg.. infrastructure as code)

Support Enterprise Risk with audits and compliance initiatives

Assist in developing requirements and driving deliverables



Knowledge, Skills and Abilities



Strong knowledge and understanding of both network and application layer firewall concepts

Hands-on experience with Enterprise Class firewalls

Knowledge of security frameworks including NIST, ISO, CIS, OWASP 10, etc

Understanding of SSL/TLS certificates and implementation (Private and public key infrastructure)

Working knowledge with Powershell, Ansible, Terraform, RegEx, Chef or Puppet are preferred – nice to have

Experience with Public Cloud provider infrastructure, system deployments and product release operations a plus

Excellent written and verbal communication skills

Excellent teamwork and collaboration skills

Results oriented, high energy, self-motivated









Required Qualifications:



Minimum five (5) years of experience in a Network Security Engineering role working with Firewalls, DDOS/WAF, IPS and ZTNA

Bachelors or Masters in Information Systems, Information Security, or related fields; preferred but not required

Industry recognized Security certification such as CSSP, CISSP, or Security+, etc