Network Security Engineer
Job Overview
We are seeking a highly skilled Network Security Engineer to join our team. The ideal candidate will play a pivotal role in designing, installing, and maintaining secure network infrastructures.
Key Responsibilities
Network Design & Implementation: Plan, coordinate, and install secure network systems to meet organizational needs.
Security & Risk Assessment: Perform in-depth assessments and provide secure networking solutions to mitigate risks.
Firewall & Threat Management: Configure, monitor, and troubleshoot next-generation firewall services, IDS/IPS, and content filtering solutions.
Migration & Optimization: Lead or assist in transitioning legacy security platforms to modern defense-in-depth architectures.
Troubleshooting & Incident Response: Support engineers in remediating critical network security threats.
Documentation & Reporting: Develop comprehensive design documents, operational guidelines, and weekly status reports.
Collaboration & Leadership: Guide and coordinate team activities to ensure efficient troubleshooting and secure network operations.
Required Qualifications
Required Education: Associate degree in an Information Technology (IT)-related field.
Required Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE), Cisco Certified Network Professional (CCNP) (Enterprise or Security).
Experience: 10+ years of technical IT networking and security experience.
Education: Bachelor's degree in an IT-related field.
Preferred Advanced Certifications: Prisma Certified Cloud Security Engineer (PCCSE) (Palo Alto Networks), Cisco Certified Internetwork Expert (CCIE) (Enterprise Infrastructure or Security).
Preferred Qualifications
Technical Skills & Expertise: Firewalls & Security: Palo Alto next-gen firewalls, Intrusion Detection/Prevention, Content Filtering Virtual Private Networks (VPNs), Data Loss Prevention, TLS/SSL Inspection Network Infrastructure: Cisco Systems (routing, switching, wireless), A10 Networks (reverse proxies, load balancing) Network Access Control (Cisco Client, FreeRadius, ACLs) Cloud & Authentication: Multifactor authentication integration (Microsoft), Cloud networking/security Scalable routing protocols (EIGRP, OSPF, BGP), 802.1x authentication Security Analysis & Vulnerability Management: Nessus, NMAP, Wireshark, Opnet, Riverbed Certificate Management, PKI, Micro-segmentation Tools & Management: Panorama, SolarWinds, Windows/Linux/Unix security, centralized monitoring
Soft Skills: Ability to work independently and mentor junior associates. Strong technical documentation and communication skills. Effective presentation and collaborative problem-solving abilities.
Work Arrangement
Work shall be performed in a hybrid setting each week, Monday through Friday, as follows: Two days remote at a suitable off-site location. The client reserves the right to determine that an off-site location is unsuitable (e.g., crowded public space with distracting background noise during meetings). Three days on site in Annapolis, MD 21401. Perform during normal operating hours, Monday through Friday, 8:00 AM to 4:30 PM Eastern Standard Time (EDT). The candidate shall be flexible in extending coverage hours or scheduling to meet deadlines, project requirements, and/or on-call operational support, including evenings, nights, weekends, and holidays.