Senior Network Security Engineer

Senior Network Security Engineer

Position Summary

We are seeking a highly experienced Senior Network Security Engineer to design,

implement, and maintain secure, scalable, and resilient network architectures across

enterprise and cloud environments. This role is responsible for leading network security

initiatives, enhancing defensive capabilities, ensuring compliance with regulatory

requirements, and mentoring junior engineers.

The ideal candidate combines deep technical expertise with strategic thinking and hands on

execution, particularly in cloud networking, perimeter security, segmentation, and zero trust

architectures.

Key Responsibilities

Network Security Architecture & Engineering

• Design and implement secure network architectures across on-premises, hybrid, and

cloud environments (AWS).

• Lead design and deployment of firewalls, IDS/IPS, VPNs, NAC, segmentation, and

secure remote access solutions.

• Develop and maintain zero-trust and micro-segmentation strategies.
• Architect secure interconnects between data centers, cloud environments, and partner

networks.

Cloud & Hybrid Security

• Secure VPC architectures, transit gateways, peering, routing policies, and network

segmentation.

• Implement and manage cloud-native security controls (Security Groups, NACLs, WAF,

PrivateLink, etc.).

• Support secure multi-account / multi-region architectures.
• Review and harden infrastructure-as-code network deployments.

Monitoring, Detection & Incident Response

• Integrate network security controls with SIEM/SOAR platforms.
• Analyze network traffic for anomalies and threat indicators.
• Support incident response activities related to network breaches or misconfigurations.
• Conduct root cause analysis and implement corrective controls.

Risk, Compliance & Governance

• Ensure network security controls align with frameworks such as NIST 800-53, ISO

27001, SOC 2, and FedRAMP.

• Participate in audits and provide required documentation.
• Develop and maintain network security standards and procedures.

Leadership & Collaboration

• Provide technical leadership and mentorship to junior engineers.
• Collaborate with DevOps, Cloud, Security Operations, and IT teams.
• Lead security design reviews and risk assessments.
• Evaluate and recommend emerging security technologies.

Required Qualifications

• 8+ years of experience in network engineering and security.
• 5+ years specifically focused on network security architecture.
• Strong hands-on experience with enterprise firewall platforms (Palo Alto, Fortinet,

Cisco, Check Point).

• Deep knowledge of TCP/IP, BGP, OSPF, MPLS, VPN (IPSec/SSL), segmentation, ACL

design, and IDS/IPS technologies.

• Experience securing cloud (AWS) environments.
• Experience with routing, NAT, transit gateways, and hybrid connectivity.
• Strong understanding of Zero Trust and defense-in-depth principles.
• Experience with packet analysis tools (Wireshark, tcpdump).
• Scripting or automation skills (Python, golang, Terraform, Ansible, etc.).

Preferred Qualifications

• Experience in regulated environments (federal, telecom, finance, healthcare).
• Experience implementing secure inter-domain routing policies.
• Familiarity with network encryption standards and key management.
• Experience with DDoS mitigation technologies.
• Background in secure SD-WAN deployments.