Lead Network Security Engineer

Role:
Lead Network Security Engineer

Duration:
12 Months (Contract to Hire)

Location:
Boise, ID (on-site 4 days)

Professional Summary

Seasoned Lead Network Security Engineer with 10+ years of experience designing, implementing, and managing enterprise-scale network security solutions in highly regulated and high-performance environments. Proven expertise in securing global infrastructure, driving zero-trust architecture, and leading security initiatives across complex hybrid (on-prem + cloud) ecosystems. Strong background in semiconductor/manufacturing environments with a focus on scalability, uptime, and risk mitigation.

Key Responsibilities

• Lead the design and implementation of
enterprise network security architecture
across global data centers and cloud platforms (AWS/Azure/GCP).

• Drive
Zero Trust Network Architecture (ZTNA)
initiatives including micro-segmentation and identity-based access controls.

• Manage and optimize
firewalls, IDS/IPS, WAF, VPNs
, and secure remote access solutions.

• Oversee
network threat detection, incident response
, and vulnerability remediation efforts.

• Collaborate with cross-functional teams (IT, DevOps, Cloud, Compliance) to ensure secure infrastructure deployments.

• Lead
security audits, risk assessments
, and compliance initiatives (ISO 27001, NIST, SOC2).

• Architect and enforce
network segmentation strategies
for critical manufacturing and R&D environments.

• Implement
DDoS protection, secure DNS, and email security controls
.

• Mentor and lead a team of network/security engineers; define best practices and SOPs.

• Evaluate and deploy next-gen security tools (SASE, CASB, SD-WAN security integration).

• Ensure high availability and performance of security systems in
24/7 production environments
.

Required Skills & Expertise

Network Security Technologies

• Firewalls: Palo Alto, Cisco ASA/Firepower, Fortinet

• IDS/IPS: Snort, Suricata, Cisco Firepower

• VPN: IPsec, SSL VPN, Zero Trust Access (Zscaler, Prisma Access)

• Web Security: WAF (Akamai, F5, Cloudflare)

Cloud & Modern Security

• AWS Security (Security Groups, NACLs, GuardDuty, Shield)

• Azure Security Center, NSGs

• SASE, CASB, SD-WAN security frameworks

Networking

• Routing & Switching (BGP, OSPF, VLANs, MPLS)

• Network segmentation & micro-segmentation

Security & Compliance

• Zero Trust Architecture

• NIST, ISO 27001, SOC2 frameworks

• Vulnerability Management tools (Qualys, Nessus)

Tools & Automation

• SIEM: Splunk, QRadar

• Scripting: Python, Bash

• Infrastructure as Code: Terraform (nice to have)

Preferred Qualifications

• Experience supporting
semiconductor or manufacturing environments
(highly preferred for Micron context)

• Certifications:

• CISSP

• CCNP/CCIE Security

• CISM or CISA

• Palo Alto / Fortinet certifications

• Experience with
OT (Operational Technology) security
is a plus

Leadership & Soft Skills

• Strong leadership and team management capabilities

• Excellent stakeholder communication (technical & executive level)

• Ability to drive initiatives independently in a fast-paced environment

• Strategic thinker with hands-on execution capability