We are seeking a seasoned Network Security Engineer with over 10 years of hands-on experience designing, implementing, and supporting enterprise network security infrastructure. This role is critical to maintaining the integrity, confidentiality, and availability of our systems through expert-level firewall management, secure remote access, threat detection, and compliance. The ideal candidate has deep expertise in technologies such as Cisco ISE, ASA, Firepower, FortiGate, and Palo Alto, and demonstrates advanced troubleshooting and analytical skills across complex security environments. This individual will also collaborate closely with the Enterprise Security Team to enforce policies and procedures they have defined and scoped for the environment.

Essential Functions

• Design, implement, and manage enterprise firewalls (Cisco ASA, Firepower, FortiGate, Palo Alto).
• Administer remote access solutions including Cisco AnyConnect with posture assessment via Cisco ISE
• Enforce enterprise security standards and access control policies including zero-trust and least-privilege models designed by the Enterprise Security Team
• Configure and maintain secure VPN environments (DMVPN, ADVPN, IPsec site-to-site)
• Support 802.1X authentication deployment, including endpoint troubleshooting and RADIUS workflows
• Collaborate closely with the Enterprise Security Team to support threat detection, investigation, and incident response efforts
• Monitor network activity using SolarWinds, Cisco DNA Center, ThousandEyes, SIEM, and Cisco Umbrella
• Perform advanced packet-level analysis with Wireshark and CLI tools to assist in identifying indicators of compromise
• Lead incident response efforts—including containment, eradication, and recovery—for network-based threats
• Deploy and manage IPS, DLP, DNS-layer protection, and advanced threat detection tools (e.g., DPI, geofencing, RBI)
• Provide detailed documentation on findings, actions taken, and outcomes to support root cause analysis and continuous improvement
• Collaborate with the Enterprise Security Team to ensure enforcement of defined security policies and procedures
• Ensure adherence to regulatory frameworks such as HIPAA, PCI-DSS, and NIST
• Conduct vulnerability assessments, configuration audits, and maintain security documentation
• Oversee access control via ACLs, TACACS+, RADIUS, SSO, and certificate-based authentication
• Collaborate with wireless, mobility and automation teams to secure access points, LTE modems, and IoT endpoints
• Implement robust wireless security protocols (authentication, encryption, segmentation)
• Partner with Field Operations for secure physical deployment and protection of network assets
• Integrate security workflows with automation team and third-party systems (AV, vendor platforms)
• Optimize performance of security tools and minimize operational impact
• Produce dashboards and reports on security KPIs, incidents, and network health for leadership

MINIMUM EDUCATION: Some college credit / in process (see Education Details) 

PREFERRED EDUCATION: Associates Degree (higher degree accepted)

MINIMUM EXPERIENCE:

• 10+ years Experience in network security engineering roles

PREFERRED EXPERIENCE:

• 10+ years Advanced knowledge of firewall platforms: Cisco ASA/Firepower, FortiGate, Palo Alto.
• 5 years Strong experience with Cisco ISE, Secure Access, and posture enforcement

REQUIRED CERTIFICATIONS/LICENSURE:

• Security + Upon Hire Required
• CCNP Security/SISE Within 3 Months Required