Network Security Specialist Information Security Engineering

Overview

Responsibilities

• Lead, mentor, and guide cybersecurity and network security teams.
• Design and maintain secure network architectures across on-premise, cloud, and hybrid environments.
• Manage and configure network security appliances and infrastructure across datacenters.
• Review and approve new technologies from a security perspective.
• Implement segmentation and isolation strategies to reduce lateral movement risks.
• Identify and remediate vulnerabilities across enterprise systems.
• Develop and maintain incident response plans and playbooks.
• Manage DLP, browser isolation, and other web security solutions.
• Define and enforce cybersecurity policies, standards, and procedures.
• Administer and optimize Cisco ISE, SIEM, IDS/IPS, NDR, and related systems.
• Collaborate across IT and operations teams on secure implementations and incident escalations.
• Research emerging threats and technologies to continually strengthen enterprise defenses.

Qualifications

• Master's Degree and with 3 years of relevant experience IT or Information security or
• Bachelor's Degree and with 5 years of relevant experience IT or Information security or
• Associate's Degree and with 6 years of relevant experience IT or Information security or
• High School Diploma/GED and with 8 years of relevant experience IT or Information security.

• Master's Degree Cybersecurity, Computer Engineering, Computer Science, Information Systems Security, Information Technology and 3 years in Information security or Network Security in a lead or senior technical role and experience in CIRT, SOC, or Incident Management and hands-on experience with SIEM, IDS/IPS, NDR, and firewall technologies. Someone with knowledge of network architecture, microsegmentation, and vulnerability remediation. Familiarity with cloud security and OT systems (SCADA, PLC) preferred.
• Bachelor's Degree Cybersecurity, Computer Engineering, Computer Science, Information Systems Security, Information Technology and 5 years in Information security or Network Security in a lead or senior technical role and experience in CIRT, SOC, or Incident Management and hands-on experience with SIEM, IDS/IPS, NDR, and firewall technologies. Someone with knowledge of network architecture, microsegmentation, and vulnerability remediation. Familiarity with cloud security and OT systems (SCADA, PLC) preferred.

• Designing and implementing secure network architectures, required.
• Expertise with VLANs, NAT, subnetting, routing, and firewall management, required.
• Handson experience deploying and maintaining physical and virtual network devices in data centers, required.
• Hands-on work with IDS/IPS, next-generation firewalls, NDR systems, and SIEM tools (Splunk),required.
• Experience developing and executing incident response procedures, required.
• Cloud networking and hybrid environment security experience, required.
• Collaborating across IT, operations, and engineering teams to ensure secure architectures, required.
• Strong background in SSL/TLS certificate lifecycle management, decryption, and inspection, required.
• Practical experience managing proxies, packet brokers, and traffic aggregation networks (SPAN/TAP), required.
• Hands-on experience implementing and supporting UTM platforms and deep URL inspection technologies, required.
• Experience with hybrid infrastructures including data centers, cloud, and remote access environments, required.
• Experience with Conducting forensic analysis and incident response using PCAP and log data, required.
• 3+ years in cybersecurity or network architecture roles, required.
• Experience with network segmentation, zero-trust architecture, and visibility platforms, preferred.
• Familiarity with OT systems (SCADA, PLCs) and industrial protocols (DNP3, Modbus), preferred.
• Advanced implementations of web DLP, browser isolation, and browser security, preferred.
• Experience leading enterprise-scale security transformation projects, preferred.
• Proficiency with Zeek, Suricata, SNORT, YARA, and STIX/TAXII, preferred.
• Experience with proxy, SASE, Cisco ISE, and SSL/TLS inspection, preferred.
• Strong background in technology evaluation and risk assessments, preferred.
• Managing technical cybersecurity and network security teams, preferred.
• Managing vulnerability remediation and control verification, preferred.

• Effective leadership skills
• Demonstrated problem solving skills
• Strong written and verbal communication skills
• Effective conflict management skills
• Proactively approaches responsibilities

• Driver's License Required
• Other: CISSP, CCNP Security, GSEC, GCIH, CEH, or equivalent certifications. Preferred

• Ability to push, pull, and lift up to 25 pounds
• Sit or stand to use a keyboard, mouse, and computer for the duration of the workday

• The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.
• The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.