Network Security Engineer

Network Security Engineer

Job Location- Dallas, TX (Day 1 - Onsite, Candidate needs to work 5 Days at the Client Office)

Job Duties

Provide internal risk advisory and consulting services to lead infrastructure developers

Partner with network admins and Engineering stakeholders to ensure network security designs meet standards

Assist with design reviews, risk assessments and advocate for security design, posture and resiliency improvement.

Perform threat modelling to identify potential weaknesses and design mitigation strategies.

Review and approve configurations for network components such as firewalls, IDS / IPS, VPN gateways, load balancers, WAFs and more.

Develop patterns and certify reference architectures for security best practices and recommend changes where appropriate

Develop, review and update network security policies, diagrams, procedures, standards and guidelines.

Collaborate with audit & compliance where needed

Lead security and vulnerability reviews of legacy, production and affiliated network connectivity.

Architect segmentation to reduce exposure to sensitive data and critical applications.

Adopt cybersecurity framework standards across network and application stacks.

Review vulnerability and penetration test results to identify exposure and improve network security posture

Remain educated about emerging threats and security best practices.

Skills and Experience

Preferably 8-plus years of experience in network systems security architecture or engineering and administration

Proficient with VPNs, network behaviour, WAFs, next-generation firewalls, routers, switches, IAM, ZTNA, IDS / IPS, proxies, DNS, and network access control.

In-depth proficiency with IPv4 / IPv6, QoS, MPLS, BGP, TCP / IP, and the Open Systems Interconnection (OSI) 7-layer model

An understanding of security principles and adeptness with NIST / CIS benchmarks, Cybersecurity Maturity Model Certification and Cybersecurity Framework.

Advanced understanding of applications, databases, web services, authentication and continuous integration / continuous delivery pipelines.

Expertise in designing scalable, resilient, and secure network architectures, including LAN / WAN, Software-Defined Networking (SDN), and cloud networking

Aptitude with one or more scripting languages (Python preferred).

Strong written and oral communication skills across varying levels of the organization.

Ability to stay organized and prioritize and complete tasks within defined SLAs