Role: Senior Network Security Engineer
Location: San Jose, CA (Onsite/Hybrid)
Duration: Long-Term Contract
Role Overview
We are seeking a highly experienced Senior Network Security Engineer to lead the architecture, deployment, and ongoing optimization of a global, enterprise-grade network security infrastructure. This role is central to building and maintaining a zero-trust security model, leveraging best-in-class technologies including Palo Alto Networks, Aruba ClearPass, Avi Load Balancers, Edgecore switching, and Infoblox DDI.
You will combine deep hands-on engineering expertise with strategic security policy governance, ensuring scalability, resiliency, and compliance across a complex multi-vendor environment.
Key Responsibilities
Network Security & Defense
- Architect, deploy, and manage Palo Alto Networks Next-Generation Firewalls (NGFW)
- Implement and maintain GlobalProtect VPN for secure remote access
- Configure Threat Prevention, App-ID, and URL filtering policies
- Manage Panorama for centralized firewall policy orchestration
Identity & Access Control
- Lead implementation and operations of Aruba ClearPass NAC
- Design 802.1X authentication strategies and device profiling
- Integrate ClearPass with Aruba Wireless and wired Edgecore switching infrastructure
Application Delivery & Load Balancing
- Design and support Avi Networks (NSX Advanced Load Balancer) solutions
- Ensure high availability, scalability, and Global Server Load Balancing (GSLB)
- Implement integrated WAF and application security controls
Core Network Infrastructure
- Manage enterprise routing and switching (BGP, OSPF, EVPN-VXLAN)
- Support Edgecore open networking hardware environments
- Administer Infoblox for DNS, DHCP, and IP Address Management (DDI)
Security Policy & Compliance
- Utilize FireMon for firewall policy lifecycle management and optimization
- Conduct risk analysis, rule cleanup, and compliance reporting (PCI-DSS, NIST)
- Automate and govern security policy changes across environments
Operations & ITSM
- Manage incidents, changes, and service requests via ServiceNow
- Ensure adherence to ITIL processes and audit readiness
- Participate in on-call escalation for critical network outages
Leadership & Mentorship
- Serve as Tier 3 escalation point for complex network/security issues
- Mentor junior engineers and promote best practices across teams
Required Skills & Experience
Core Networking & Security
- 10+ years in Network Security Engineering
- 3+ years in a Senior/Lead engineering role
- Strong expertise in Palo Alto Networks (Panorama, GlobalProtect, WildFire)
- Deep knowledge of BGP, OSPF, EVPN-VXLAN
Access & Identity
- Aruba ClearPass Policy Manager expertise
- Strong understanding of 802.1X authentication frameworks
Load Balancing & App Delivery
- Experience with Avi Networks / NSX Advanced Load Balancer or equivalent
Infrastructure & DDI
- Hands-on experience with Edgecore or OCP-based switching platforms
- Strong Infoblox experience (DNS, DHCP, IPAM, DNS security)
Tools & Governance
- FireMon for firewall policy management and compliance automation
- ServiceNow ITSM for incident and change management
Preferred Certifications
- PCNSE (Palo Alto Networks Certified Network Security Engineer)
- ACCP (Aruba Certified ClearPass Professional)
- CCNP Security / Enterprise
- FireMon Certification (Core / Policy Manager)
Education
- Bachelor’s degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
Never miss an opportunity! Create an alert based on the job you applied for.
