Principal Network Security Engineer


Work from homeDallas, TX
Depends on Experience
Full Time


NetworkSecurityCheckpointfirewallsPalo AltoMigrationNextGenautomationOSPFBGPVLANSDDOSIPSDNSIPSECFortinetCiscoJuniperISEASAWildfireEncryptionVLANroutingpolicy enforcementIdentity BaseXSOARPanoramaMinemeldThreatPrevention

Job Details

Job Tittle: Principal Network Security Engineer
Duration: Full-time
Location: TX/FL/VA/NJ/NY/MA  (Hybrid 3 days onsite, Rest days remote)

Must Have: Migrating Checkpoint firewalls to Palo Alto Exp.
The impact you will have in this role:

The Principal Platform Engineer is a member of Network Services team for driving modifications, automation and/or process improvement through advising partners and product ownership of NextGen Firewalls, Intrusion Prevention Systems and Network Security Analytics.  You are someone who has solid attention to detail, as well as motivation to collaborate and share their technical knowledge in network security, analytics, telemetry, and security standard methodologies. You will be SME in operations and project delivery, stabilization, and reliability to the organization.  You will be supporting and implementing network security technologies and practices. The Network Security Services team provides security to the production environment – automation, policy optimization, process improvement and product ownership/life-cycle management in the firewall space.
Your Primary Responsibilities:
  • The Principal Network Security Engineer will be responsible for providing third level support in the firewall project and operations arena. 
  • The Principal Engineer has hand-on experience with the ability to provide comprehensive technical consultation to business unit, IT management and staff at the highest technical level on all phases of the project development cycle. Be capable of solving sophisticated Network/Collaboration/Security technology issues and respond if called into a Severity Production outage.
  • Responsible for supporting the implementation of new systems, upgrades, and modification. Will also participate in planning, testing, coordinating, and scheduling. Will ensure that change management and defined security procedures for all assigned systems are executed in accordance with client policies and procedures 
  • Minimizes client service interruptions through early identification and resolution of problems. Analyzes monitoring and maintenance data and implements changes as required to achieve optimum performance. Makes and implement recommendations for resources required to maintain and/or expand service levels. 
  • Extensive interfacing, collaboration, and coordination of efforts with vendors and other departments in the company. 
  • Provide training to 1st Level NOC staff and Level 1-2 Engineers as needed. 
  • Must be flexible and available to provide off-hours support when required and in some cases, be a part of 24/7 on-call rotation.
**NOTE:  The Primary Responsibilities of this role are not limited to the details above. **
  • Minimum of 8 years of related experience in networking or network security on the following technologies: routing protocols (OSPF, BGP), VLANS, High Availability architect, VRF’s, IPSEC, policy enforcement IPS, DNS, Network Segmentation and DDOS.  Private/Public is a plus. 
  • Hands-on experience in migrating Checkpoint firewalls to Palo Alto will minimal interruption and high availability and reliability architect. 
  • Bachelor's degree or equivalent experience
Additional Qualifications:
  • Minimum of 7 years of experience in Palo Alto’s firewall and 5 years of experience in Checkpoint firewalls. Equivalent of vendor certification is accepted provided that other firewall experience has also been contained (ie. Fortinet/Cisco/Juniper)
  • Experience of Palo Alto technologies is a plus: Identity Base, XSOAR, Panorama, Minemeld and Threat Prevention, DNS Security, URL Filtering or Wildfire. 
  • Knowledge of Cisco ISE, ASA Firewalls, Palo Alto and Checkpoint Firewalls
  • Good understanding of 802.1x Protocols and Encryption technologies.
  • Strong VLAN, routing protocols, policy enforcement and security analysis
  • Strong project management and leadership skills

About The Depository Trust & Clearing Corporation