Network Security Engineer (Deployment experience is MUST)

Overview

Full Time

Skills

Network Security
Squid
Load Balancing
Network Protocols
TCP/IP
Border Gateway Protocol
Dragon NaturallySpeaking
DNS
SSL
TLS
Optimization
NAT
Virtual Private Network
Public Relations
Palo Alto
Cisco PIX
ASA
Fortinet
F5
Citrix
Management
Proxies
Servers
Blue Coat
Inspection
DPI
Wireshark
Tcpdump
SIEM
Splunk
IBM QRadar
LogRhythm
Real-time
Incident Management
Cloud Computing
Network
Security Architecture
Firewall
Auditing
Risk Assessment
Regulatory Compliance
PCI DSS
HIPAA

Job Details

  • 10+ years of hands-on experience in perimeter/network security engineering or a similar role.
  • Strong experience with at least two of the following firewall platforms:
    • Palo Alto Networks (PanOS)
    • Cisco ASA / Firepower Threat Defense (FTD)
    • Fortinet FortiGate
  • Proficiency in proxy technologies (e.g., Zscaler, Blue Coat, Squid).
  • Working knowledge of load balancing technologies (e.g., F5 BIG-IP, Citrix ADC).
  • Expertise in network protocols (TCP/IP, BGP, DNS, SSL/TLS) and packet capture analysis.
  • Experience integrating security events into SIEM systems (Splunk, QRadar, etc.).
  • Familiarity with cloud-based security and SASE frameworks (e.g., Zscaler, Netskope, Prisma Access).
  • Solid understanding of firewall rulebase optimization, NAT, VPNs, and threat prevention mechanisms.

#LI-PR1

  • Design, implement, and manage enterprise perimeter security solutions including firewalls, proxies, and load balancers.
  • Configure, deploy, and troubleshoot next-generation firewalls (NGFWs) from Palo Alto Networks, Cisco ASA/FTD, and Fortinet (FortiGate).
  • Design secure network architectures involving layer 4-7 load balancers (e.g., F5, Citrix ADC).
  • Manage and optimize proxy servers and secure web gateways (e.g., Blue Coat, Zscaler, or equivalent).
  • Perform packet capture and deep packet inspection (DPI) using tools such as Wireshark, tcpdump, or TShark for incident investigation and traffic analysis.
  • Integrate firewall logs and alerts into SIEM platforms (e.g., Splunk, QRadar, LogRhythm) to support real-time monitoring, correlation, and incident response.
  • Implement and maintain SASE solutions, integrating cloud-delivered security with network connectivity.
  • Document configurations, playbooks, and operational procedures; contribute to security architecture standards.
  • Participate in firewall rule audits, risk assessments, and vulnerability mitigation activities.
  • Stay updated on the latest threats, vulnerabilities, and compliance requirements (PCI-DSS, HIPAA, NIST, etc.).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.