Network Security Engineer

RESPONSIBILITIES:
Kforce has a client that is seeking a Network Security Engineer in New York, NY. This role is on-site, 5 days/week - Lower Manhattan.

Summary:
We're seeking an experienced Network Security Engineer to join a high-performing Information Security team supporting a complex, global enterprise. This is a hands-on engineering role for someone who enjoys building, operating, and improving security controls across modern infrastructure - from traditional networks to cloud and identity-driven environments. You'll work across network, endpoint, email, identity, data, and cloud security, partnering closely with infrastructure and security teams to design resilient, scalable defenses. This role is well suited for an engineer who combines deep technical fundamentals with curiosity, automation mindset, and a strong sense of ownership.

Key Tasks:
* Design, implement, and operate network security controls including firewalls, VPNs, IDS/IPS, and network segmentation
* Monitor and analyze network traffic to detect threats and anomalous behavior
* Define and maintain security standards, policies, and architectures for enterprise networks
* Manage secure email gateways to protect against phishing, malware, and other email-based attacks
* Implement encryption and authentication controls for email systems
* Deploy and manage endpoint security tooling such as EDR, antivirus, and DLP
* Respond to and remediate endpoint security incidents
* Run vulnerability scanning and assessment programs
* Partner with IT and engineering teams to prioritize remediation based on risk
* Track remediation progress and communicate status clearly
* Implement and maintain security controls across cloud platforms such as AWS and Azure
* Help secure cloud infrastructure, applications, and services in hybrid environments
* Contribute to cloud security best practices and guardrails

REQUIREMENTS:
* 6+ years of experience in network, infrastructure, or security engineering roles
* Experience with next-generation firewalls and Layer 7 traffic inspection
* Experience securing cloud environments and modern infrastructure technologies (virtualization, SaaS, PaaS, containers)
* Hands-on experience with Windows and Linux environments
* Strong understanding of IP networking (TCP/IP, routing, switching, VLANs, DNS, DHCP, NAT)
* Solid knowledge of cryptography concepts (TLS/SSL, VPNs, PKI, encryption)
* Familiarity with modern attack techniques (phishing, ransomware, malware, DDoS, MITM, web attacks) and defensive controls
* Interest and ability to code or script for automation and operational efficiency
* Strong communication skills and ability to work collaboratively in a global team

What Makes This Role Compelling:
* Work on security challenges at enterprise scale in a highly visible environment
* Broad exposure across network, cloud, endpoint, identity, and email security
* Opportunity to influence how security is designed and implemented across the organization
* Collaborative culture that values learning, ownership, and technical excellence
* Stable, in-office team environment with strong peer partnership and knowledge sharing

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.