Security Engineer

The role will be responsible for designing, implementing, and troubleshooting security appliances and security controls to support the integration of acquired companies into the corporate network. The position involves deploying new perimeter and internal firewalls, building standard controls, and implementing approved exceptions to meet business needs. You will work closely with the network team to integrate acquisition sites and assist the infosec team in assessing current security posture/controls and determining changes required to meet organizational security standards. Responsibilities include managing hardware, software, security policy sets, threat protections, EDR, DLP, overall security posture, and collaborating with IT teams to support integration and business continuity.

Key Responsibilities

• Design and Implementation: Deploy new security appliances, complete all configuration work, ensure proper logging, and confirm all events are auditable. Conduct site-by-site assessments, create bills of material for required firewalls, and coordinate purchasing.

• Configuration and Maintenance: Update and patch firewall operating systems, register new firewalls, integrate them with central management, deploy rule sets and controls, and confirm restrictions, logging, and auditability. Understand custom requirements from acquired companies, obtain approvals, and create needed policies.

• Assessment, Performance Monitoring & Troubleshooting: Assess current security posture, run and review internal/external scan reports, manage data scanning and vulnerability remediation, troubleshoot security issues, perform data analysis, and evaluate firewall performance. Collaborate with the network team on performance issues.

• Documentation & Compliance: Maintain detailed documentation, diagrams, and configuration logs, ensuring all deployed equipment and policies comply with security standards and best practices.

• Collaboration & Support: Provide technical support, liaise with vendors, and collaborate with IT teams (networking, systems, applications) on various projects.

• Capacity Planning: Perform capacity management and planning for scalable security infrastructure.

• Security Integration Strategy & Roadmapping: Develop Day 1 30 60 90+ security integration roadmaps for acquired entities, including phased security uplifts, firewall migrations, and endpoint remediation. Align integration with long-term enterprise architecture and identify/mitigate security priorities.

• Automation: Automate recurring tasks such as scanning, reporting, and vulnerability analysis.

Required Qualifications

• Education: Bachelor s degree in Computer Science, Information Technology, Network Engineering, or a related field.

• Experience: 5+ years of hands-on security/administration experience.

• Certifications (Preferred):

  • Cisco: CCNA, CCNP (Security)

  • Check Point: CCSA

  • Palo Alto: PCNSA, PCNSE, PCCET

  • General: CompTIA Security+

Technical Skills

• Strong understanding of network concepts and administration

• Deep knowledge of security appliances, software tools, discovery/assessment tools, and security threats

• Hands-on experience with enterprise-grade equipment (Cisco, Check Point, Palo Alto)

• Proficiency with security monitoring and diagnostic tools

• Knowledge of cloud networking and virtualization technologies