Job Summary

As a member of our Engineering Security Operations Team, the Network Security Engineer plays a critical role in protecting our enterprise infrastructure and enabling secure delivery of business services. This position owns and operates core security and traffic-management platforms, leads vulnerability identification and remediation across on-prem and cloud environments, and drives automation and continuous improvement of security operations.

The ideal candidate combines strong hands-on network/security engineering skills with disciplined vulnerability management, clear documentation, and the ability to coordinate effectively across Engineering, IT, and business teams.

Job Requirements

Vulnerability Management (On-Prem & Cloud)

• Operate and maintain vulnerability scanning tools (Rapid7, Wiz) to identify, validate, and prioritize vulnerabilities across networks, servers, endpoints, containers, and cloud resources.
• Triage findings, eliminate false positives, determine exploitability/business impact, and define remediation guidance aligned to risk.
• Identify and drive remediation of weak credentials and insecure authentication patterns across environments (including detection, rotation, and hardening actions).
  

Perimeter, Network, and Traffic Security Operations

• Administer Palo Alto firewalls, including policy management, NAT, threat prevention, logging/monitoring, and rulebase hygiene.
• Manage F5 load balancers, including secure configuration, TLS/cipher posture, certificate lifecycle, and traffic flow changes.
• Collaborate with teams to design and implement secure network segmentation and access controls.
  

IAM / PAM / Least Privilege

• Enhance identity and privileged access controls focusing on least privilege, access governance, and secure workflows.
• Administer PAM and secrets management platforms (CyberArk, Conjur), including onboarding, policy configuration, rotation, and integrations.
• Remediate over-privileged access and implement role-based access patterns.
  

Remediation Coordination & Risk Ownership

• Drive remediation efforts with Engineering, IT, and business owners, ensuring vulnerabilities are addressed within SLAs.
• Provide actionable remediation plans, validate fixes, and document residual risk.
• Participate in architecture and design reviews to prevent recurring issues and improve security-by-design outcomes.Participate in architecture and design reviews to improve security-by-design outcomes.
  

Asset Inventory & Security Standards

• Maintain and improve asset inventories and security standards, ensuring systems are discoverable, owned, classified, and covered by security controls.
• Define and enforce baseline configuration standards for network/security devices and infrastructure components.
  

Rapid Response & Incident Support

• Support rapid response activities for security events, including investigation support, containment recommendations, emergency changes, and post-incident corrective actions.
• Partner with SOC/IR functions and Global Security to enhance detections, logging, and response playbooks.
  

Metrics, Reporting, and Documentation

• Develop and maintain dashboards and metrics for vulnerability posture, remediation performance, firewall/load balancer changes, and control coverage.
• Produce regular reporting for leadership, translating technical findings into business risk and prioritized action.
• Create and maintain clear documentation for security assessments, configurations, procedures, and remediation activities.
  

Tooling, Automation, and Continuous Improvement

• Drive tooling selection, integration, and automation for security activities (scanning, reporting, ticketing, policy validation, compliance evidence, and operational tasks).
• Improve operational efficiency through scripting, infrastructure-as-code patterns, and repeatable processes.
• Stay current with emerging threats, vulnerabilities, and best practices; refine security policies, standards, and procedures.
  

Education & Experience

Typically requires up to 2 years related experience.