Senior Network Security Engineer - NAC

Senior Network Security Engineer

About the Role We are seeking a Senior Network Security Engineer to help lead the transformation and modernization of large-scale enterprise network security infrastructure within a highly complex global environment. This role is responsible for designing, implementing, and operating advanced network security controls that protect critical systems, users, and enterprise services against evolving cyber threats.

This position operates within a modern product-centric engineering model focused on infrastructure resiliency, automation, operational excellence, and secure connectivity at scale. The ideal candidate brings strong hands-on expertise across enterprise network security, automation, zero trust architecture, and production operations within large, mission-critical environments.

The engineer will collaborate closely with infrastructure, cloud, operations, and cybersecurity teams to deliver scalable, secure, and highly available network security solutions supporting enterprise connectivity worldwide. Key Responsibilities

• Design, implement, and manage enterprise network security solutions including:
• Firewalls
• IDS/IPS platforms
• Proxy technologies
• Remote access solutions
• Network Access Control (NAC)
• Network segmentation
• Support large-scale production network security environments with focus on:
• Stability
• Security
• Operational resiliency
• Scalability
• Performance optimization
• Enforce network security standards, policies, and baseline configurations across enterprise environments
• Lead and support automation initiatives utilizing:
• Infrastructure as Code (IaC)
• CI/CD pipelines
• Configuration management
• DevSecOps methodologies
• Develop automation solutions using tools such as:
• Python
• Ansible
• Terraform
• Partner with infrastructure, cloud, security, and operations teams to design and deploy integrated security solutions
• Execute complex production changes within structured change management and governance frameworks
• Support incident response, production troubleshooting, and root cause analysis for critical network security events
• Maintain operational documentation, runbooks, standards, diagrams, and compliance reporting
• Assist with monitoring, alerting, operational metrics, and continuous service improvement initiatives
• Participate in architecture discussions focused on zero trust, secure access, segmentation, and enterprise security modernization

Required Qualifications

• Bachelor's degree in Computer Science, Information Security, or related discipline
• 8+ years of experience in network security engineering, architecture, or production operations roles
• Strong hands-on experience supporting enterprise-scale security infrastructure in complex environments
• Experience managing and troubleshooting:
• Firewalls
• IDS/IPS
• Secure remote access
• Proxy technologies
• NAC solutions
• Segmentation platforms
• Experience with automation, CI/CD pipelines, and Infrastructure as Code (IaC)
• Strong understanding of:
• Risk management
• Incident response
• Security governance
• Regulatory and compliance frameworks
• Deep expertise with:
• Firewall technologies
• IDS/IPS platforms
• Secure segmentation
• Proxy solutions
• Remote access technologies
• Zero trust network architecture
• Hands-on experience with:
• Python
• Ansible
• Terraform
• CI/CD pipelines
• Configuration management frameworks
• Strong understanding of:
• Zero trust principles
• Secure enterprise network design
• Cloud-connected security models
• Enterprise compliance frameworks such as:
• ISO 27001
• PCI DSS
• Experience supporting critical production environments
• Strong troubleshooting and root cause analysis capabilities
• Experience responding to high-severity incidents and enterprise escalations
• Communication & Leadership
• Strong written and verbal communication skills
• Ability to collaborate effectively across engineering, operations, infrastructure, cloud, and security teams
• Ability to lead initiatives and execute effectively within fast-paced enterprise environments

Preferred Qualifications

• CISSP, CCNP Security, AWS Security, Azure Security, or equivalent certifications
• Experience with SIEM and observability platforms
• Exposure to vulnerability management programs
• Experience operating within highly regulated enterprise environments
• Knowledge of enterprise monitoring and telemetry platforms
• Experience with large-scale global infrastructure environments