Network Security Engineer

Network Security Engineer

Requirements

• 7+ years of hands-on technical experience engineering Network Security tools
• Experience with Web Application Firewalls, Network Segmentation, Microsegmentation, Secure Web Gateways, Zero Trust Network Access, Cloud Network Security
• Experience working in a Product Owner capacity with prior tools
• Hands-on experience with public cloud providers (AWS preferred) and cloud infrastructure management
• Experience with infrastructure-as-code frameworks (e.g., Terraform Cloud)
• Ability to write automation scripts and web services (Python, Bash)
• Strong understanding of network protocols and information security best practices
• Experience working with git source control and CI/CD systems (GitLab CI/CD)
• Good understanding of enterprise architecture, including endpoint, network, and cloud-based systems
• Experience with SIEM (Splunk) technologies, event correlations, query management, and custom detections
• B.S. in Information Technology, Computer Science, or a similar technical program
• Excellent communication skills, with the ability to explain technical concepts to non-technical stakeholders and collaborate effectively with cross-functional teams
• Strong analytical, problem-solving, and excellent documentation and organization skills
• Ability to self-organize, prioritize activities independently, and manage uncertainty effectively
• Experience managing stakeholder expectations in the delivery of projects
• Adaptability and continuous learning: proactive approach to self-education and flexibility to pivot strategies in response to new information or changing environments
• Attention to detail: able to thoroughly review configurations and policies, identifying gaps in solution designs prior to implementation.

Responsibilities

• The candidate will be responsible for the engineering of vendor solutions at Blackstone, including Firewalls, ZTNA (Zero Trust Network Access), SWGs (Secure Web Gateways), Network Segmentation, Access Control, and Cloud Network Security (NACLs, NSGs, etc)
• Provide engineering and security expertise for network security tools and process including policy design, implementation, and governance
• Provide technical product ownership of tools, setting and managing product roadmaps
• Improve support procedures, standardize, and document rigid processes
• Leverage infrastructure-as-code frameworks (e.g., Terraform) to provision and maintain tool configurations and infrastructure
• Analyze network traffic flow using SIEM platforms (e.g., Splunk) to optimize performance, rules, and ensure efficient network operations
• Implement traditional segmentation policies (firewalling/ACLs) and Zero Trust Network policies, including micro-segmentation
• Work closely with network architecture teams to evaluate the readiness of new features and functionalities.

Preferred Qualifications

• Preferred experience (or similar vendors) with: Zscaler, Cloudflare, Palo Alto, Fortinet, Cloudgenix, Tufin, Algosec