What Jobs are available for Security Protocols in the United States?

Director of Infrastructure Security Architecture page is loadedDirector of Infrastructure Security Architecture Apply locations Chicago - 20 S. Wacker New York - 300 Vesey Street time type Full time posted on Posted Today job requisition id 32953

The Global Information Security department is seeking a visionary and results-driven Principal Security Architect to lead the strategic evolution of our security architecture. This is an individual contributor role on a team of expert security architects. This role is for a hands-on leader who can translate business needs into robust, scalable, and resilient security solutions that protect CME Group's critical infrastructure and market integrity. You will be a key driver in shaping our security posture, collaborating with teams across the enterprise to embed security by design.

What You'll Get

• A supportive environment fostering career progression, continuous learning, and an inclusive culture.

• Broad exposure to CME's diverse products, asset classes, and cross-functional teams.

• A competitive salary and comprehensive benefits package. Learn more about our career opportunities here .

What You'll Do

• Conduct deep-dive security assessments for critical business and technology initiatives, ensuring alignment with our security standards and pioneering new ones.

• Embed secure design principles directly into our product and infrastructure lifecycles, acting as a trusted consultant to development and engineering teams.

• Drive the exploration and integration of cutting-edge security technologies, elevating the maturity and effectiveness of our security capabilities.

• Develop, evangelize, and maintain a suite of modern security policies, standards, and reference architectures that serve as the blueprint for secure innovation.

• Shape the security landscap e of our cloud and container environments by defining and governing security requirements for platforms like GCP, AWS, and Kubernetes.

• Forge strong partnerships with stakeholders across Information Governance and Enterprise Risk Management to build a unified vision for security at CME Group.

• Actively contribute to key governance forums, including the Architecture Review Board and Change Advisory Board, to steer technology decisions from a security-first perspective.

• Lead remediation efforts for assessment, audit, and regulatory findings, fortifying our defenses against future risks.

• Oversee and optimize security architecture governance processes, streamlining exception requests and change management activities.

What You'll Bring

• A decade or more of hands-on experience in information security, with a proven track record in analysis, design, and service development.

• 5+ years of experience as a security architect in a large-scale, publicly traded, or financial/technology enterprise, demonstrating expertise in complex, mission-critical environments.

• Deep subject matter expertise in a broad range of information security and infrastructure technologies.

• Proven experience in developing and implementing security standards, reference architectures, policies, and procedural guidelines.

• Extensive knowledge of security practices for cloud platforms (GCP or AWS) and container orchestration technologies like Kubernetes.

• Exceptional communication skills with the ability to articulate complex security concepts to both technical and executive audiences.

• In-depth familiarity with industry-standard security and regulatory frameworks such as CIS, NIST, and RegSCI.

• A strong grasp of architectural frameworks like Zachman or TOGAF and experience with Agile/SAFe methodologies is highly desirable.

• Relevant industry certifications (e.g., CISSP, CISA, GIAC, PMP) are a plus.

#LI-JK1

#Hybrid

CME Group is committed to offering a competitive total rewards package for our employees that recognizes their contributions to the business and reflects our long-term investment in their future. The pay ranges for this role based on location are: Chicago: $164,000-$73,400 New York/New Jersey: 171,800- 286,400. Actual salary offered will be dependent on a wide array of factors including but not limited to: relevant experience, skills, education and comparison to internal employees (where relevant). Our compensation program also includes an annual target bonus opportunity for all employees, as well as the opportunity to become an owner in the company through our broad-based equity program. Through our benefits program, we strive to offer flexibility, value and choice. From comprehensive health coverage, to a retirement package that includes both a 401(k) and an active pension plan, to highly competitive education reimbursement provisions, paid time off and a mental health benefit, CME Group offers a holistic benefits package for our team and their dependents.

CME Group: Where Futures are Made

CME Group is the world’s leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career by shaping tomorrow. We invest in your success and you own it – all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we’re looking for more.

At CME Group, we embrace our employees' unique experiences and skills to ensure that everyone’s perspectives are acknowledged and valued. As an equal-opportunity employer, we consider all potential employees without regard to any protected characteristic.

Important Notice: Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Learn more here .

#J-18808-Ljbffr

Overview

Armison Tech is a minority owned small business, established in 2012, located in the Northern Virginia area. We're a company predominantly focused on cyber security for our government customers yet our expertise in other areas include big data analytics, instructional design, information management, and computer network infrastructure. We invest in our employees careers by participating in cutting edge cyber security training and attending industry leading conferences. As a small business we offer flexibility and powerful benefits supporting our most important assets, our employees and their families.

Role

Network Security Engineer
Location: Herndon, VA (on-site client environment)

Clearance

Clearance: TS/SCI with polygraph

Compensation

Compensation: Competitive, Excellent Benefits

Responsibilities

• You will manage network security assessments, security compliance, change management, and cloud migrations across five cloud services providers (AWS, Google Cloud, Oracle Cloud, Microsoft Azure, and IBM Cloud). This work is a healthy mix of technical and policy knowledge. This requires support and understanding, and implementing international standards, and will support mission-critical infrastructure for our customer.

Required Qualifications

• Must maintain an active/current TS/SCI with polygraph clearance.
• Demonstrated experience with designing, developing, deploying and maintaining complex, multi-segmented secure network infrastructures, virtual and physical.
• Experience facilitating TEMs with cloud service providers, to review cloud service architectures.
• Experience maintaining assessment and authorization (A&A) packages across multiple services or systems in accordance with FIPS-199, NIST 800-53, and CNSS 1253 requirements.
• Experience designing, implementing, assessing, or reviewing systems that utilize cloud technology with Amazon Web Services (AWS), Oracle Cloud, Google Cloud, IBM Cloud, or Microsoft Azure cloud architecture.
• Demonstrated experience utilizing and reviewing cross domain technology and common architecture designs.
• Familiarity with continuous monitoring requirements, including scan analysis for critical or high findings with common scan tools such as Rapid 7, Nessus, or Qualys.
• Experience creating, monitoring, or closing system or service Plans Actions and Milestone items (POA&Ms).
• Demonstrated experience utilizing compliance tools to track assessment and authorization activities such as Xacta 360, Risk vision, and RSA Archer.

Additional Information

The duties and responsibilities listed in this job description generally cover the nature and level of work being performed by individuals assigned to this position. This is not intended to be a complete list of all duties, responsibilities, and skills required. Subject to the terms of an applicable collective bargaining agreement, the company management reserves the right to modify, add, or remove duties and to assign other duties as may be necessary.

Armison Tech is an equal opportunity employer. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law.

#J-18808-Ljbffr

Accredited courses from leading Australian universities, TAFEs and colleges

How to Become a Network Security Engineer in Australia: careers in IT Definition of a Network Security Engineer

The role of a Network Security Engineer is pivotal in today’s digital landscape, where safeguarding sensitive information is paramount. These professionals are responsible for designing, implementing, and maintaining secure network infrastructures that protect organisations from cyber threats. They play a crucial role in ensuring the integrity, confidentiality, and availability of data, making them indispensable in various sectors, including finance, healthcare, and government.

Network Security Engineers are tasked with a variety of responsibilities that include monitoring network traffic for suspicious activity, conducting vulnerability assessments, and implementing security measures such as firewalls and intrusion detection systems. They work closely with other IT professionals to develop security policies and procedures, ensuring that all systems are compliant with industry standards and regulations. Their expertise not only helps in preventing data breaches but also in responding effectively to incidents when they occur.

Common tasks for a Network Security Engineer involve configuring and managing security tools, analysing security logs, and conducting regular security audits. They also engage in continuous learning to stay updated on the latest security threats and technologies, which is essential in a field that evolves rapidly. By collaborating with cross-functional teams, they ensure that security is integrated into all aspects of the organisation’s operations, fostering a culture of security awareness among employees.

Overall, a career as a Network Security Engineer is both challenging and rewarding. It offers opportunities for professional growth and the chance to make a significant impact on an organisation’s security posture. With the increasing reliance on technology and the growing sophistication of cyber threats, the demand for skilled Network Security Engineers is expected to continue rising, making it a promising career choice for those passionate about technology and security.

What does a Network Security Engineer do?

• Monitor Network Security – Continuously oversee network traffic for suspicious activity and potential threats.
• Implement Security Protocols – Develop and enforce security policies and procedures to protect sensitive data.
• Conduct Vulnerability Assessments – Regularly assess systems and networks for vulnerabilities and recommend improvements.
• Respond to Security Incidents – Investigate and respond to security breaches, ensuring timely resolution and reporting.
• Configure Firewalls and Security Devices – Set up and manage firewalls, intrusion detection systems, and other security tools.
• Perform Security Audits – Conduct audits to ensure compliance with security standards and regulations.
• Collaborate with IT Teams – Work closely with other IT professionals to integrate security measures into existing systems.
• Provide Security Training – Educate staff on security best practices and the importance of maintaining a secure environment.
• Stay Updated on Threats – Keep abreast of the latest security trends, threats, and technologies to enhance security measures.
• Document Security Procedures – Maintain detailed documentation of security protocols, incidents, and responses for future reference.

What skills do I need to be a Network Security Engineer?

A career as a Network Security Engineer requires a robust set of skills that blend technical expertise with analytical thinking. Professionals in this field must possess a deep understanding of network protocols, firewalls, and intrusion detection systems, as well as proficiency in security technologies such as VPNs and encryption methods. Additionally, familiarity with operating systems and network architecture is essential, enabling engineers to design and implement secure network solutions effectively. Strong problem-solving abilities are crucial, as they often need to troubleshoot complex security issues and respond to potential threats swiftly.

Moreover, effective communication skills are vital for a Network Security Engineer, as they must collaborate with various stakeholders, including IT teams and management, to ensure that security policies are understood and adhered to. Continuous learning is also a key aspect of this role, given the ever-evolving nature of cyber threats and security technologies. Therefore, a commitment to professional development through certifications and training in cybersecurity is highly beneficial for those aspiring to excel in this dynamic field.

Skills/attributes

• Strong understanding of network protocols and architectures
• Proficiency in firewall and intrusion detection/prevention systems
• Knowledge of security standards and frameworks (e.g., ISO 27001, NIST)
• Experience with network security tools and technologies
• Ability to conduct risk assessments and vulnerability assessments
• Strong problem-solving and analytical skills
• Excellent communication and teamwork abilities
• Attention to detail and a proactive approach to security
• Familiarity with incident response and disaster recovery planning
• Continuous learning mindset to keep up with evolving security threats

Does this sound like you?

Career Snapshot for a Network Security Engineer

The role of a Network Security Engineer is pivotal in ensuring the smooth operation of technology systems across various industries. These professionals are responsible for troubleshooting, diagnosing, and resolving complex system issues, as well as providing technical guidance and training.

• Average Age: 38 years
• Gender Distribution: 18% female
• Hours Worked: 40 hours per week (92% work full-time)
• Employment: Approximately 9,700 people are employed in this role
• Projected Growth: Annual employment growth data is not specified
• Unemployment Rate: Not explicitly stated

As the reliance on technology continues to grow, the demand for Network Security Engineers is expected to remain strong, making it a promising career choice for those interested in the field.

#J-18808-Ljbffr

Sr. Network Security Engineer page is loadedSr. Network Security Engineer Apply locations United States of America, Georgia, Atlanta time type Full time posted on Posted 3 Days Ago job requisition id REQ-

JAS is an international, non-asset-based supply chain services and solutions company. Our services include air and ocean freight forwarding, contract logistics, customs brokerage, distribution, inbound logistics, truckload brokerage and other supply chain management services, including consulting, the coordination of purchase orders and customized management services.

Primary responsibility to help implement, maintain, and support the JAS Worldwide network infrastructure. Other responsibilities are to support the global Help Desk and regional Network Administrators as a second level support standpoint. The Network Engineer position requires hands-on knowledge of operating systems and server technologies, LAN networking and devices, WAN technology with remote office connectivity, Security related devices and technology. Provides feedback, suggestions, troubleshooting, and guidance to system administrators. Documents, tracks, and monitors any related problems to ensure a near 100% network uptime. This individual will coordinate all efforts with various team members of the JAS Forwarding Worldwide Information Technology Department.Essential Duties and Responsibilities:

• Work with the JAS global network providers to build and enhance the JAS Worldwide Network.
• Build, configure, audit, and revise security policies on firewalls and SASE
• Increase global security posture through segmentation, creating and documenting processes, leveraging centralized management solutions, and standardizing configuration
• Communicate and audit the JAS Worldwide Network policies and procedures to remote offices.
• Ensure global switching and routing consistency and troubleshoot where necessary.
• Configure, manage and administer routers, firewalls, switches and other IP based communication equipment.
• Configure failover and disaster recovery plans and ensure full documentation is in place.
• Ensure full network logging and monitoring systems are in place and documented

• Tracks and logs all activity both incidents and resolutions to system users. Coordinates with the other JAS Forwarding Worldwide Information Technology team members to build a knowledge base for the benefit of JAS Forwarding computer system users. Logs and documents all calls received and handled within the JAS IT Help Desk Support Center. Responsible for properly completing all information necessary within the IT operational methodology as required by the Global Manager of Network Services.
• Assist in performing necessary steps for testing new business application software releases and corrective codes on Desktop computers, and servers supplied by the JAS Forwarding Worldwide Development team and JAS approved vendors.
• Maintains up-to-date expertise in the operation and application for the standard microcomputer software and a working knowledge of a wide variety of commonly used hardware and software. Maintains a working knowledge of software applications necessary in the support of JAS Forwarding Worldwide business.
• Provide individual and group instruction, as needed, on the use of equipment and software, and on network features.
• Assist with preparing and providing necessary project information to support the JAS Worldwide IT strategy.
• Provide regular updates to the Global Network Manager on assigned projects.
• Work with cross function organization teams to ensure the coordination of resources for technology projects and that all services have needed information regarding the implementation of technology.
• Maintain effective communication with all areas within JAS Forwarding.
• Perform special projects assigned by the Global Network Manager.
• Adhere to all published organizational, safety policies and procedures as described in the JAS Forwarding employee handbook.

Supervisory Responsibilities: This job has no supervisory responsibilities. Qualifications: Certificates, Licenses, Registrations: The candidate will possess current certification in either Cisco, Palo Alto and/or MS Azure via an accredited education institution and/or any of the widely known professional associations in their respective field. Education and/or Experience: Bachelor’s degree (B.A) in Business Administration, Computer Science from four-year college or university; or three to five years previous experience; or equivalent combination of education and experience. Language Skills: Ability to read and interpret documents such as safety rules, operating and maintenance instructions, and procedure manuals. Ability to write routine reports and correspondence. Ability to speak effectively before groups of customers or employees of the organization. Mathematical Skills: Ability to add, subtracts, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent and to draw and interpret bar graphs. Other Skills: Excellent coordination skills with demonstrated results. Advanced knowledge of telecommunications and data networks. Excellent verbal and written communication skills including demonstrated ability to interact and communicate with all levels of an organization. Excellent team participation skills. Demonstrated ability to coordinate multiple and varied projects. Excellent technology skills, including the use project management, database management, presentation and word processing software. General understanding of Freight Forwarding and Logistics Industry, and the role of technology in supporting organizational effectiveness. Understanding of current computer and Internet technology. SDWAN or SASE experience is a plus.

Physical Demands:

Ability to multi-task and adapt to changing needs of the team while remaining calm and organized. Physical requirements include sight, hearing, sitting for more than four hours a day and other physical requirements required to perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Work Environment:

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This position may require up to 20% travel including international travel. The JAS Forwarding Information Technology department is a twenty-four (24) hour per day, seven (7) day per week, three hundred sixty-five (365) per year operation. This position will be required to participate in a schedule that will require evening, weekend and holiday working hours and/or on-call response.

Additional:

The responsibilities associated with this job will change from time to time in accordance with the Company’s business needs. More specifically, the incumbent may be required to perform additional and/or different responsibilities from those set forth above. The above declarations are not intended to be an all-inclusive list of the duties and responsibilities of the job described, nor are they intended to be such a listing of the skills and abilities required to do the job. Rather, they are intended only to describe the general nature of the job.

JAS Forwarding (USA), Inc. is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, ethnicity, disability, religion, national origin, gender, gender identity, gender expression, marital status, sexual orientation, age, protected veteran status, or any other characteristic protected by law.
Where required by state law and/or city ordinance; this employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization.

NOTICE TO APPLICANTS
JAS USA IS A CUSTOMS BROKER, GOVERNED BY FEDERAL REGULATION. FEDERAL REGULATIONS PROVIDE THAT JAS MAY HAVE IT BROKERAGE LICENSE SUSPENDED OR REVOKED IF IT “KNOWINGLY EMPLOYED, OR CONTINUES TO EMPLOY, ANY PERSON WHO HAS BEEN CONVICTED OF A FELONY, WITHOUT WRITTEN APPROVAL OF THAT EMPLOYMENT FROM THE ASSISTANT COMMISSIONER.” JAS WILL PERFORM A BACKGROUND CHECK TO DETERMINE IF YOU HAVE BEEN CONVICTED OF A FELONY AND IF SO, ABSENT SPECIAL CIRCUMSTANCES, YOU WILL NOT BE HIRED OR WILL BE TERMINATED IMMEDIATELY.

#J-18808-Ljbffr

We are looking for a **Director, Security Architecture & Engineering, Security Architect** to help us enable and mature our **EverCommerce Security Team and program**. **This role also serves as our primary Security Architect in guiding how EverCommerce designs, builds, deploys, integrates, and optimizes security solutions and processes.**We're looking for a strong team leader that is invested in helping their stakeholders and co-workers succeed. They will have well-developed communication skills and can demonstrate proven technical ability, refined relationship management skills, and problem-solving skills. We are seeking an individual with a diverse background and that includes aptitude across several technologies, and skill sets. This role will require close coordination with other information security leaders and teams, security stakeholders and with internal and external software development teams.* Create and maintain security architecture and engineering processes and procedures* Design of system architectures which meet established cybersecurity requirements and align with customer needs* This includes security requirements definition, documentation, and communication.* Development of security architecture requirements and implementation guidance based on analysis of NIST 800-53 and or other security control frameworks* Architect, design, implement, maintain, and operates information system security controls and countermeasures.* Provides techniques and patterns for securing integration with external security system vendors and/or cloud providers* Leads regular architecture and design reviews to ensure requirements implementation* Evaluates and plays an active role in life-cycle management of multiple security technologies* Identify security risks and control gaps within systems, designs, products, data flows, and processes; and recommend corrective architecture, integrations, controls, and operations* Lead the development of security requirements, architectures, and documentation to ensure security controls are seamlessly integrated into new technology deployments* Perform secure architecture and design reviews of new technology and security systems deployments, and collaborate with business teams to integrate secure-by-design principles into engineering projects and builds* Maintain a clear view of the overall security architecture roadmap and strategic plan* Leverage emerging technologies and advanced security practices to ensure EverCommerce is at the forefront of security for our solution groups and our customers* Build, maintain and mature security architecture metrics and reporting* Recruit, hire, train, coach and mentor security engineers and analysts* Additional duties as required and assigned* At least 10 years of relevant work experience in a technical field (e.g. cybersecurity, software development, or systems administration), with at least 10 years people leadership experience, and at least 5 years people leadership experience specifically in security* Bachelor's Degree in a technical discipline such as Cyber Security, Information Technology, Computer Science, or Information Systems - or equivalent professional experience* Have at least one current Industry recognized security certifications; CISSP, CISM, CISA, GIAC or commensurate experience* Excellent communication and interpersonal leadership skills, with the ability to communicate and collaborate effectively with cross-functional teams, matrixed organizations, and technical / and non-technical stakeholders* Detail Oriented team player with the desire and ability to mentor and onboard new engineers and team members* Demonstrated experience with the security, development and/or management of systems compliant to NIST 800-53, NIST CSF, or ISO security control frameworks* Exceptional knowledge and understanding on the creation/implementation and securing of cloud technologies such AWS and Azure* Extensive ability to estimate, plan, lead and execute complex technical projects while working independently and/or in a team.* Knowledge of Information Security risk assessment methodologies and standards* Highly flexible, self-motivated and eager to learn, with a strong passion for cyber security* Excellent verbal and written English communication skillsSuccessful candidates will have prior experience leading security engineering and architecture, showing exceptional people leadership and development skills, and will have broad understanding and expert level experience in several of the following security technologies, security domains and sub-domains:* Advanced knowledge regarding common attacks, attack methods, and defense architectures.* Experience in securing multi-tenant compute services, microservices and modern APIs* Working knowledge of common web and container-based vulnerabilities* Experience with Information Security policies and procedure development and implementation* Experience developing technical documentation, including reports, proposals, statements of work, and whitepapers**Benefits and Perks:*** Continued investment in your professional development* Day 1 access to a robust health and wellness benefits package, including an annual wellness stipend.* 401k with up to a 4% match and immediate vesting* Flexible and generous (FTO) time-off* Employee Stock Purchase Program **Compensation:** The target base compensation for this position is $200,000 to $225,000 USD per year plus annual bonus opportunity in most US locations. Final offer amounts are determined by multiple factors including location, local market variances, and candidate experience and expertise, and may vary from the amounts listed above.EverCommerce is bringing together best-of-breed commerce solutions in the service sector, forming one service commerce platform that improves go-to-market strategy for technology companies and simplifies the software-buying process for business owners. Our team has extensive expertise in business operations, management, legal, finance, accounting, technology human resources, marketing and sales that, via the EverCommerce platform, we provide as a service to drive continued growth and success for service commerce companies. Our ecosystem enables companies to thrive in an environment of shared knowledge and resources with significant cost saving.
#J-18808-Ljbffr

Job Description

Job Description

Network Security Engineer      
DALLAS, TX 
LONG TERM    
 

Are you a Network Security Engineer with a passion for designing, securing, and optimizing enterprise-level network infrastructures? We are looking for a results-driven professional who thrives in high-stakes environments, tackling complex security challenges while ensuring seamless network performance. 

If you have a strong background in network architecture, security compliance, and performance optimization , we invite you to join our team and make an impact! 
 

Key Responsibilities:  
 

Network Architecture & Optimization – Design, configure, and optimize network infrastructure, including routers, switches, firewalls, and VPNs. 

Security & Compliance – Implement robust security policies, risk mitigation strategies, and access controls to safeguard critical data. 

Monitoring & Threat Detection – Leverage advanced tools for real-time network monitoring, anomaly detection, and security incident response. 

Incident Response & Troubleshooting – Analyze security threats, diagnose network issues, and deploy timely solutions to maintain business continuity. 

Disaster Recovery & Redundancy Planning – Develop and maintain backup, recovery, and failover strategies to ensure high availability. 

Collaboration & Documentation – Work cross-functionally with IT teams to enforce security best practices and document network configurations. 

Qualifications & Experience:  

Experience: Minimum 7+ years in network security engineering , covering: 

Network design, architecture, and security enforcement. 

Advanced routing, switching, and firewall configuration. 

Hands-on experience with IDS/IPS, VPNs, SD-WAN, and cloud security controls. 

Deep knowledge of network security monitoring and threat intelligence tools. 

Technical Skills:  

Strong expertise in TCP/IP, VPNs, VLANs, BGP, OSPF, EIGRP, and MPLS . 

Proficiency in securing LAN/WAN environments, firewalls (Palo Alto, Cisco, Fortinet), and cloud-based security . 

Familiarity with SIEM, intrusion detection/prevention systems, and vulnerability management . 

Scripting experience (Python, PowerShell, or Bash) is a plus. 

Certifications (Preferred but not mandatory):  

CCNA, CCNP, CCIE, CISSP, MCSE, MCSA, or equivalent . 

If you’re ready to elevate network security standards and drive innovation , we’d love to hear from you! 

Job Description

Job Description

Must have an Active TS/SCI with CI Poly

MOSTLY REMOTE  position willing to work in SCIF only 1 day per week in Washington, DC area and reports to the VP of Security.

This is a very senior position that will be managing a few engineers while doing hands-on work. Experience with Optical Fiber is required. Some domestic travel will be required.

What You’ll Do

• Deploy, configure, and support routers, switches, firewalls, and VPNs in both data center and field environments.
• Install, terminate, and test single-mode and multi-mode fiber, handling end-to-end troubleshooting when issues arise.
• Act as a primary technical point of contact for customers, vendors, and internal teams during deployments and escalations.
• Develop and maintain clear, reusable documentation such as network diagrams, Methods of Procedure (MoPs), and runbooks.
• Assess potential risks during deployment and ensure compliance with government and security standards.
• Partner with cross-functional teams to embed security best practices into network architecture and deployments.
• Travel within the U.S. as needed to support site surveys, installations, and cutovers.
• Lead advanced troubleshooting efforts for network security issues, ensuring rapid service restoration and prevention of recurring incidents.
• Define, execute, and refine repeatable lab and field test procedures to standardize deployment practices and acceptance criteria.
• Coordinate closely with vendors, customer stakeholders, and internal teams to deliver on scope, schedule, and quality commitments.
• Share expertise through peer knowledge

Job Description

Job Description

Job Title: Network Security Engineer
Location: Hybrid - Arlington, Virginia
End Client: FDIC
Type: Contract To Hire
Compensation: $70/HR - only W-2
Contractor Work Model: Hybrid
Public Trust

Responsibilities:
The Network Security Engineer role requires extensive Palo Alto Panorama, Firewalls, and Global Protect experience, along with extensive networking experience. Palo Alto Prisma Access and Zero Trust Network Access knowledge and experience are highly desired. A Network Security Engineer is responsible for providing architectural, technical, and problem resolution support for a Federal Agency network and security infrastructure that promotes a secure and scalable environment that aligns with the security requirements of our customer.

A Network Security Engineer also focuses on both the short-term and the long-term strategy, recommends technology solutions and improvements to the network and security-related environments and is also responsible for delivering clear, concise, timely communications that promote confidence in our team’s ability to deliver operational excellence. They also perform Tier III “Build and Run” activities across multiple network and security environments, and review and recommend configuration changes, as needed.

The day-to-day responsibilities include the design, implementation, operations, troubleshooting, and resolution activities across multiple domains. They may be required to participate in system upgrades, deployments, and enhancements while focusing on delivery objectives, critical issues, and policy adherence. All Network Security Team members periodically work after hours to support system outages and critical infrastructure upgrades.

Experience:

• 10+ years of relevant technical Network/Security Engineering experience (required)
• Certifications: 1 or more - CCNP, CCDP, CCSP, CISSP, OSCP, PCNSE, PCNSA, ITIL

Required Skills:

• Extensive experience with Palo Alto Firewalls (ex: 3200 and 5200/5400/5600 series)
• Extensive experience with Palo Alto Panorama 9.x and above
• Extensive experience with Palo Alto Global Protect
• Extensive experience with Palo Alto Firewall Threat Protection, URL filtering, and other similar security features
• Extensive experience with decryption/TLS/Security Profiles/PKI and deep understanding of PCAPS
• Extensive experience with application-based traffic and designing solutions for Firewalling (Internal/Perimeter/External)
• Experience with Palo Alto Prisma Access-based Infrastructure, supporting multiple Data Centers and numerous offices

System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.

System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.

Job Description

Job Description

Job Title: Network Security Engineer
W2 Contract
100% Remote

Job Summary:
The Network Security Engineer is responsible for managing and troubleshooting enterprise firewall and VPN infrastructure. This role involves ensuring system security, identifying vulnerabilities, and maintaining high availability configurations in a large data center environment.

Responsibilities:
• Troubleshoot firewall and VPN incidents, identify root causes, and develop resolutions
• Review vulnerabilities, compliance risks, and fault analysis on perimeter devices
• Develop and implement remediation plans for security incidents and vulnerabilities
• Manage firewalls, including cluster and High Availability setups, with Fortinet and Cisco products
• Configure and administer VPNs using Cisco AnyConnect and Cisco FTD 7.4 supporting up to 30,000 users
• Participate in on-call rotations and handle change windows, including nights and weekends
• Support security projects and contribute to risk mitigation efforts

Core Skills (Must-Haves):
• Cisco firewalls running FTD 7.4
• Fortinet tools: FortiManager, FortiAnalyzer, Firepower Management Console, FortiAuthenticator
• Large enterprise data center environment experience with Fortinet firewalls (clusters and HA)
• VPN configuration and administration using Cisco AnyConnect and Cisco firewalls
• Ability to work independently (Self-Starter)
• Experience supporting up to 30,000 VPN users
• Proven troubleshooting skills in security incident management
• Experience with Fortinet and Cisco VPN technologies

Bonus Skills (Nice-to-Haves):
• Experience with Entuity troubleshooting tools
• Familiarity with Splunk and LiveNX
• Project management and self-motivation skills

Certifications: Fortinet or Cisco Firepower certifications (preferred)

Education: Bachelor’s degree required

#INDGEN

#ZR