Lead Network Security Engineer

Glocomms is partnered with a leading quantitative research and technology firm to identify a Lead Network Security Engineer for their Dallas-based infrastructure hub. This hybrid role (approximately three days per week onsite) offers the opportunity to drive hyperscale network security infrastructure in a cutting-edge environment where intellectual data and secure architecture are paramount.

The Lead Network Security Engineer will serve as a technical leader within the firm's global infrastructure team, responsible for designing, implementing, and maintaining advanced security solutions across trusted, untrusted, and DMZ environments. This senior engineering role combines hands-on expertise with strategic oversight, guiding architecture decisions and mentoring junior and mid-level engineers.

Key Responsibilities:

• Architect and implement scalable network security solutions aligned with Zero Trust principles and secure cloud networking across AWS and Azure.
• Lead incident response efforts, root cause analysis, and remediation planning for critical security incidents.
• Develop and maintain automation playbooks and tooling using Python, Terraform, Ansible, Jenkins, and Git.
• Drive firewall automation and policy management using platforms such as Algosec and Tufin.
• Conduct vulnerability assessments, penetration testing, and threat modeling to continuously refine the firm's security posture.
• Collaborate with infrastructure, DevOps, and application teams to embed security best practices into lifecycle management and infrastructure builds.
• Own segmentation strategies, system hardening, and compliance enforcement across hybrid and multi-cloud environments.
• Interface with MSSPs and SOC capabilities to ensure robust monitoring and escalation protocols.
• Evaluate and integrate security technologies from vendors including Palo Alto, Fortinet, Check Point, and F5.

Required Skills & Experience:

• Proven leadership experience in a senior network or security engineering role.
• Deep understanding of network protocols (TCP, UDP), OSI model, routing, switching, load balancing, VPNs, proxies, MACsec, IPsec, HTTPS, DNS, NTP, AAA, and domain-based authentication/authorization.
• Strong background in automation and scripting (Python, Terraform, Ansible).
• Experience with secure architecture in hybrid cloud and multi-cloud environments.
• Familiarity with VxLAN EVPN DC architecture and M&A technical integrations.
• Hands-on experience with firewall technologies and automation platforms.
• Excellent troubleshooting skills and ability to drive escalation and corrective actions.
• Certifications such as CISSP, CCIE Security, GIAC (GSEC, GCIH, GXPN) are highly desirable.

Candidates must be located in (or willing to relocate to) a commutable distance to Dallas, TX, and comfortable coming onsite approximately 3 days per week. CVs must include full name and contact information in order to be considered.

Unfortunately visa sponsorship is, not available for this role.