Network Security Engineer

The Network Security Engineer will play a critical role in protecting enterprise and cloud-based environments that support complex financial systems. This individual will design, implement, and maintain secure network architectures while contributing to broader infrastructure and security initiatives across the organization. The role requires deep technical expertise, strong problem-solving skills, and the ability to collaborate effectively within a global, deadline-driven environment.

Key Responsibilities

• Design, implement, and manage network and infrastructure security controls, including firewalls, VPNs, IDS/IPS, NAC, and network segmentation.
• Monitor and analyze network traffic to identify security threats, vulnerabilities, and anomalous behavior.
• Develop, implement, and maintain network security policies, procedures, and standards aligned with defense‑in‑depth and Zero Trust principles.
• Support enterprise email security capabilities, including secure email gateways, phishing and malware protection, encryption, and security assessments.
• Manage endpoint security solutions such as antivirus, antimalware, EDR, DLP, and endpoint compliance and patching.
• Lead vulnerability management activities, including scanning, assessment, risk-based prioritization, remediation tracking, and reporting.
• Secure cloud environments across AWS, Microsoft Azure, and Google Cloud, covering infrastructure, applications, and cloud services (SaaS, PaaS).
• Partner with engineering and operations teams to secure virtualization, containers, and cloud-native workloads.
• Apply cryptographic technologies and protocols, including SSL/TLS, PKI, IPSec, disk encryption, and HSMs.
• Contribute to incident response efforts involving ransomware, phishing, malware, DoS/DDoS, and other advanced attack vectors.
• Perform or support penetration testing, sandboxing, and continuous improvement of security defenses through automation and scripting.
• Provide business‑friendly and technically accurate communication to stakeholders across the organization.

Technical Environment

• Enterprise LAN/WAN networks, TCP/IP, routing and switching, VLANs, NAT, DNS, and DHCP
• Layer 7 / next‑generation firewalls from market‑leading vendors, SSL/TLS inspection, and traffic decryption policies
• Application delivery technologies including load balancing, HTTP protocols, sessions, caching, and CDNs
• Windows, Linux, and Active Directory environments

Qualifications

• 6+ years of experience in network and infrastructure security within complex enterprise environments
• Strong networking background with hands‑on experience securing large‑scale, hybrid and cloud-based systems
• Experience supporting financial systems or highly regulated environments
• Knowledge of identity and access management concepts, including authentication, authorization, and SSO
• Familiarity with AI security concepts and emerging threat landscapes
• Proven ability to work under pressure, manage competing priorities, and meet strict deadlines

Personal Attributes

• Strategic self‑starter with an innovative, detail‑oriented mindset
• Strong collaboration skills and comfort working in a global team environment
• Creative problem solver with excellent technical and business communication abilities

This is a full-time role - no C2C/C2H. Resumes must include first/last name and contact information in order to be considered.