Vice President, Cloud Network Security Engineer

The Cloud Network Security Engineer is responsible for automating, designing, implementing, and maintaining secure networking environments across public, private, and hybrid cloud platforms. This role ensures confidentiality, integrity, and availability of data and services by applying advanced security principles, and compliance standards., Architecture & Design

• Develop secure network architectures for hybrid & multi cloud environments (AWS, Azure, GCP).
• Architect robust security solutions for containerized applications.
• Implement network segmentation, micro-segmentation, and zero-trust principles.
• Design end-to-end encrypted connectivity patterns.
• Design secure network architectures for containerized environments i.e. Open Container Initiative (OCI) container packaging and runtime
• Design scalable / dynamic security patterns, leveraging tag & identity-based attributes.

Security Implementation

• Configure and manage cloud-native firewalls, security groups, network ACLs and network security appliances.
• Deploy intrusion detection/prevention systems and threat monitoring tools.

Operations & Monitoring

• Monitor cloud network traffic for anomalies and potential breaches.
• Remediate vulnerability assessments and penetration testing on cloud networks.
• Respond to and investigate cloud security incidents.

Automation & Optimization

• Strong understanding of Infrastructure as Code (IaC) tools and CI/CD pipelines for secure deployments.
• Automate security policy enforcement and configuration management.
• Proficient in scripting with Python to automate network tasks, build integrations, and manage workflows.

• Excellent collaboration skills to work effectively across teams, along with strong verbal and written communication abilities.
• Expertise in network security protocols (IPSec, TLS, MacSec, etc.) and encryption standards.
• Experience with cloud networking services: VPC, VNets, Subnets, Load Balancers.
• Proficiency with IaC Tools and Frameworks: Comfortable working with tools such as Terraform, Ansible to automate infrastructure provisioning and security configuration
• Proficient in AI tooling & innovation

Preferred Tools & Technologies

• Infrastructure as Code (IaC) tools for provisioning cloud resources., Automation tools for configuration management and deployment, Python scripting.
• Git/GitHub/GitLab for version control.
• SIEM tools (Splunk) for monitoring.
• Ensure compliance with regulatory frameworks (ISO 27001, SOC2, GDPR).
• Cloud-Native distributed containerized microservice orchestration Network Policies, Istio, Calico.
• Strong knowledge of networking protocols (BGP, OSPF).
• Understanding of Docker/Netconf-yang/Linux/ API programming /JSON /XML /GitHub.
• Certifications preferred: AWS Certified Security Specialty, Azure Security Engineer Associate, Certified Kubernetes Security Specialist (CKS), CISSP or CCSP.

Experience

• 5+ years in cloud network engineering and security.
• Hands-on experience with hybrid cloud connectivity and secure design patterns.
• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.
• Recommendation is to move it in Preferred skills
• Work closely with DevOps, Cloud Engineering, and Security Operations teams to deliver key projects.
• Provide technical guidance and documentation for security best practices.
• Excellent collaboration skills to work effectively across teams, along with strong verbal and written communication abilities.

For New York, NY Only the salary range for this position is USD$162,000.00 - USD$215,000.00 . Additionally, employees are eligible for an annual discretionary bonus, and benefits including healthcare, leave benefits, and retirement benefits. BlackRock operates a pay-for-performance compensation philosophy and your total compensation may vary based on role, location, and firm, department and individual performance.

Our benefits

To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.

BlackRock's hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person - aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock. About BlackRock At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children's educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress. This mission would not be possible without our smartest investment - the one we make in our employees. It's why we're dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive., BlackRock is proud to be an equal opportunity workplace. We are committed to equal employment opportunity to all applicants and existing employees, and we evaluate qualified applicants without regard to race, creed, color, national origin, sex (including pregnancy and gender identity/expression), sexual orientation, age, ancestry, physical or mental disability, marital status, political affiliation, religion, citizenship status, genetic information, veteran status, or any other basis protected under applicable federal, state, or local law. View the EEOC's Know Your Rights poster and its supplement (https://www.dol.gov/sites/dolgov/files/OFCCP/regs/compliance/posters/pdf/22-088_EEOC_KnowYourRights.pdf) and the pay transparency statement (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_%20English_formattedESQA508c.pdf) ., BlackRock will consider for employment qualified applicants with arrest or conviction records in a manner consistent with the requirements of the law, including any applicable fair chance law.