Network Security Engineer

Conduct and socialize capability-relevant surveillance (internal/ external, industry & competitor) Develop digital / technology strategies (gap assessment, demand definition, prioritization & gap closure roadmaps) Develop reference architectures and guide initiatives Deliver solutions to planned future state Overview We are building a new Network Security DevOps organization responsible for modernizing and operating enterprise firewall and network security services. As a contractor on this team, you will play a highly visible role in driving automation, engineering scalable security solutions, and managing day to day operations across complex global environments. This is a hands-on technical role suited for self-driven engineers who take ownership, demonstrate leadership behaviors, and thrive in fast-moving environments. Key Responsibilities Firewall & Security Engineering Design, implement, operate, and maintain Fortinet FortiGate firewalls across global environments (data centers, offices, business edge sites). Manage legacy firewalls during migration efforts: o Juniper SRX o Cisco ASA and Cisco FTD

• Use FortiManager and FortiAnalyzer for centralized configuration, automation, and reporting.

• Support evaluation and potential adoption of FortiSOAR and FortiSandbox.

• Collaborate with OT teams handling Palo Alto. Automation & DevOps

• Develop and maintain infrastructure automation for firewall policy management and firewall deployments.

• Build automation using tools such as Ansible, Terraform, GitHub, Python, REST APIs, Jenkins, Jinja2, and YAML.

• Contribute to the organization's Zero-Ops strategy by reducing manual operations and improving system reliability. Cloud & Virtual Firewalls

• Support deployment and management of virtual firewalls in cloud environments (AWS and Azure).

• Assist in future SD WAN technology integration, including potential migration to Fortinet based SD WAN. Operations Support

• Perform monitoring, troubleshooting, incident response, and vulnerability assessment.

• Manage upgrades, patches, break/fix, and operational run tasks.

• Participate in a rotating global on-call schedule ("follow-the-sun" model).

• Troubleshoot network issues using logs in FortiAnalyzer and Splunk. Cross-Team Collaboration

• Work directly with cybersecurity, network engineering, cloud, applications, and project delivery teams.

• Create and maintain documentation, runbooks, and operational processes.

• Engage with internal stakeholders to understand requirements and deliver secure, scalable solutions.

5+ years of hands-on experience in network security engineering and/or operations. Expertise with enterprise firewall platforms: Fortinet FortiGate (FortiManager and FortiAnalyzer experience strongly preferred) Cisco ASA / CSM o Cisco FTD / FMC o Juniper SRX (Junos Space)

• Strong understanding of networking fundamentals: TCP/IP, OSI model, routing/switching, ACLs.

• Experience with firewalls, VPNs, IDS/IPS, NAT, DNS, and authentication technologies. Preferred Technical Skills

• Experience with automation and DevOps tooling: Ansible, Terraform, GitHub, Python, Jinja2, REST APIs, Jenkins

• Cloud security experience with AWS and Azure.

• Strong troubleshooting skills in routing/switching environments, especially with VRF and VXLAN.

• Experience with tools such as Datadog and Algosec.

• Familiarity with Agile/SAFe work methodologies. Certifications (Preferred, Not Required)

• Fortinet: FCA, FCSS, NSE certifications

• Cisco: CCNA/CCNP Security

• Security: CISSP, GIAC Soft Skills

• Self-motivated, proactive, and capable of working independently in a global virtual team.

• Strong written and verbal communication skills.

• Ability to prioritize, multitask, and adapt in a dynamic environment.

• Analytical thinker and collaborative team player. Strong Plus Factors

• Experience working in large, complex global enterprise networks.

• Prior experience in oil and gas a plus

• Top 3 skill sets/technologies required for qualification: o 1): Network Security Firewalls - primarily Fortinet, Cisco, and Juniper o 2): Automation and scripting - primarily Ansible, Terraform, and Python scripting o 3): Cloud (AWS & Azure connectivity)