Cybersecurity Engineer

Kimley Horn
Phoenix, United States of America
14 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Phoenix, United States of America

Tech stack

Access Network
Application Firewall
Cloud Computing
Computer Security
Dynamic Host Configuration Protocol
DNS
Intrusion Detection Systems
Virtual Private Networks (VPN)
Network Security
Logical Security
Networking Basics
Routing
Performance Tuning
TCP/IP
Computer Networking Systems
Identity Services Engine
Computer Network Operations
Cloud Platform System
Firewalls (Computer Science)
Low Latency
Firewall Services Module

Job description

Kimley-Horn is seeking a Cybersecurity Engineer to help lead and mature our network security function, with a primary focus on enterprise firewall architecture and operations.

This is a foundational role within our Information Security team, where you'll take ownership of a growing firewall environment, influence security strategy, and help define the future of network security across a rapidly expanding, multi-site organization.

If you have a strong networking background and deep hands-on firewall experience-especially in Palo Alto environments-this is an opportunity to truly own and evolve a critical security domain.

This is not a remote position. Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or other work visa petitions.

Responsibilities

Firewall Ownership & Network Security (Primary Focus)

  • Serve as the primary owner of Kimley-Horn's enterprise firewall environment , including design, implementation, and ongoing optimization

  • Create, review, and maintain firewall policies and rules across on-prem and cloud environments

  • Lead firewall strategy decisions , including policy standardization, segmentation, and performance tuning

  • Administer and optimize Palo Alto firewalls and Panorama

  • Manage and enhance GlobalProtect policies and secure remote access configurations

  • Analyze and implement ACLs, rule bases, and logical security controls across a multi-vendor environment

  • Drive continuous improvement in firewall posture, balancing security and user experience, + Implement and maintain network security controls , including firewalls, VPNs, IDS/IPS, and access controls

  • Troubleshoot complex networking and security issues across cloud and hybrid environments

  • Monitor and resolve network performance issues (latency, throughput, utilization, system slowness)

  • Partner with Network Operations and Cloud teams to review designs and provide a security-first perspective

Emerging Security Capabilities

  • Assist in evaluating and implementing Network Detection & Response (NDR) solutions

  • Support the transition and ongoing ownership of Cisco ISE capabilities

  • Contribute to security tooling decisions, standards, and long-term strategy

Collaboration & Leadership (Non-People Management)

  • Coordinate and guide work across matrixed IT partners

  • Provide technical guidance, training, and mentorship on network security best practices

  • Participate in incident response, change management, and after-hours maintenance for critical events

Requirements

  • Bachelor's degree in Information Security, Cybersecurity, or a related field

  • 4+ years of experience in network security engineering or related roles within enterprise environments

  • Strong hands-on experience with firewall design, implementation, and management (required)

  • Direct experience with Palo Alto firewalls and Panorama

  • Experience with firewall architectures across internal, perimeter, and cloud environments

  • Experience administering Web Application Firewalls (WAFs)

  • Experience with Cisco ISE or similar identity-based network access platforms

  • Solid understanding of networking fundamentals (routing, switching, TCP/IP, DNS, DHCP)

  • Experience with change management practices and operational processes

  • Strong problem-solving skills and ability to perform under pressure

  • Excellent communication skills with the ability to explain technical concepts to non-technical stakeholders

Preferred Certifications:

Security+, Network+, CCNP Security, AZ-700/AZ-500, CISSP, or similar, Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.

Benefits & conditions

  • Exceptional Retirement Plan: 2-to1- company match on up to 4% of eligible compensation (salary + bonus) and additional profit-sharing contribution.

  • Comprehensive Health Coverage: Low-cost medical, dental, and vision insurance options.

  • Time Off: Personal leave, flexible scheduling, floating holidays, and half-day Fridays.

  • Financial Wellness: Student loan matching in our 401(k), and performance-based bonuses.

  • Professional Development: Tuition reimbursement and extensive internal training programs.

About the company

At Kimley-Horn, we do things differently. People, clients, and employees are at the forefront of who we are. Clients know we prioritize achieving their goals and growing their success. Employees know our culture and approach to business are built on a desire to provide an environment for everyone to flourish. Our commitment to quality is only as good as the people behind it- that's why we welcome and develop passionate, hardworking, and proactive employees. We take pride in how our employee retention, robust benefits package, and company values have led to Kimley-Horn's placement on the Fortune "100 Best Companies to Work" list for 19 years!

Apply for this position