Sr. Network Engineer
Role details
Job location
Tech stack
Job description
AESC is seeking a Sr. Network Engineer, who will serve as a key member of the IT team. This role will lead the design, implementation, and management of secure, scalable, and high-performance network infrastructure. This role requires deep expertise in information security, cybersecurity frameworks, next-generation firewalls (including Palo Alto), and hybrid environments spanning on-premises datacenters and Microsoft Azure cloud. The ideal candidate is will combine strong architectural vision with hands-on operational excellence across LAN/WAN technologies. This position reports to Sr. IT Manager.
What You Will Do IT Infrastructure:
- Design, architect, and maintain enterprise-grade LAN/WAN, datacenter, and cloud network infrastructure.
- Lead the deployment, configuration, and optimization of Palo Alto firewalls, including policy management, threat prevention, and VPN solutions.
- Develop and enforce network security strategies aligned with cybersecurity best practices and organizational policies.
- Implement and manage secure connectivity between on-premises datacenters and Microsoft Azure environments (hybrid networking, VPN gateways, ExpressRoute).
- Monitor network performance, availability, and security; proactively identify and resolve issues.
- Conduct risk assessments, vulnerability analysis, and security audits; recommend and implement remediation measures.
- Manage network segmentation, zero-trust architecture principles, and secure access controls.
- Collaborate with cross-functional teams to support application deployments, cloud migrations, and infrastructure upgrades.
- Maintain documentation for network architecture, configurations, and security policies.
- Provide mentorship and technical leadership to junior engineers and administrators.
OT Industrial Infrastructure:
-
Maintain and enhance secure OT environments including:
-
MES, Manufacturing systems
-
SCADA / PLC networks
-
Maintain and secure network segmentation between IT and OT.
-
Ensure minimal disruption to production while enforcing security controls.
-
Align with industrial cybersecurity standards (IEC 62443, NIST CSF)
Implement and manage SIEM / SOC solutions, Endpoint Detection & Response (EDR), Email and identity protection tools, Lead incident response and threat mitigation efforts.
Conduct risk assessments and security audits. Define and enforce cybersecurity policies and procedures. Support compliance with Industry regulations and Internal security standards. Work closely with IT infrastructure teams, system engineer, Manufacturing/plant operations teams. Act as security subject matter expert (SME) for all projects. Support vendor risk assessments and partner engagement., The work environment is primarily an automated manufacturing plant with a concrete floor and is characterized by some temperature extremes, moderate noise, and forklift traffic. The individual must be able to perform all essential functions as appropriate on the plant floor, in meetings, and with employees, management, customers and suppliers.
Candidate must perform the essential duties and responsibilities with or without reasonable accommodation efficiently and accurately, and without causing significant safety threat to self or others. The statements made herein are intended to describe the general nature and level of work being performed by employees assigned to this job classification. They are not intended to be construed as an exhaustive and inclusive list of all responsibilities, duties, and/or skills required of personnel so classified.
The employee will be exposed to both General Office and Industrial Manufacturing Facility environments.
Work Schedule
- Work week is a 40-hour minimum
- Extended hours and overtime are required as needed
- Must be able to work any shift as required
- Must be able to work weekends as required
Equal Opportunity Employer
All of us at AESC - regardless of functional area or expertise - share a passion to design, manufacture, and sell high-performance products. It is our policy to provide Equal Employment Opportunity (EEO) to all persons regardless of race, gender, disability, or any other status protected by law. Candidates for this position must be legally authorized to work in the United States and will be required to provide proof of employment eligibility at the time of hire.
"We participate in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S."
Requirements
-
Bachelor's degree in Cybersecurity, Information Technology, or a related field.
-
More than 5 years' experience in cyber security.
Strong experience in:
- IT + OT security environments
- Network security (LAN/WAN/VLAN/firewalls)
- Microsoft 365 security ecosystem
Hands-on experience with:
-
Firewall and network design
-
Proven experience in a cybersecurity role, with a focus on incident response.
-
Extensive knowledge of Microsoft 365 Defender and other cybersecurity tools.
-
Strong analytical, problem-solving skills, excellent communication and collaboration abilities with both technical and non-technical personnel
-
Knowledge of cybersecurity frameworks, regulations, and best practices.
-
Ability to work in a fast-paced and dynamic environment.
-
Strong attention to detail and the ability to work under pressure.
-
Ability to lead incident handling processes
-
Excellent Leadership level briefings/communication
-
Security risk language domains
-
Experience with SOC 2, ISO27001, NIST and TISAX compliance
-
Knowledge of cybersecurity, engineering, ethical hacking tools and methods
-
Familiar with big data technologies, SQL, python, analytic software packages and software engineering environments.
-
A desire to constantly improve the company's global security position., * Industry certifications such as PCNSE, CISSP, CCNP/CCIE, Azure Network Engineer Associate.
-
Experience with automation and scripting (PowerShell, Python).
-
Familiarity with cloud security and DevSecOps practices.
-
Experience with load balancers, IDS/IPS, and DDoS protection solutions., * Ability to sit for extended periods of time.
-
Ability to read, write, speak, hear; stand; walk; use hands to finger, handle, or feel; reach and lift with hands and arms frequently throughout the day.
-
Required to occasionally lift, push, pull and/or move up to 10 pounds and occasionally required to lift, push, pull and/or move up to 35 pounds.
Benefits & conditions
Pulled from the full job description
- Tuition reimbursement
- Health insurance
- 401(k) matching
- Vision insurance
- Health savings account
- Dental insurance
- Flexible spending account, Welcome to AESC, supporting our state-of-the-art Gigafactories, where you'll have the opportunity to tackle the world's most fascinating challenges alongside exceptionally talented individuals who are driven to make a difference. At AESC, we offer a comprehensive compensation package. In addition, we provide a range of valuable benefits, such as 401K, and health insurance. We strive to ensure that our employees are well taken care of, enabling them to focus on their work and contribute to our collective mission of changing the world.
- An inclusive and diverse work environment that fosters and encourages professional and personal development.
- Highly automated, clean, safe, and temperature-controlled production environment
- Medical, Dental and Vision Insurance
- HSA and Flexible Spending Accounts
- 401K with company match
- Life Insurance (Company paid and additional voluntary life available)
- Paid Vacation and 14 Paid Holidays
- Short term and long-term disability coverage (Company Paid)
- Tuition reimbursement