Network Security Engineer

 Network Security Engineer

Boston, MA

Must be onsite in Boston 3 days a week.

• Must have strong Palo Alto, Juniper, and heavy Security
• 5+ years of Network Security
• Industry certifications (e.g., Palo Alto PCNSE, Juniper JNCIS-SEC, CISSP, CEH) preferred

Title:  Network Security Engineer

Contract Length:  6+

Location:  Hybrid, 3 days onsite in Boston

 Key Responsibilities

• Firewall Administration:
  • Configure, manage, and troubleshoot Palo Alto and Juniper firewalls.
  • Audit existing firewall rules and consolidate/clean up policies as necessary.
  • Implement security policies and monitor traffic to ensure compliance with organizational requirements.
  • Perform upgrades, patches, and regular health checks on firewall systems.
  • Work with Information Security teams to address present and potential risks.
• Intrusion Detection/Prevention Systems (IDS/IPS):
  • Deploy, manage, and tune IDS/IPS solutions to detect and mitigate network threats.
  • Monitor and analyze logs to identify and respond to potential security incidents.
  • Collaborate with the Information Security team to mitigate threats.
  • Implement threat intelligence feeds from various external sources into firewalls and IDS/IPS systems.
• Web Application Firewall (WAF):
  • Configure and manage F5 ASM WAF solutions to protect web applications from threats like SQL injection, cross-site scripting, and DDoS attacks.
  • Monitor WAF logs and adjust configurations to maintain optimal application security.
• Network Security Monitoring & Optimization:
  • Conduct regular vulnerability assessments and penetration testing to identify and remediate security risks.
  • Maintain secure network designs, ensuring alignment with industry best practices.
  • Develop and implement automation scripts to enhance monitoring and response capabilities.
• Documentation & Reporting:
  • Maintain comprehensive documentation of network security configurations, processes, and incident responses.
  • Provide regular security performance and compliance reports to stakeholders.
• Additional Requirements:
  • 24/7 support of network security resources
  • Ability to work in a hybrid fashion (based in the Boston area).
  • Other skills as assigned by your manager

Required Qualifications

• Bachelor’s degree in Computer Science, Information Security, or a related field. Equivalent experience will be considered.
• Minimum [5 years] of experience in network security engineering or a similar role.
• Strong hands-on experience with Palo Alto and Juniper firewalls, including Panorama and Junos OS.
• Proficiency in IDS/IPS technologies (e.g., Snort, Suricata, Palo Alto Threat Prevention).
• Experience configuring and managing WAF solutions (e.g., F5 ASM or similar).

Preferred Skills

• Understanding of networking protocols (e.g., TCP/IP, HTTP/S, DNS, VPN).
• Industry certifications (e.g., Palo Alto PCNSE, Juniper JNCIS-SEC, CISSP, CEH) preferred
• Familiarity with SIEM & vulnerability management tools (e.g., Microsoft Sentinel & Tenable Security Center).
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation is a plus

Experience with firewalling in hybrid/cloud platforms (AWS, Azure, on-prem).