Job DescriptionThe Network Security Engineer designs, implements, and operates security controls for Ralliant's network and on-premises infrastructure environments across campus, data center, WAN, and cloud networking. The primary goal of this role is to reduce the likelihood and impact of business-disrupting security events by ensuring network designs, configurations, and operational practices are secure-by-design, resilient, and supportable.
This role sits within the Cyber Defense team and works closely with Networking and Infrastructure teams to embed security requirements into day-to-day engineering and operations. The Network Security Engineer applies security architecture standards, supports secure network changes, and partners with operations teams to continuously strengthen segmentation, boundary defenses, secure access, and monitoring across enterprise and Operating Company (OpCo) environments.
The role is hands-on and execution-focused, combining deep technical expertise with discipline in standard work, automation, and continuous improvement through the Ralliant Business System (RBS).
Key Responsibilities- Design, implement, and maintain network security controls across campus, data center, WAN, and cloud networking environments, ensuring alignment with secure-by-design standards
- Implement segmentation, boundary protection, secure management access, and identity-aware connectivity to reduce attack surface and limit blast radius.
- Support and review network and infrastructure changes, validating configurations for secure access, least privilege, resiliency, and operational correctness.
- Partner with Cyber Defense Operations to enable effective monitoring, detection, and response for network security controls, including telemetry onboarding and alert tuning.
- Build, contribute to and maintain standard work artifacts such as configuration standards, reference architectures, design patterns, and implementation checklists.
- Support secure cloud networking implementations, including connectivity, segmentation, private access, egress controls, and secure interconnects.
- Assist in incident response and post-incident follow-ups related to network and infrastructure security, contributing technical analysis and corrective improvements.
- Collaborate with GRC and Audit teams to provide technical evidence and support control validation activities when required.
- Drive continuous improvement using RBS principles, focusing on reliability, repeatability, and reduction of operational and security risk.
Qualifications- Bachelor's degree recommended; equivalent experience considered.
- 6+ years of experience in network engineering, infrastructure engineering, or network security architecture, including leading cross-team technical initiatives.
- Subject matter expert for Zscaler ZIA, ZPA, ZTB, PaloAlto Firewalling and Cloudflare WAF technology stacks.
- Strong understanding of enterprise network architecture across campus, data center, and WAN, and the security controls that protect those environments (segmentation, boundary defenses, secure management).
- Experience supporting regulated or customer-driven security environments; familiarity with CMMC and NIST SP 800-171 expectations is preferred.
- Experience designing secure connectivity for cloud environments and hybrid architectures, including secure interconnects and policy-driven network controls.
- Demonstrated ability to translate security risk into practical engineering priorities and designs that improve resilience and operational supportability.
- Experience partnering with operations teams to implement standards, improve reliability, and reduce repeat incidents through root cause analysis and permanent fixes.
- Strong communication skills and executive presence; ability to influence without direct authority and serve as a trusted technical advisor.
- Demonstrated coaching and mentoring capability for engineers and operations teams.
- Alignment with Ralliant values and the Ralliant Business System (RBS), including continuous improvement, transparency, and ownership.
#LI-JW2
