The Position

The Network Security Engineer is a hands-on technical role within NMC²'s centralized Security Engineering organization, responsible for designing and maintaining the network security infrastructure that protects our hyperscale HPC and cloud compute environment. This role plays a direct part in building the controls, automation, and operational practices that keep NMC²'s infrastructure secure at scale.

You would be responsible for designing, implementing, and maintaining the organization's network security architecture and controls. Reporting to the Manager of Network and Infrastructure Security, this role serves as a technical subject matter expert for network security, driving initiatives that protect the organization's infrastructure from internal and external threats. The ideal candidate combines deep technical expertise with a collaborative mindset and a proactive approach to identifying and mitigating risk.

Responsibilities:

• Design, implement, and maintain network security architecture including firewalls, IDS/IPS, VPNs, and related controls across on-premises and cloud environments
• Serve as the team's primary subject matter expert for network security technologies, providing guidance and technical direction on complex security challenges
• Evaluate and recommend new network security technologies and solutions to continuously improve the organization's security posture
• Collaborate with infrastructure, cloud, and IT operations teams to ensure network security controls are integrated into new and existing environments
• Monitor network security events and alerts, investigate anomalies, and lead response efforts for network-based threats
• Develop and maintain network security standards, policies, and technical documentation
• Support network segmentation and micro-segmentation efforts by providing technical expertise on traffic flows, access controls, and policy enforcement
• Participate in security architecture reviews for new projects, systems, and third-party integrations to ensure network security requirements are addressed
• Mentor junior security engineers and contribute to the overall growth and development of the network security team

Requirements:

• 5+ years of experience in network security engineering, with hands-on experience across trusted, untrusted, and DMZ environments
• Strong understanding of network protocols and the OSI model, with practical experience in TCP/UDP-based applications, routing, switching, and load balancing
• Experience securing both on-premises and cloud network environments (AWS, Azure, or GCP)
• Solid knowledge of network security technologies including firewalls, VPNs, proxies, MACsec, IPsec, HTTPS, certificate chains, DNS, NTP, AAA, and domain-based authentication and authorization
• Experience with one or more leading security vendors such as Palo Alto, Fortinet, Check Point, or F5
• Familiarity with Zero Trust principles, network segmentation, and secure cloud networking in AWS or Azure
• Hands-on experience with scripting and automation using Python, Ansible, or Terraform
• Excellent communication skills with the ability to document technical findings and present recommendations to both technical and non-technical audiences

Nice to Have:

• Experience with VxLAN EVPN data center architecture
• Background in SOC operations or working with MSSPs
• Firewall automation experience

It is impossible to list every requirement for, or responsibility of, any position. Similarly, we cannot identify all the skills a position may require since job responsibilities and the Company's needs may change over time. Therefore, the above job description is not comprehensive or exhaustive. The Company reserves the right to adjust, add to or eliminate any aspect of the above description. The Company also retains the right to require all employees to undertake additional or different job responsibilities when necessary to meet business needs.

Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

Benefits & Perks:

• Company-Paid Lunch Stipend: Lunch is provided via GrubHub
• Company-Paid Benefits: 100% Employer-Paid Medical in our High Deductible Health Plan, Dental and Vision benefits for employees and their families, 16 weeks of Paid Parental Leave, Employee Assistance Program, Life insurance, Short-Term Disability and Long-Term Disability
• 401(k): Company will match 100% of your contributions up to 6%
• Optional Employee-Paid Benefits: Medical insurance in our PPO plan and a variety of other benefits such as Health Savings Accounts (with Company Contribution!), Flexible Spending Accounts, Supplemental Life Insurance, Wellhub and more.
• Time Off: 25 days of Paid Time Off plus 12 company holidays