General Summary:The NOC Security Engineer will be responsible for maintaining secure and reliable IP network infrastructure in a service provider-like environment, administering next-generation firewalls (Palo Alto preferred), managing Security Information and Event Management (SIEM) systems, analyzing cyber threats, conducting digital forensics, and leading incident response activities. This hybrid role combines hands-on IP routing/switching, firewall configuration, and transport network support with proactive security monitoring, threat detection, and rapid incident mitigation to protect the organization's network and business operations from evolving threats.
Essential Job Functions:- Implement and maintain IP routing (e.g., BGP, OSPF) and Ethernet switching solutions in a service provider environment, ensuring high availability, scalability, and performance for ISP transport and customer connectivity;
- Configure, administer, and optimize Palo Alto Next-Generation Firewalls (preferred) or equivalent, including policy creation, threat prevention profiles, VPNs, NAT, logging, and integration with security ecosystems to enforce robust perimeter and internal security controls;
- Monitor security events and alerts via SIEM platforms and other tools to detect anomalies, potential intrusions, and advanced threats in real time;
- Analyze and triage security incidents, performing detailed investigations including log correlation, network traffic analysis, endpoint forensics, and malware reverse engineering as needed;
- Lead incident response efforts, containing breaches, eradicating threats, coordinating remediation, and restoring services while minimizing operational impact and downtime;
- Conduct digital forensics on affected systems, preserve chain-of-custody evidence, and produce detailed reports to support root cause analysis and potential legal or compliance needs;
- Perform proactive threat hunting across network infrastructure to identify hidden compromises or indicators of compromise;
- Collaborate with ISPs, telecommunications providers, and internal cross-functional teams to troubleshoot and resolve complex network and security issues involving transport technologies, routing, switching, and firewall rules;
- Tune and maintain security tools (SIEM rules, EDR, IDS/IPS) and network devices to reduce false positives, improve detection efficacy, and align with business requirements;
- Document network/security configurations, standards, incident playbooks, response procedures, and lessons learned to support team knowledge sharing, training, and continuous improvement.
Knowledge, Skills, and Abilities:- Knowledge of telecommunications products and services;
- Knowledge of SIEM platforms, threat intelligence, MITRE ATT&CK framework, and incident handling;
- Solid understanding of Palo Alto Firewall administration and configuration;
- Solid understanding of Service Provider transport networks;
- Solid understanding of the OSI layer and LAN/WAN protocols and technologies such as Ethernet, TCP/IP, VLANs, Routing, Switching, NAT, ACL, etc.;
- Operational knowledge and awareness of data, voice, and transport network product and technologies including Cisco, Ciena, Nokia, Calix, Alcatel, and Metaswitch;
- High level proficiency of common networking tools and troubleshooting methodologies such as Telnet, SSH, ping, traceroute, and Wireshark;
- Skill in scripting and front/back-end development;
- Skill in commonly used software such as Visio, Excel, Word, and Power Point;
- Skill in oral and written communication;
- Skill in reading and interpreting technical documents and information;
- Ability to multi-task and effectively manage multiple high-impact projects;
- Ability to be detail oriented while keeping the bigger picture in mind;
- Ability to work well individually and in a team environment.
Education and Experience:Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, Networking, or a similar technical field and 3+ years of relevant work experience; or equivalent combination of education and experience preferred.
2+ years of experience in security operations, SOC/NOC analysis preferred.
CompTIA Security+, Blue Team Level 1 (BTL1), Certified CyberDefender (CCD), or equivalents are highly desirable.
Cisco CCNA, CCNP, Nokia NRS I/II, or similar certifications preferred.
Palo Alto certifications with PCCSA, PCNSA, PCNSE preferred.
We offer competitive compensation and an outstanding benefits package including health, dental, vision, cancer, accident and life insurance, short-term and long-term disability, 401(k) with company match, flexible spending accounts, free gym membership, company discounts, tuition reimbursement, paid training, paid leave, and much more!