Network Security Engineer - Hybrid (3 days/week onsite in Annapolis, MD)
Annapolis, MD
Full Time
MD-NetworkSecurityEngineer-AnnapolisMD
Experienced
This is a hybrid position with 3 days/week onsite in Annapolis, MD (21401) and 2 days/week remote.
US Citizenship or a Green Card is Required.
We are seeking an experienced Network Security Engineer to support the planning, design, and implementation of secure, highly available enterprise network systems. This role focuses on ensuring stable, scalable, and resilient 24x7 network operations within a complex environment that supports multiple mission-critical systems. The ideal candidate brings deep expertise in network security engineering, enjoys solving complex technical challenges collaboratively, and is comfortable working across the full lifecycle from design through implementation and ongoing support.
This position works closely with technical teams and stakeholders to assess requirements, design secure networking solutions, support system integrations, and maintain strong operational standards across enterprise environments.
Required Skills & Qualifications
US Citizenship or a Green Card is Required.
We are seeking an experienced Network Security Engineer to support the planning, design, and implementation of secure, highly available enterprise network systems. This role focuses on ensuring stable, scalable, and resilient 24x7 network operations within a complex environment that supports multiple mission-critical systems. The ideal candidate brings deep expertise in network security engineering, enjoys solving complex technical challenges collaboratively, and is comfortable working across the full lifecycle from design through implementation and ongoing support.
This position works closely with technical teams and stakeholders to assess requirements, design secure networking solutions, support system integrations, and maintain strong operational standards across enterprise environments.
Required Skills & Qualifications
- Associate degree or higher
- Active certifications in both:
- Palo Alto Networks Certified Network Security Administrator (PCNSA) or Palo Alto Networks Network Security Professional
- Cisco Certified Network Associate (CCNA) Enterprise or CCNA Security
- Minimum of five years of hands-on experience working with Palo Alto Networks security technologies, including next-generation firewalls, intrusion detection and prevention, content filtering, VPN implementation, data loss prevention, and TLS/SSL inspection
- At least four years of experience designing, configuring, and supporting complex Cisco-based network environments, including switching, routing, and wireless infrastructure
- Three or more years of experience supporting reverse proxy and load-balancing solutions, including platforms such as A10 Networks
- Two years of experience implementing and supporting Network Access Control solutions, including Cisco Identity Services Engine (ISE), RADIUS-based authentication, and Access Control Lists (ACLs)
- Broad experience across enterprise networking and security disciplines, including:
- Implementing Microsoft-based multi-factor authentication solutions
- Supporting cloud-based virtual networking and security services
- Applying 802.1x authentication standards in both wired and wireless environments
- Designing and supporting scalable routing protocols such as EIGRP, OSPF, and BGP
- Implementing microsegmentation within enterprise data center environments
- Managing digital certificates and Public Key Infrastructure (PKI)
- Performing vulnerability assessment and remediation using tools such as Nessus and NMAP across Windows, Unix, and Linux systems
- Conducting packet and protocol analysis using tools such as Wireshark, Riverbed, OpNet, and network taps
- Utilizing centralized management and monitoring platforms including Panorama and SolarWinds
- Working knowledge of major server and desktop operating systems and supporting utilities
- Demonstrated ability to work independently on complex technical issues, mentor junior engineers, and provide technical guidance
- Proven experience producing clear, detailed technical documentation, including network diagrams, design artifacts, project plans, schedules, and user documentation
- Ten years of experience in the United States.
- Certifications (Active or expired within the past 3 years):
- Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification or Palo Alto Networks Next-Generation Firewall Engineer Certification or Palo Alto Networks Network Security Analyst Certification.
- Cisco Certified Network Professional (CCNP) Enterprise or CCNP Security Certification.
- Proactively assess organizational needs and collaborate with stakeholders to design and engineer secure network solutions aligned with operational requirements.
- Lead and support project-based efforts involving the design, deployment, installation, and troubleshooting of secure data networking systems.
- Conduct technical assessments and deliver end-to-end design and implementation services for enterprise network and security environments.
- Create detailed technical documentation, including diagrams and written design materials, and manage implementations through final acceptance.
- Support internal teams with capacity planning, ongoing maintenance, monitoring, and evaluation of secure data communications infrastructure.
- Lead or contribute to initiatives migrating legacy network security platforms to modern, next-generation technologies, supporting defense-in-depth strategies across the full solution lifecycle.
- Provide advanced troubleshooting and threat remediation support for network security technologies, assisting engineering teams during critical incidents.
- Partner with engineering staff to implement configuration standards, change management practices, and standard operating procedures for secure network solution.
- Coordinate and guide team activities, including scheduling work and supporting issue resolution to ensure timely and accurate resolution of end-user and system issues.
Apply for this position
Required*