Senior Network Perimeter Security Engineer

The Senior Network Perimeter Security Engineer is responsible for the design, implementation, operation, and documentation of enterprise network security solutions. This role provides technical leadership and subject matter expertise across network security architecture, stability, and resiliency. The engineer ensures systems, networks, and data are protected against internal and external threats by enforcing security best practices, policies, and standards. This position requires deep expertise in network perimeter security technologies, including firewalls, IDS/IPS, and DDoS mitigation.

Key Responsibilities:
• Define and execute network security architecture strategy and technology roadmaps, delivering fit-for-purpose security solutions
• Lead high-impact security initiatives and projects, serving as a recognized subject matter expert in network security
• Design, implement, and operate perimeter security technologies including firewalls, IDS/IPS, and DDoS protections
• Evaluate emerging threats, vulnerabilities, and technologies, and recommend improvements to security posture
• Monitor networks, systems, and logs using security tools such as SIEM, vulnerability management, and endpoint security platforms
• Ensure compliance with security policies, standards, and regulatory controls
• Conduct security architecture reviews, risk assessments, and requirements analysis aligned to business needs
• Develop and maintain standardized, repeatable network security reference architectures
• Manage network configurations, firmware, software updates, and security documentation
• Collaborate with cross-functional teams including infrastructure, applications, IT support, and information security
• Support production environments through incident response, service requests, and major incident troubleshooting
• Coordinate with third-party vendors for project execution and issue resolution
• Provide mentoring, guidance, and training to junior team members on standards and best practices
• Maintain detailed network diagrams, configurations, and operational procedures
• Participate in an on-call rotation and support after-hours maintenance or emergency response as needed (24x7)
• Support enterprise domain controllers and DHCP services
• Provide regular project status reporting and participate in required meetings

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• Bachelor’s degree in information systems, Information Technology, Computer Science, or Engineering from an accredited university, master’s degree preferred
• Minimum 10 years of information technology experience
• Minimum 5 years of information security experience
• Hands on experience in security systems, including but not limited to (firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.)
• Hands on experience in security systems, including but not limited to (firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.)
• Strong knowledge of networking protocols (TCP/IP, BGP, OSPF, etc.) and technologies (VPN, LAN, WAN, WLAN). Network Troubleshooting skillset in a Data Center & Campus environment.
• Ability to establish credibility and working relationships with a wide range of corporate personnel, including operations, management, executive and legal staff as well as external personnel, including auditors and regulators.
• Familiarity with Azure, AWS and GCP
• SaaS solutions such as Salesforce, Workday, and Office 365, SAP, OCF
• Identity and Access Management (IAM) platforms and related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth
• Experience with cloud-based security platforms (ZTNA) Zscaler
• Understanding corporate network monitoring and security and common network protocols such as TCP/IP, VLANS, DNS, DHCP, radius, WIFI, Backup
• Networking and firewalls – CISCO, FortiGate, Checkpoint, Juniper, and/or Palo Alto, Virtual Firewall appliances
• Experience managing 100+ Firewalls in an Enterprise
• Experience implementing and managing End-point protection using SCCM
• Experience with Web-Application Firewalls implementing and managing.
• Operating systems, including Windows and Linux

• One or more of the following certifications in a relevant specialty are preferred, including but not limited to: CompTIA, CISSP, CCSA/CCSE, CSSLP, CISA, CISM, GIAC certifications, CFE, CNP, CEH, Fortinet NSE, PCNSE, or ZCE.
• 5+ years of experience with Cisco Identity Services Engine (ISE) or another third-party Network Access Control (NAC) solution.
• 5+ years of experience with cloud computing platforms such as Azure, AWS, or GCP.
• Experience with network automation tools such as Ansible, Terraform, or Puppet.
• Experience with enterprise network monitoring tools (e.g., SolarWinds Orion).
• Experience developing and implementing strategies for Quality of Service (QoS) and multicast networking.
• Experience using packet capture and analysis tools, including NetFlow, IP SLA, and similar technologies.

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.