Network Security Engineer

Benefits:

ONSITE

Competitive salary

Opportunity for advancement

Network Security Engineer

Location: Colorado (Onsite)

Employment Type: Full-Time

We are hiring a hands-on Network Security Engineer to support and strengthen enterprise security infrastructure. This role requires deep experience in Firewall Management, VPN configuration, Network Segmentation, Zero-Trust Implementation, and Linux system administration.

This position is fully onsite in Colorado. Candidates must be comfortable working directly with infrastructure, networking, and security teams in a production environment.

Key Responsibilities

Firewall Configuration &

• Optimization:

• Configure, deploy, and manage enterprise firewalls such as Palo Alto Networks, Fortinet, or Cisco Systems
• Perform rule set analysis, cleanup, and performance tuning
• Implement NAT policies, access controls, and application-layer inspection
• Support firewall upgrades and change management processes

VPN &

• Secure Remote Access:

• Design and configure IPSec and SSL VPN solutions
• Support secure remote workforce connectivity
• Integrate multi-factor authentication into VPN environments
• Troubleshoot connectivity and encryption issues

Network Segmentation &

• Security Architecture:

• Design VLANs and security zones aligned with organizational policies

Implement DMZ architectures

• Enforce least-privilege access models
• Control east-west traffic to reduce lateral movement risks

Zero-Trust &

• Micro-Segmentation

• Support implementation of zero-trust security principles
• Configure micro-segmentation solutions such as VMware NSX or similar platforms
• Enforce identity-based and policy-driven access controls

Security Compliance &

• Vulnerability Management

• Perform vulnerability scans using tools such as Tenable (Nessus) or Qualys
• Analyze CVEs and coordinate remediation efforts
• Support compliance initiatives aligned with NIST, CIS, or similar frameworks
• Track remediation status and provide reporting to stakeholders

Linux System Administration &

• Automation

• Administer and harden Linux-based systems
• Develop automation scripts using Bash or Python
• Monitor logs and troubleshoot system-level issues
• Support security appliances running on Linux platforms

Required Qualifications

• 6 years of experience in network security engineering
• Strong knowledge of TCP/IP, routing, switching, and firewall architecture
• Hands-on experience with enterprise firewall platforms
• Experience with VPN configuration and troubleshooting

Strong Linux administration skills

• Experience with vulnerability management and remediation processes

Preferred Qualifications

• Experience in zero-trust architecture implementations
• Exposure to micro-segmentation technologies
• Certifications such as CCNP Security, PCNSE, NSE, or similar
• Experience in regulated or enterprise environments

Work Environment

• Fully onsite role in Colorado
• Collaborative team environment supporting enterprise infrastructure
• Direct involvement in production security operations