SonicJobs Logo
Left arrow iconBack to search
  1. Home
  2. 20108, Manassas, VA
  3. Senior Network Security Engineer

Senior Network Security Engineer

NAL RESEARCH CORP
Posted 5 days ago, valid for 16 days
Location

Manassas, VA 20108, US

Salary

Competitive

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • We are looking for a Senior Network Security Engineer with over 8 years of experience in network engineering and security, including 5 years focused on network security architecture.
  • The role involves designing and maintaining secure network architectures across enterprise and cloud environments, particularly in AWS.
  • Candidates should have strong hands-on experience with enterprise firewall platforms and a deep understanding of networking protocols and security principles.
  • This position offers a competitive salary, which is commensurate with experience, reflecting the seniority and expertise required for the role.
  • The ideal candidate will also possess scripting or automation skills and experience in regulated environments.

Senior Network Security Engineer

Position Summary

We are seeking a highly experienced Senior Network Security Engineer to design,

implement, and maintain secure, scalable, and resilient network architectures across

enterprise and cloud environments. This role is responsible for leading network security

initiatives, enhancing defensive capabilities, ensuring compliance with regulatory

requirements, and mentoring junior engineers.

The ideal candidate combines deep technical expertise with strategic thinking and hands on

execution, particularly in cloud networking, perimeter security, segmentation, and zero trust

architectures.


Key Responsibilities

Network Security Architecture & Engineering

• Design and implement secure network architectures across on-premises, hybrid, and

cloud environments (AWS).

• Lead design and deployment of firewalls, IDS/IPS, VPNs, NAC, segmentation, and

secure remote access solutions.

• Develop and maintain zero-trust and micro-segmentation strategies.

• Architect secure interconnects between data centers, cloud environments, and partner

networks.

Cloud & Hybrid Security

• Secure VPC architectures, transit gateways, peering, routing policies, and network

segmentation.

• Implement and manage cloud-native security controls (Security Groups, NACLs, WAF,

PrivateLink, etc.).

• Support secure multi-account / multi-region architectures.

• Review and harden infrastructure-as-code network deployments.

Monitoring, Detection & Incident Response

• Integrate network security controls with SIEM/SOAR platforms.

• Analyze network traffic for anomalies and threat indicators.

• Support incident response activities related to network breaches or misconfigurations.

• Conduct root cause analysis and implement corrective controls.

Risk, Compliance & Governance

• Ensure network security controls align with frameworks such as NIST 800-53, ISO

27001, SOC 2, and FedRAMP.

• Participate in audits and provide required documentation.

• Develop and maintain network security standards and procedures.

Leadership & Collaboration

• Provide technical leadership and mentorship to junior engineers.

• Collaborate with DevOps, Cloud, Security Operations, and IT teams.

• Lead security design reviews and risk assessments.

• Evaluate and recommend emerging security technologies.

Required Qualifications

• 8+ years of experience in network engineering and security.

• 5+ years specifically focused on network security architecture.

• Strong hands-on experience with enterprise firewall platforms (Palo Alto, Fortinet,

Cisco, Check Point).

• Deep knowledge of TCP/IP, BGP, OSPF, MPLS, VPN (IPSec/SSL), segmentation, ACL

design, and IDS/IPS technologies.

• Experience securing cloud (AWS) environments.

• Experience with routing, NAT, transit gateways, and hybrid connectivity.

• Strong understanding of Zero Trust and defense-in-depth principles.

• Experience with packet analysis tools (Wireshark, tcpdump).

• Scripting or automation skills (Python, golang, Terraform, Ansible, etc.).

Preferred Qualifications

• Experience in regulated environments (federal, telecom, finance, healthcare).

• Experience implementing secure inter-domain routing policies.

• Familiarity with network encryption standards and key management.

• Experience with DDoS mitigation technologies.

• Background in secure SD-WAN deployments.



Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Logo
SonicJobs
Your next career move. Sorted.
Search jobsbackground image

Contact us

© 2017 - 2026 SonicJobs Inc. All rights reserved

Terms & Conditions | Privacy Policy | Browse Jobs