Network Security Engineer

We are seeking a highly skilled and local Network Security Engineer for a long-term engagement in Santa Clara, CA. The ideal candidate will have strong experience working in data center environments, with a focus on network security, firewall management, and infrastructure hardening.

Key Responsibilities:

·         Design, deploy, and manage network security solutions in large-scale data center environments.

·         Configure and maintain firewalls, VPNs, IDS/IPS, and network access controls (e.g., Cisco ASA, Palo Alto, Fortinet).

·         Perform risk assessments, vulnerability scans, and security audits.

·         Work closely with the infrastructure team to ensure secure network architecture.

·         Manage routing and switching technologies across enterprise networks.

·         Monitor network traffic for suspicious activity and respond to security incidents.

·         Provide documentation and reports related to security posture, incidents, and compliance.

·         Support compliance with NIST, ISO 27001, SOC2, and other regulatory standards.

Required Skills & Experience:

·         7+ years of experience in network security engineering.

·         Proven experience working in data center environments.

·         Strong expertise in firewall platforms (e.g., Palo Alto, Cisco ASA, Fortinet).

·         In-depth knowledge of routing/switching protocols (BGP, OSPF, EIGRP, VLAN, STP).

·         Experience with IDS/IPS, VPNs, NAC, and load balancers.

·         Hands-on experience with SIEM tools and log analysis (e.g., Splunk, QRadar).

·         Familiarity with Zero Trust architecture, micro-segmentation, and network segmentation principles.

·         Strong scripting/automation skills (Python, Bash, or Ansible is a plus).

·         Excellent problem-solving and communication skills.

Preferred Qualifications:

·         Certifications such as CCNP Security, CISSP, CEH, Palo Alto PCNSE, or Fortinet NSE.

·         Experience with cloud networking/security (AWS, Azure) is a plus.

·         Knowledge of DevSecOps practices is a bonus