Overview
Kimley-Horn, one of Fortune Magazine’s “100 Best Companies to Work For,” is looking for aNetwork Security Engineerto join the Information Security team in ourOrange, CAoffice. Asa member ofKimley-Horn’s Information Security team, you will play a critical role in ensuring the security of our organization'snetworkinfrastructure.
This is not a remote position.
Responsibilities
- Participate in advanced security policy decisions includingfirewalland SASE logic reviews to improve user experience and security posture
- Partner with vendors and internal partners to design and optimizenetworksecurity solutions
- Implement andmaintainrobust network security measures, including firewalls,VPNsand intrusion detection/prevention systems
- Troubleshoot complex cloud infrastructure issues involving networking and security.
- Create, review, andmaintainfirewallrules across multiple environments.
- Collaborate withNetworkOperations and Cloud teams toprovidetechnical guidance and support.
- Monitor, analyze, and resolve network performance issues, includingutilization, throughput, latency, and system slowness.
- Analyze, plan, and implement access control lists (ACL),firewallpolicies, and other logical security controls in a multi-vendor security stack
- Reviewing, updating, and managing Web Application Firewalls
- Participate in system upgrades and enhancements
- Provide guidance and training to staff on network security
- Support after-hours maintenance for outages and critical upgrades
Qualifications
- Bachelor’s degree in information security, cybersecurity, or a related field
- 4+ years of experiencein NetworkSecurityor a similar role within an enterprise-level organization
- Professional IT certifications relating to IT Security orNetworking, such asSecurity+/Network+,CCNPSecurity,AZ-700/AZ-500, Certified Information Systems Security Professional (CISSP), or other relevant security certifications.
- Experience with application-based traffic andfirewalldesign (internal/perimeter/external)
- Hands on experience withadministrating Palo Alto firewallsand Panorama
- Experience managing and troubleshooting Web Application Firewalls
- Hands on experience with Cisco ISE
- Excellent problem-solving skills and the ability to think critically under pressure
- Experience with change-management policies and procedures
- Strong communicationskills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholders
Desired Skills:
- Strong knowledge of Threat Protection, URL filtering, TLS decryption, and PCAPS
- Familiarity with cloudnetworksecurity concepts and best practices for securing cloud environments (AWS, Azure).
- Knowledge of core network services (DNS, DHCP,IP Routing)
- Knowledge of web standards relating to APIs (OAuth, SSL, CORS, JWT, etc.)
- Strong problem-solving skills with the ability to troubleshoot complex cloud networking infrastructure
- Proven experience with SD-WAN platforms and technologies
- Knowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF)
Salary Range: $90,000 - $100,000
Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.
- Participate in advanced security policy decisions includingfirewalland SASE logic reviews to improve user experience and security posture - Partner with vendors and internal partners to design and optimizenetworksecurity solutions - Implement andmaintainrobust network security measures, including firewalls,VPNsand intrusion detection/prevention systems - Troubleshoot complex cloud infrastructure issues involving networking and security. - Create, review, andmaintainfirewallrules across multiple environments. - Collaborate withNetworkOperations and Cloud teams toprovidetechnical guidance and support. - Monitor, analyze, and resolve network performance issues, includingutilization, throughput, latency, and system slowness. - Analyze, plan, and implement access control lists (ACL),firewallpolicies, and other logical security controls in a multi-vendor security stack - Reviewing, updating, and managing Web Application Firewalls - Participate in system upgrades and enhancements - Provide guidance and training to staff on network security - Support after-hours maintenance for outages and critical upgrades
