Job Description

Network Security Engineer Enterprise & OT Environments

We are seeking a Network Security Engineer to protect and strengthen global manufacturing operations. This role focuses on network and perimeter security while also supporting identity management, endpoint security, SIEM monitoring, and secure design across both enterprise and OT environments. Ideal candidates will have strong hands-on experience with firewalls, segmentation, Entra ID, and modern security toolsets used in large, distributed organizations.

Network & Perimeter Security (Primary Focus)

• Configure, manage, and optimize firewalls (Palo Alto, SonicWall, Fortinet, Cisco ASA/Firepower).
• Support network segmentation initiatives across corporate and manufacturing environments.
• Manage VPN technologies (site-to-site and remote access).
• Assist with network hardening and secure architecture design.
• Collaborate with network teams to implement Zero Trustaligned policies.

Identity, Access & Cloud Security

• Administer Entra ID / Azure AD including Conditional Access, RBAC, and PIM.
• Enforce MFA across users, applications, and administrative accounts.
• Support secure configuration of Microsoft 365: Defender, Intune, Purview, DLP, sensitivity labels.

Endpoint & Detection Engineering

• Manage CrowdStrike Falcon EDR across enterprise endpoints.
• Conduct threat hunting, alert triage, and support incident investigations.
• Tune and maintain SIEM platforms (Sentinel, Splunk, LogRhythm, or QRadar).
• Build detection rules and dashboards for network-related threats.

OT/ICS Security (Support Function)

• Align OT environments with NIST and IEC guidance while maintaining uptime.
• Assist with Purdue Model segmentation and monitoring in plant environments.
• Partner with OT and plant IT teams to evaluate risks and implement mitigation.

Compliance & Security Architecture

• Support controls aligned with NIST 800-171, NIST 800-53, CMMC, and TISAX.
• Maintain security documentation including SSPs and POA&Ms.
• Contribute to incident response playbooks, especially for network-focused scenarios.

Operational Support & Enablement

• Investigate and remediate security events across firewalls, identity systems, EDR, SIEM, and cloud services.
• Deliver security awareness training and phishing simulations.
• Provide security metrics and reporting to leadership.

Required

• Bachelors degree in Cybersecurity, IT, Computer Science, or related field.
• US Citizen
• Ability to travel up to 15%
• 5+ years of experience in network or security engineering roles.
• Proven hands-on experience with:
• Firewalls: Palo Alto, Fortinet, SonicWall, Cisco ASA/Firepower
• VPN solutions and network security architecture
• Entra ID / Azure AD, MFA, Conditional Access
• Microsoft 365 security tools (Defender, Intune, Purview, DLP)
• CrowdStrike or similar EDR
• SIEM platforms (Sentinel, Splunk, LogRhythm, QRadar)
• NIST 800-171 or CMMC environments

Job Tags

Similar Jobs