Network Security/Firewall Engineer - AVP Level
Location: Manhattan, NY ( hybrid - 3 days on-site/week)
Industry: Banking/Financial Services
Employment Type: Full-Time
Position Overview:
The Network Security/Firewall Engineer will be responsible for engineering and administrating network and security infrastructures within a large enterprise environment. This is a firewall-centric, operational role focused on supporting mission-critical networks, managing security products, and developing technology solutions to enhance the security framework. The role reports to the Regional Head of Infrastructure and will be a key contributor in ensuring network security, stability, and optimal performance.
Key Responsibilities:
- Design, implement, and maintain Fortinet (FortiGate) firewalls in a Cisco network environment.
- Configure and manage FortiGate security features, including firewall policies, IPS/IDS, VPN, and advanced routing.
- Troubleshoot and resolve firewall/network security issues, providing hands-on technical support to internal users.
- Stay current on emerging security threats, vulnerabilities, and best practices.
- Collaborate with IT teams to ensure comprehensive network security.
- Document and maintain network security policies and procedures, including FortiGate license management and renewals.
- Manage and administer LAN, WAN, VPN, DMZs, and other network infrastructures.
- Understand and operate Fortinet proxies and components.
- Support fault and performance monitoring, capacity planning, and implement improvements as needed.
- Ensure compliance with corporate network and firewall change control policies.
- Troubleshoot network, proxy, load balancers, firewall, and internet connectivity issues.
- Administer security platforms and network monitoring tools such as Horizon, Tenable, Vectra, Command, and Stablenet.
- Maintain up-to-date network infrastructure documentation using tools like Visio.
- Provide off-hours and weekend support when required.
Experience & Qualifications:
- Minimum 4-5 years of network security/engineering experience, with a focus on firewall-centric roles.
- Experience with security products, particularly Cisco and Fortinet (1-2 years required).
- Preferred certifications in Fortinet (NSE 1, 2, 3, etc.) or equivalent experience.
- Experience in a banking or financial services environment preferred.
- Strong understanding of VPN concepts, protocols, and implementations.
- Experience with enterprise firewall management is a plus.
- Solid working knowledge of UNIX (Solaris and Linux).
- Familiarity with network protocols and security best practices.
- Excellent analytical and troubleshooting skills.
- Strong communication and interpersonal abilities, capable of working independently and as part of a team.
- Project management experience is a plus.