Sr Principal Network Security Engineer
About The Position
Primary Objective: The Senior Principal Network Security Engineer is responsible for technical leadership, architecture,design, implementation, and oversight of secure network infrastructures that protect organizationalsystems and sensitive data, including Controlled Unclassified Information (CUI). This role serves as asenior technical authority and subject matter expert (SME), providing strategic direction, hands-onengineering, and mentorship while ensuring compliance with security frameworks and contractualrequirements. Major Areas of Accountability:Network Security Architecture & Engineering Design, implement, and maintain secure network architectures for on-premises, cloud, andhybrid environments Lead network segmentation, boundary protection, and zero-trust initiatives Design, document, and implement secure configurations for firewalls, routers, switches, VPNs,and load balancers Develop strategy to Ensure data inspection, encryption, and secure communications for all datamovement (Inbound/outbound: Cloud, On-Prem, SaaS, PaaS, IOT) Security Operations & Risk Management Identify, assess, and mitigate network-related security risks Review and approve network security designs and changes Support vulnerability management, penetration testing, and remediation efforts Analyze network security incidents and lead technical response efforts Compliance & Governance Ensure network security controls align with NIST SP 800-171, CMMC Level 2, and CUI protectionrequirements Support audits, assessments, and security reviews by providing technical evidence anddocumentation Contribute to system security plans (SSPs), policies, procedures, and control implementations Leadership & Collaboration Serve as a technical escalation point and SME for enterprise network security Mentor and guide network and security engineers Collaborate with IT, cloud, DevOps, and compliance teams Influence security strategy and roadmap development Monitoring & Continuous Improvement Oversee network monitoring, logging, and alerting capabilities Evaluate and communicate emerging threats, technologies, and security best practices Recommend improvements to network security posture and resilience
Requirements
- Bachelor’s degree in computer science, Information Security, Engineering, or equivalentexperience
- 8+ years of experience in network engineering, with significant focus on network security in amanufacturing environment
- Demonstrated experience designing and securing enterprise-scale networks (e.g., PaloAlto/Panorama SME)
- Advanced knowledge of: Firewalls (stateful, NGFW)
- Palo Alto Networks
- IDS/IPS
- Palo Alto Networks
- VPN technologies (IPsec, SSL/TLS)
- Palo Alto Networks or Other
- Network segmentation and access control in manufacturing (Purdue model)
- Experience with cloud network security (AWS, Azure, and/or GCP)
- Strong understanding of TCP/IP, routing, switching, and DNS
- Expert in threat remediation, including investigation, pen testing process, network monitoringand logging tools
- Technical leadership and decision-making
- Strong analytical and problem-solving skills
- Ability to communicate complex IT security concepts clearly
- Risk-based thinking and attention to detail
- Ability to work independently and influence across teams
Nice To Haves
- Enterprise scale Semiconductor and/or manufacturing experience
- Experience in federal contracting or regulated industries
Responsibilities
- Design, implement, and maintain secure network architectures for on-premises, cloud, andhybrid environments
- Lead network segmentation, boundary protection, and zero-trust initiatives
- Design, document, and implement secure configurations for firewalls, routers, switches, VPNs,and load balancers
- Develop strategy to Ensure data inspection, encryption, and secure communications for all datamovement (Inbound/outbound: Cloud, On-Prem, SaaS, PaaS, IOT)
- Identify, assess, and mitigate network-related security risks
- Review and approve network security designs and changes
- Support vulnerability management, penetration testing, and remediation efforts
- Analyze network security incidents and lead technical response efforts
- Ensure network security controls align with NIST SP 800-171, CMMC Level 2, and CUI protectionrequirements
- Support audits, assessments, and security reviews by providing technical evidence anddocumentation
- Contribute to system security plans (SSPs), policies, procedures, and control implementations
- Serve as a technical escalation point and SME for enterprise network security
- Mentor and guide network and security engineers
- Collaborate with IT, cloud, DevOps, and compliance teams
- Influence security strategy and roadmap development
- Oversee network monitoring, logging, and alerting capabilities
- Evaluate and communicate emerging threats, technologies, and security best practices
- Recommend improvements to network security posture and resilience
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
