Senior Network Security Engineer

Job Summary We are seeking a Senior Network Security Engineer to play a critical role in securing, optimizing, and transforming our enterprise network infrastructure. This position requires expert-level knowledge of firewall management, routing, SD-WAN, and cloud security technologies. The successful candidate will design, deploy, and maintain secure network solutions that protect sensitive data and ensure high system availability across global locations. Key Responsibilities

• Manage and maintain enterprise firewalls including Cisco ASA, Checkpoint, Fortinet FortiGate, and Palo Alto.
• Oversee Radware DDoS protection systems to ensure network resilience and uptime.
• Administer Zscaler ZIA/ZPA for secure cloud access and zero-trust connectivity.
• Configure and optimize SD-WAN solutions for global connectivity and application performance.
• Implement and troubleshoot EIGRP, BGP, and OSPF routing protocols.
• Design and maintain NAT policies, firewall rule sets, and traffic management policies.
• Lead the migration from Checkpoint to Fortinet, including policy conversion, rule optimization, and validation.
• Conduct firewall audits, risk assessments, and ensure compliance with best practices.
• Implement policy-based routing, WAN optimization, and redundancy mechanisms.
• Collaborate with cross-functional teams to align cloud and on-prem security strategies.
• Investigate and resolve connectivity, performance, and security incidents across hybrid environments.

Required Experience

• – years of professional experience in network security engineering.
• Hands-on expertise with Fortinet FortiGate, Checkpoint, Palo Alto, and Cisco ASA firewalls.
• Strong understanding of SD-WAN technologies (Fortinet SD-WAN, Cisco SD-WAN, Prisma Access).
• Proficient in EIGRP, BGP, and OSPF routing protocols.
• Experience managing Zscaler ZIA/ZPA deployments.
• In-depth knowledge of VPN technologies (IPSec, SSL, GRE, DMVPN, LTP).
• Experience with Radware DDoS protection, IPS/IDS, and threat mitigation.
• Understanding of zero-trust architectures and secure network segmentation.
• Strong analytical and problem-solving skills with the ability to resolve complex security challenges.

Nice-to-Have Experience

• Experience leading enterprise-level firewall migrations.
• Familiarity with SIEM integration and automated incident response.
• Knowledge of cloud-native networking in AWS or Azure environments.
• Exposure to SASE frameworks and emerging network security technologies.

Required Skills

• Firewall Administration (Fortinet, Palo Alto, Checkpoint, Cisco ASA)
• SD-WAN Architecture & Optimization
• BGP / OSPF / EIGRP Routing
• Zscaler ZIA/ZPA Cloud Security

Preferred Skills

• DDoS Protection (Radware)
• VPN & NAT Configuration
• Zero-Trust Security Implementation
• Firewall Migration and Policy Optimization

Additional Skills from Original Description

• Threat Mitigation & Risk Assessment
• Cloud Security Integration
• Performance Troubleshooting
• Compliance & Security Auditing

Benefits

• Medical, Vision, and Dental Insurance Plans
• k Retirement Fund

About the Client Our client is a leading sustainable energy company with operations in states and over $ billion in assets. They provide electricity and natural gas services to million customers across the Northeast. Recognized as one of the World’s Most Ethical Companies for three consecutive years, they are also a leader in offshore wind development and renewable energy innovation. The company actively supports community development and invests in local charitable initiatives. About GTT GTT is a minority-owned staffing firm and a subsidiary of Chenega Corporation, a Native American-owned company in Alaska. As an economically disadvantaged corporation, we highly value diverse and inclusive workplaces. Our clients include Fortune companies across banking, insurance, financial services, life sciences, biotech, utility, and retail sectors throughout the and Canada. We look forward to helping you land your next great career opportunity! Job Number: -
LI-GTT LI-Onsite gttjobs