Engineer/Senior Engineer, Firewall

Job Summary

Required Qualifications

• 5+ years of hands-on experience administering enterprise firewalls and VPNs (Cisco ASA/Firepower/FTD; Check Point).
• Working knowledge of WAF technologies and web security (OWASP Top 10, TLS, mTLS, API security).
• Strong command of TCP/IP, routing (OSPF/BGP), NAT, ACLs, IPS/IDS, and packet analysis.
• Experience with SIEM/log management (e.g., Splunk, QRadar, LogRhythm), network monitoring (e.g., SolarWinds), and configuration management.
• Familiarity with NERC CIP concepts and control implementations for Low and/or Medium Impact environments, or equivalent experience in other regulated OT/ICS environments (for example IEC 62443).
• Solid documentation skills and experience operating within formal change management processes.
• Clear communicator able to translate complex security topics for plant operations, engineering, compliance, and leadership.
• Strong prioritization and execution in high-availability environments; calm under pressure during incidents.
• Collaborative and customer-focused; builds trusted relationships with site personnel and external partners.

Desired Qualifications

• Cisco: CCNP Security, CCIE (Security)
• Check Point: CCSA/CCSE
• Others, a plus

Additional Requirements

• The Human Resources team coordinates all recruiting and hiring at our company. We do not accept resumes from third-party recruiters unless authorized by the Human Resources team and if a signed agreement is in place.