Hybrid Network Security Engineer Firewall & Policy Management

Job Description

Company: TEKBERRY

Location: New York, US

Title: Network Security Engineer Firewall & Policy Management

Pay Rate Range: $60.00 $71.00/hr. (DOE)

Employment Type: Contract 6 Months

Schedule: Full-time, Monday Friday 7:00AM 3:00PM

Location: Elma, NY – Hybrid -(2 remote days and 3 days onsite, training may differ)

Job Code: 1942

Overview

Tekberry is seeking an experienced Network Security Engineer to support network security operations for our client. This role focuses on firewall engineering, policy design, and security optimization, ensuring secure and compliant network environments.

The ideal candidate will have strong hands-on experience with firewall technologies, particularly Palo Alto Networks, and a proven ability to translate business and project requirements into effective security controls. This role requires collaboration across technical and non-technical teams to design, implement, and maintain robust network security solutions.

As a Tekberry W2 employee, you will have access to health benefits including medical, dental, vision, and 401(k) options.

Key Responsibilities

Firewall Engineering & Security Operations

Design, implement, and maintain secure firewall policies aligned with business and security requirements

Perform firewall hardening, including rulebase optimization, risk reduction, and compliance alignment

Monitor, troubleshoot, and maintain firewall performance and availability

Policy Design & Implementation

Analyze project and business requirements and translate them into firewall rules and security policies

Configure and manage firewall rulebases, NAT policies, zones, and security profiles

Conduct impact analysis and risk assessments for firewall changes

Change Management & Compliance

Manage firewall changes through structured change control processes

Support audit remediation and ensure alignment with security compliance frameworks

Maintain accurate documentation for firewall configurations, rules, and design standards

Collaboration & Project Support

Partner with project managers, network engineers, and security teams to implement security requirements

Participate in project planning and execution to ensure secure network design

Provide guidance on security best practices and risk mitigation

Advanced Security & Optimization

Support network segmentation and micro-segmentation initiatives

Contribute to zero trust architecture strategies

Leverage tools such as Tufin for policy orchestration, analysis, and automation

Qualifications

Bachelor’s degree in Information Technology, Cybersecurity, or related field (or equivalent experience)

5 8+ years of experience in network security engineering

Strong hands-on experience with Palo Alto Networks firewalls (PAN-OS)

Deep understanding of firewall rulebases, NAT, zones, and security policies

Experience with firewall hardening, audit remediation, and compliance frameworks

Proven ability to translate business requirements into technical security solutions

Strong analytical, troubleshooting, and problem-solving skills

Experience working in project-based, cross-functional environments

Excellent communication skills with ability to work across technical and non-technical teams

Preferred Qualifications

Experience with Tufin or similar firewall policy management tools

Experience designing and implementing network segmentation or micro-segmentation

Familiarity with cloud environments (AWS, Azure) and hybrid networks

Knowledge of zero trust security architecture

Certifications (Preferred)

Palo Alto Networks Certified Network Security Engineer (PCNSE)

Palo Alto Networks Certified Network Security Administrator (PCNSA)

CISSP, CISM, or similar security certifications

CCNP Security or equivalent networking certification

Work Environment

This role supports a fast-paced, security-focused environment requiring strong collaboration across engineering, security, and project teams. Candidates should be comfortable managing multiple priorities, working independently, and contributing to enterprise-level security initiatives.

We need hard-working, reliable professionals. If you are interested in joining a high-impact security team, apply today!

Tekberry is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, disability, veteran status, or any other protected category. Tekberry is a certified Minority Business Enterprise (MBE) and a Disadvantaged Business Enterprise (DBE).

#INDHP

Source: SimplyHired