Network Security Engineer- DLP

Overview

At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle and Paze. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.

Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to allow for a more collaborative working environment.

Candidates responding to this posting must independently possess the eligibility to work in the United States, for any employer, at the date of hire. This position is ineligible for employment Visa sponsorship.

The Staff Engineer - Network Security plays a pivotal role in designing, implementing, and maintaining enterprise network security infrastructure, with a focus on proxy and data loss prevention (DLP) solutions. This role leads control testing to ensure adherence to industry standards while working with audit and compliance teams to meet regulatory requirements.

• Develops, implements, and optimizes proxy and DLP solutions to protect sensitive data and ensure secure network access.
• Serves as the subject matter expert (SME) for proxy and DLP solutions, providing strategic and technical guidance to engineering teams, stakeholders, and leadership.
• Deploys and integrates security solutions from vendors such as Microsoft, Palo Alto, and Netskope into existing and new network environments.
• Proactively collaborates with audit and compliance teams to ensure all proxy and DLP solutions comply with regulatory requirements (e.g., PCI DSS, SOX, NYDFS).
• Designs, implements, and tests security controls to meet compliance standards, ensuring alignment with governance policies.
• Oversees the health, performance, and reliability of proxy and DLP systems, proactively identifying and resolving issues.
• Consults with security and governance teams to define, implement, and enforce security policies and configurations.
• Advises the security operations team in investigating and responding to network security incidents related to proxy and DLP technologies.
• Stays abreast of emerging trends in network security and recommends new tools or processes to enhance the organization s security posture.
• Develops and maintains detailed technical documentation, including architecture diagrams, operational procedures, control test results, and troubleshooting guides.

• Education and/or experience typically obtained through a bachelor s degree in computer science, Information Technology, or related technical field.
• 10+ years of experience in network security engineering, with at least 5 years of experience in proxy and DLP solutions.
• Experience working in or with financial institutions, with a strong understanding of regulatory and compliance requirements.
• Hands-on experience with Microsoft Defender, Palo Alto Prisma Access, and Netskope solutions.
• Proven track record of collaborating with audit and compliance teams and executing control testing.
• Deep knowledge of proxy protocols (HTTP/HTTPS, SOCKS) and DLP principles.
• Expertise in firewall configuration, secure web gateways, and SASE architecture.
• Strong scripting skills (Power Shell, Python, etc.) for automation and orchestration.
• Familiarity with Zero Trust frameworks and architectures.
• Excellent problem-solving and analytical skills.
• Effective communication and stakeholder management skills.
• Background and drug screen.

• Experience with IDS and IPS (Intrusion Detection System and Intrusion Prevention System).
• Certifications such as CISSP, Palo Alto PCNSE, Microsoft SC-200, Netskope Certified Cloud Security Administrator (NCCSA), or similar.
• Experience in environments transitioning from traditional proxy services to cloud-based solutions.
• Knowledge of compliance standards such as PCI DSS, NIST, ISO 27001, and NYDFS.

Working conditions consist of a normal office environment. Work is primarily sedentary and requires extensive use of a computer and involves sitting for periods of approximately four hours. Work may require occasional standing, walking, kneeling and reaching. Must be able to lift 10 pounds occasionally and/or negligible amount of force frequently. Requires visual acuity and dexterity to view, prepare, and manipulate documents and office equipment including personal computers.

Requires the ability to communicate with internal and/or external customers.

Employee must be able to perform essential functions and physical requirements of position with or without reasonable accommodation.

The base pay scale for this position in Phoenix, AZ;
Chicago, IL; and San Francisco, CA is $131,000 - $192,000 per year, depending on experience and location. Employees are eligible for a discretionary incentive plan and benefits. This pay scale is subject to change and is not necessarily reflective of actual compensation that may…