Network Security Engineer

Insight Global is seeking a Network Security Engineer will join a specialized security team responsible for protecting enterprise network boundaries with Check Point firewalls as the primary security control. This role focuses on the design, administration, and operational support of Check Point firewall policy and IPS capabilities, while also supporting cloud‑based security services and remote access platforms as complementary technologies. The ideal candidate has strong hands‑on experience with firewall operations and troubleshooting, a solid networking foundation, and the ability to support layered security architectures in a large enterprise environment.

Responsibilities listed below:

• Administer, maintain, and optimize Check Point firewalls to ensure secure and reliable enterprise perimeter and internal network protection.
• Design, implement, and manage firewall security policies to enforce least‑privilege access, segmentation, and secure traffic flows.
• Support security incident response efforts by analyzing firewall logs, traffic patterns, and threat prevention events.
• Troubleshoot complex network and security issues related to firewall policy behavior, traffic flows, NAT, and routing.
• Operate and maintain Check Point IPS
  , ensuring protections are enabled and aligned with organizational security standards.
• Participate in firewall architecture reviews, rulebase optimization, and planned changes to support evolving business and security requirements.

• Support Zscaler Internet Access (ZIA) as the enterprise web proxy and content filtering platform.
• Assist with the deployment, configuration, and ongoing operation of Zscaler Private Access (ZPA) for zero‑trust remote connectivity.
• Support enterprise deployment and health of the Zscaler Client Connector, including troubleshooting user connectivity issues.
• Use Zscaler Digital Experience (ZDX) to help identify performance and end‑user experience issues.
• Maintain and troubleshoot Cisco Any Connect/Cisco Secure Client VPN headends using Cisco Firepower Threat Defense (FTD) hardware as managed by Cisco Firepower Management Center (FMC) as a secondary VPN solution.
• Provide operational support for Cisco FTD in IDS use cases.

• Maintain accurate documentation, including security standards, SOPs, and network/security diagrams.
• Ensure firewall and security platform configurations align with the NIST Cybersecurity Framework.

• Strong experience with Check Point firewalls
• Versions R81.20 or R82
• Cisco Any Connect and Cisco Secure Client

(plus if also have FTD, FMC, and/or firewall policy management)

• Networking:
  Strong understanding of TCP/IP, DNS, VPN technologies
• Security Framework:
  Familiarity with NIST Cybersecurity Framework

• Hands-on experience with Check Point firewall policy design and deployment (policy creation, troubleshooting, log analysis).
• Hands-on experience with Cisco client VPN solutions, Cisco FMC, and Cisco FTD technologies.
• Exposure to Zscaler and the zero‑trust framework

Ability to work effectively in a fast‑paced environment and collaborate across technical teams

$45/hr to $60/hr.

Exact compensation may vary based on several factors, including skills, experience, and education.