More jobs:
SENIOR IT Professional-Infrastructure; Network Firewall
Job in
Houston, Harris County, Texas, 77020, USA
Listed on 2026-06-14
Listing for:
City of Houston, TX
Full Time
position Listed on 2026-06-14
Job specializations:
-
IT/Tech
Cybersecurity, Systems Engineer, Network Security
Job Description & How to Apply Below
POSITION OVERVIEW
Applications accepted from: ALL PERSONS INTERESTED
Job Classification: SENIOR IT PROFESSIONAL-INFRASTRUCTURE (Network Firewall)
Posting Number: 38576
Division:
Enterprise Infrastructure Services
Reporting
Location:
611 Walker, Houston, TX 77002
Workdays &
Hours:
MONDAY - FRIDAY 8:00 AM - 5:00 PM
* * Subject to Change
DESCRIPTION OF DUTIES / ESSENTIAL FUNCTIONS
The Houston Information Technology Services (HITS) Network & Data Services team supports an infrastructure that consists of more than 350 sites spread across the City of Houston (COH). This includes thousands of network devices and multiple datacenters, which collectively support the needs of over 20,000 city employees and 23 city departments, including mission-critical public safety services. This Senior IT Professional position is crucial to helping the City of Houston to develop and maintain a robust, resilient, and secure network infrastructure.
* Serves as the senior technical lead for the organization's firewall security infrastructure, overseeing design, configuration, and lifecycle management of Cisco Secure Firewall Management Center (FMC), Firepower Threat Defense (FTD) appliances, and cloud-native firewall solutions.
* Designs and implements advanced firewall policies-including Access Control, Intrusion Prevention (IPS), Security Intelligence, URL filtering, and SSL/TLS decryption-to ensure secure, reliable access to critical business systems while maintaining least-privilege network segmentation.
* Administers and maintains FMC/FTD platforms, including upgrades, patches, HA configurations, failover testing, health monitoring, performance tuning, and compliance with operational standards.
* Engineers and manages cloud-based firewall controls across Azure, AWS, and similar platforms, ensuring policy consistency, secure connectivity, and alignment with organizational cloud security frameworks.
* Leads threat-prevention tuning, log analysis, and event correlation, integrating firewall telemetry with SIEM/SOAR platforms and supporting incident response through expert troubleshooting and containment actions.
* Designs, deploys, and supports site-to-site and remote-access VPN solutions, coordinating with network teams to ensure successful routing, NAT, and high-availability connectivity.
* Conducts firewall rule audits, cleanup initiatives, risk assessments, and change control reviews to maintain compliance with regulatory and internal security standards.
* Develops automation tools and scripts using APIs, Python, or Power Shell to streamline firewall operations, reduce manual effort, and enforce configuration consistency across on-prem and cloud environments.
* Works closely with networking, security, cloud, and application teams to support new project deployments, provide subject matter expertise, and ensure secure architecture decisions.
* Creates and maintains documentation, runbooks, topology diagrams, and operational processes, while mentoring junior staff and delivering knowledge-sharing sessions across the IT organization.
The position requires familiarity with the following:
* Hands-on experience administering Cisco Secure Firewall technologies, including Firepower Threat Defense (FTD), Firepower Management Center (FMC), and Cisco Identity Services Engine (ISE) integrations.
* Strong background in designing, implementing, and maintaining enterprise firewall policies, IPS/IDS tuning, URL filtering, threat-prevention controls, and secure segmentation strategies.
* Experience managing and engineering cloud-based firewall solutions within Microsoft Azure, Amazon Web Services (AWS), or other public cloud environments.
* Demonstrated proficiency in high-availability firewall deployments, failover testing, clustering, and performance optimization in mission-critical environments.
* Experience with site-to-site and remote-access VPN architecture, routing technologies (such as BGP), and NAT design across complex hybrid networks.
* Knowledge of SIEM/SOAR integration, log analysis, traffic inspection, and network threat-hunting practices.
* Proficiency with automation or scripting (Python, Power Shell, API-based tools) for policy management, configuration standardization, and operational efficiency.
* Experience supporting large technology environments within government, public safety, utilities, transportation, or similarly complex organizations.
* Strong documentation skills, including the development of standard operating procedures, diagrams, and technical standards.
WORKING CONDITIONS
This position is physically comfortable; the individual has discretion about walking, standing, etc. There are no major sources of discomfort in a normal office environment.
May include planned after-hours changes and on-call rotation for critical incidents.
Coordination across multiple teams and vendors; occasional travel for data center or cloud projects as required.
MINIMUM REQUIREMENTS
EDUCATION REQUIREMENTS
Requires a Bachelor's degree in Computer Science, Management and…
Position Requirements
10+ Years
work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×