×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Sr. Network Security Engineer; Hybrid - Seattle, WA

Job in Seattle, King County, Washington, 98127, USA
Listing for: Nordstrom
Full Time position
Listed on 2026-06-04
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 142000 - 220500 USD Yearly USD 142000.00 220500.00 YEAR
Job Description & How to Apply Below
Position: Sr. Network Security Engineer (Hybrid - Seattle, WA)
###
** Job Description
** You will be part of a team of highly skilled security and infrastructure professionals responsible for designing, operating, and automating the network security controls that protect Nordstrom's enterprise. The ideal candidate thinks in automation first, understands how networks actually work, and brings deep expertise in cloud security, identity, and access. You will partner closely with engineers, architects, and platform teams to execute on both strategic and day-to-day security goals.
** A Day in the Life
*** Design, deploy, and operate network security controls across enterprise, cloud (AWS, Azure, GCP), and retail edge environments
* Implement and maintain zero-trust network access (ZTNA) policies, microsegmentation, and perimeter security using tools like Zscaler, Palo Alto Networks, and cloud-native NGFWs
* Build and maintain automation pipelines for security policy management, firewall rule lifecycle, and compliance validation — treating infrastructure as code
* Collaborate with cloud, platform, and application teams to integrate security at the network layer without blocking delivery velocity
* Serve as a subject matter expert for authentication and authorization frameworks: 802.1X, EAP-TLS, RADIUS/Clear Pass, certificate management, and IAM integrations
* Monitor, triage, and respond to network security events; drive root cause analysis and long-term remediation
* Author engineering documentation, threat models, and security runbooks; contribute to architecture reviews
* Mentor engineers across the NIO organization on security best practices and automation patterns
* Participate in on-call rotation for critical security infrastructure
** More About You
*** You approach every problem with an automation-first mindset — if you're doing something twice, you're already writing the script
* You understand the network well enough to implement security without needing a network engineer in the room — you can read a routing table, troubleshoot a VLAN, and reason about traffic flows
* You've operated security in cloud environments and understand how AWS Security Groups, Azure NSGs, cloud NGFW, and service mesh fit into a layered defense model
* Authentication and authorization are not just check boxes to you — you have strong opinions about certificate life cycles, EAP methods, and identity-aware policy enforcement
* You communicate clearly with both engineers and executives, translating complex security posture into business risk
* You thrive in ambiguity, work with urgency during incidents, and bring calm, structured thinking under pressure
* Passionate about continuous improvement and raising the security bar across teams you work with
** Qualifications
* ** Bachelor's or master's degree in Computer Science, Engineering, Cybersecurity, or equivalent education and experience
* 7+ years of progressive enterprise security engineering experience with demonstrated depth in network security domains
* Hands-on experience with cloud security architecture across two or more major cloud platforms (AWS, Azure, GCP, OCI) — including cloud NGFW, VPC security controls, and private connectivity patterns
* Strong automation and IaC experience:
Python, Terraform, Ansible, or equivalent — you write production-grade automation, not one-off scripts
* Deep expertise in network security technologies: next-gen firewalls (Palo Alto), ZTNA/SWG (Zscaler), IDS/IPS, and DDoS mitigation
* Strong working knowledge of authentication and authorization: 802.1X, EAP-TLS, RADIUS, Clear Pass/ISE, SAML, OAuth, and PKI/certificate management
* Solid foundational network knowledge: TCP/IP, BGP, SD-WAN concepts, VLAN segmentation, DNS, and routing protocols — enough to own security outcomes independently
* Experience with security policy-as-code, CI/CD pipelines for network security changes, and Git Ops workflows
* Effective written and verbal communication; able to produce clear RCAs, architecture docs, and executive summaries
** Nice to Have
*** Experience with Versa SD-WAN security policy, Juniper Mist access policy, or Fastly/edge security controls
* Familiarity with SIEM platforms, SOAR workflows, or security data pipelines…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search