Sr Network Security Engineer

Senior Network Security Engineer (SNSE) – Contract 6 Months (Extension Likely) – Rate: $65–$80/hr – Work Model:
Hybrid – minimum 3 days onsite / 2 days remote – Preferred Locations:
Sugar Land, TX
· Atlanta, GA
· Chicago, IL

Seeking a senior, L3 level Network Security Engineer with strong depth in enterprise network security, not a NOC/SOC or BAU profile. This role requires experienced judgment, the ability to design and execute security solutions, and strong communication in complex environments.

• Design, implement, and support enterprise network security solutions
• Own and operate firewalls, IDS/IPS, and DDoS mitigation technologies
• Define and execute network security architecture and technology roadmaps
• Identify, plan, and implement security improvements across the environment
• Serve as a subject matter expert for network perimeter and security engineering
• Configure and deploy new network and security technologies
• Monitor networks and systems for threats using SIEM, vulnerability management, and endpoint security tools
• Evaluate new threats and determine impact to IT and business operations
• Ensure compliance with security policies, standards, and controls
• Partner with infrastructure, security, and operations teams on large initiatives
• Support incident response, major incident troubleshooting, and on‑call rotation
• Maintain detailed documentation (diagrams, configurations, procedures)
• Collaborate with vendors and internal teams on projects and issue resolution
• Mentor junior engineers and promote best practices

• Bachelor’s degree in IT, Computer Science, Engineering, or related field
• 10+ years overall IT experience
• 5+ years hands‑on information security experience
• Strong experience with:
  • Firewalls, IDS/IPS, network security platforms
  • Enterprise networking (TCP/IP, BGP, OSPF, VPN, LAN/WAN/WLAN)
• Proven ability to operate independently, resolve ambiguity, and prioritize work
• Strong analytical, problem‑solving, and communication skills
• Experience supporting production environments and high‑availability systems
• Advanced experience with Microsoft enterprise tools

• Cloud platforms:
  Azure, AWS, GCP
• Security platforms:
  Zscaler (ZTNA), WAFs
• Firewall technologies:
  Cisco, Palo Alto, Forti Gate, Checkpoint, Juniper
• Enterprise‑scale environments managing 100+ firewalls
• Identity & Access Management (IAM): SAML, SCIM, OAuth, OpenID
• Network services: DNS, DHCP, RADIUS, VLANs, Wi Fi
• Endpoint protection (e.g., SCCM)
• Operating systems:
  Windows & Linux

• Security certifications (CISSP, CCSE/CCSA, CISM, GIAC, CEH, Fortinet NSE, PCNSE, ZCE, etc.)
• 5+ years with Network Access Control (e.g., Cisco ISE)
• Network automation experience (Ansible, Terraform, Puppet)
• Enterprise monitoring tools (Solar Winds Orion)
• Experience with QoS, Multicast, packet analysis (Net Flow, IP SLA)

Team Soft is proud to be an EEOE, M/F/D/V, and we are committed to diversity both in practice and spirit at all levels of the organization.