Sr. Network & Security Engineer at AEG Vision

Addison, Texas, United States -

Full Time

Start Date

Immediate

Expiry Date

20 Feb, 26

Salary

0.0

Posted On

22 Nov, 25

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Fortinet, Network Security, VPN, BGP, Load Balancing, VMware, Cloudflare, Monitoring, Incident Management, Documentation, Collaboration, Troubleshooting, SD-WAN, Fibre Channel, Micro-segmentation, ITSM

Industry

Hospitals and Health Care

Description

The Sr. Network and Security Engineer will work to implement network strategies to support business needs in a secure and cost-effective manner, as well as the ability to perform administration, support, and in-depth troubleshooting of listed technologies. FORTINET NETWORK & SECURITY ENGINEERING * Design, implement, and support Fortinet firewalls (FortiGate), VPNs, security policies, HA, and micro-segmentation. * Manage FortiSwitch and FortiAP environments including VLANs, Wi-Fi, QoS, and secure segmentation. * Utilize FortiAnalyzer and FortiManager for centralized logging, reporting, and configuration management. * Support FortiMail for secure email, anti-phishing, and anti-spam. * Build and maintain Fortinet SD-WAN for multi-site connectivity and carrier diversity. WAN, VPN, SASE & EDGE CONNECTIVITY * Administer Cato VPN / Cato SASE for user and site connectivity. * Engineer multi-carrier BGP for high availability, redundancy, and traffic engineering. * Troubleshoot complex connectivity issues across sites, cloud, and remote users. DATA CENTER & STORAGE NETWORKING * Support Cisco MDS Fibre Channel switches, zoning, and fabric management. * Collaborate with storage/server teams to ensure reliable SAN performance. LOAD BALANCING & APPLICATION DELIVERY * Configure and support F5 load balancers including VIPs, pools, SSL offload, and monitoring. * Manage Kemp LoadMaster appliances for internal and external workloads. * Partner with application owners to design highly available, load-balanced solutions. VIRTUALIZATION & NETWORK VIRTUALIZATION * Support VMware networking (vSphere, vCenter, vDS, NSX), VLANs, routing, and micro-segmentation. * Assist with performance tuning and capacity planning. CLOUD EDGE & SECURITY * Configure Cloudflare DNS, WAF, Zero Trust, CDN, and DDoS protections. * Optimize Cloudflare rules to enhance both security and performance. MONITORING, OBSERVABILITY & SOC SUPPORT * Maintain LogicMonitor (or similar tools) for monitoring and alerting. * Build observability across SNMP, NetFlow/sFlow/IPFIX, syslog, and dashboards. * Support CrowdStrike endpoint protection and coordinated remediation. * Onboard log sources into a next-gen SIEM and fine-tune alerts, correlation rules, dashboards, and detection workflows. * Contribute to network/SOC runbooks, standards, and escalation paths for 24×7 monitoring. ITSM, DOCUMENTATION & OPERATIONS * Act as Tier 3/4 escalation for complex network and security incidents. * Manage incidents, changes, and problems using ITSM tools (e.g., Zendesk). * Document network topologies, design standards, IP schema, and firewall/SD-WAN policies. * Create knowledge base articles and support documentation for operational excellence. * Participate in an on-call rotation and support after-hours deployments. CROSS-FUNCTIONAL COLLABORATION * Work closely with teams across cloud, security, DevOps, helpdesk, field services, and application groups. * Translate technical concepts into clear communications for both technical and non-technical audiences. This person can be located in Dallas, TX or Phoenix, AZ Qualifications * 7+ years of experience in enterprise or multi-site network and infrastructure engineering. * Fortinet expertise including FortiGate (policies, VPNs, SD-WAN, HA, segmentation/micro-segmentation), FortiSwitch, FortiAP, FortiAnalyzer, FortiManager, and FortiMail; experience with Fortinet deployments and migration projects. * SASE & VPN experience with Cato or comparable cloud-based SASE/VPN platforms. * Advanced routing skills, including hands-on multi-carrier BGP for redundant ISP connectivity and failover. * Strong experience in network segmentation and micro-segmentation (Fortinet, VMware NSX, or similar). * Hands-on experience with Cisco MDS Fibre Channel switches in SAN environments. * Proficiency with load balancing, including F5 and Kemp LoadMaster. * Strong VMware networking background (vSphere/vCenter, vDS, VLANs, routing, NSX or similar). * Working knowledge of Cloudflare (DNS, WAF, CDN, reverse proxy). * Practical experience with enterprise monitoring and security tools, including: * LogicMonitor or similar NMS/NPM * SNMP, NetFlow/flow monitoring * CrowdStrike, syslog ingestion, and NG-SIEM platforms * Experience serving as a Tier 3/4 escalation resource and incident lead for complex network/security issues. * Experience using Zendesk or similar ITSM tools for incident, request, and change management. * Experience contributing to or helping build a NOC/SOC or network monitoring function. * Strong understanding of core network technologies including TCP/IP, routing (BGP/OSPF), switching, VLANs, STP, QoS, VPNs, and firewall rule design/segmentation. * Excellent cross-functional collaboration and communication skills, with the ability to translate technical concepts for varied audiences. * Strong documentation skills, including network diagramming (Visio, Lucidchart, etc.). * Proven ability to lead medium-to-large infrastructure projects from design through implementation.

Responsibilities

The Sr. Network and Security Engineer will implement network strategies to support business needs securely and cost-effectively. Responsibilities include administration, support, and troubleshooting of various network and security technologies.