Network Engineer III - Remote

Paradigm is an accountable specialty care management organization focused on improving the lives of people with complex injuries and diagnoses. They are seeking a full-time, remote Network Engineer III responsible for the analysis, design, implementation, administration, and support of the company's firewall and network infrastructure.

Responsibilities:

• Design, implement, administer, and support enterprise firewall‑centric network infrastructure, including firewall platforms, routing, switching, and wireless technologies
• Engineer, configure, and maintain firewall policies, NAT rules, VPNs, and network segmentation to support business, security, and compliance requirements
• Implement secure network connectivity solutions across on‑premises data centers, cloud environments, and third‑party integrations
• Evaluate and improve network designs to enhance resiliency, scalability, and security posture
• Monitor firewall and network performance, availability, and capacity to ensure optimal operation of the enterprise environment
• Perform system tuning, troubleshooting, and maintenance of multi‑site network infrastructure
• Serve as a senior escalation point for complex firewall and network incidents
• Perform root cause analysis and implement corrective and preventive actions
• Implement and maintain network security controls aligned with Paradigm security standards and Zero Trust principles
• Partner with Information Security and GRC teams to support audits, risk assessments, and compliance initiatives
• Identify and remediate network vulnerabilities, misconfigurations, and security risks
• Participate in firewall and network‑related security incident response and remediation efforts
• Identify tasks necessary to achieve project goals and provide accurate work effort estimates
• Lead or contribute to complex network initiatives including upgrades, migrations, firewall refreshes, and modernization projects
• Execute network changes in accordance with established change management and operational processes
• Coordinate activities with internal teams and external vendors to ensure successful delivery of network solutions
• Create and maintain accurate documentation of firewall & network architectures, firewall configurations, and operational procedures
• Contribute to the development and enforcement of network standards, best practices, and lifecycle management processes
• Remain current on networking, firewall, and security technologies and recommend improvements aligned with business needs
• Work as part of a team of infrastructure engineers who collectively demonstrate strong technical competency and operational reliability
• Provide guidance and mentorship to junior network engineers
• Collaborate closely with server, cloud, application, and security teams to deliver integrated infrastructure solutions

Requirements:

• Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field preferred, or equivalent experience
• 6+ years of progressive experience in enterprise network engineering roles, with demonstrated senior‑level responsibility for firewall and network platforms
• Proven experience designing, implementing, and operating firewall‑centric network solutions in production environments
• Experience serving as a technical lead or primary owner for firewall and network initiatives, including upgrades, policy redesigns, or security‑driven changes
• Demonstrated experience supporting enterprise‑scale, multi‑site, or regulated environments
• Owning and operating next‑generation enterprise firewall platforms (e.g., Palo Alto, Fortinet, Check Point, or equivalent), including policy lifecycle management, platform upgrades, and high‑availability designs
• Advanced, hands‑on expertise with enterprise firewall platforms, including: Security policy design and lifecycle management, VPN technologies (site‑to‑site and remote access), NAT, segmentation, and traffic inspection
• Strong expertise in enterprise networking fundamentals, including: Routing and switching architectures, Network resiliency and high‑availability design, Core network services (DNS, DHCP)
• Demonstrated ability to independently design and execute firewall and network changes in production environments
• Experience integrating on‑premises firewall and network infrastructure with cloud platforms (Azure and/or AWS)
• Operational support of firewall and network controls protecting cloud workloads, including ingress/egress security, private connectivity, hybrid routing, and traffic inspection between on‑premises and cloud environments
• Proficiency with network monitoring, logging, troubleshooting, and packet analysis tools
• Experience making risk‑based decisions related to firewall policy, segmentation, and network security controls in partnership with Information Security teams
• Strong understanding of network security principles, including Zero Trust concepts and defense‑in‑depth
• Experience assessing risk, implementing security controls, and participating in security incident response related to firewall and network infrastructure
• Ability to perform root cause analysis and implement long‑term corrective actions following incidents or outages
• Experience operating firewall and network platforms in regulated or compliance‑driven environments
• Experience leading or materially influencing firewall policy redesigns, segmentation initiatives, or security‑driven network changes
• Familiarity with firewall or network automation, configuration standardization, and infrastructure‑as‑code approaches (e.g., policy templating, version control, or CI/CD‑aligned change workflows)
• Experience acting as a technical mentor or escalation resource for junior network engineers
• Relevant industry certifications, including firewall vendor certifications and/or CCNP‑level networking certifications