Network Security Engineer (SASE/ZTNA)
United States
Full-time
3 days ago
$82,000 - $110,000 USD
H1B Sponsor Likely
Key skills
NetskopeSASEZTNASD-WANPythonSNMPSIEMGrafanaCisco Secure Client802.1XPowerShellBashWindows 10/11Routing protocolsProxy configurationCloud servicesAWSAzureGCPGoogle CloudDockerPrismaSaaSCI/CDCommunicationCritical ThinkingNetwork SecurityZero TrustFirewall
About this role
General Dynamics Information Technology is a global technology and professional services company. They are seeking a Network Security Engineer to support the advancement of their secure access infrastructure, focusing on transitioning to a modern SASE architecture and managing security operations.
Responsibilities:
- Assist in deploying and managing SASE/SSE components, including Secure Web Gateways (SWG), Cloud Access Security Brokers (CASB), Firewall-as-a-Service (FWaaS), SD-WAN, and Zero Trust Network Access (ZTNA)
- Support the migration from legacy Cisco Secure Client environments to identity-centric Zero Trust models, ensuring a smooth transition and troubleshooting any challenges
- Write and understand API scripts (e.g., Python, PowerShell, Bash) for automating manual tasks, pulling security telemetry, and integrating Netskope or other cloud-native services
- Diagnose and resolve traffic flow issues, PAC file misconfigurations, transparent proxies, and SSL inspection challenges
- Utilize Wireshark or tcpdump to troubleshoot complex network paths, including latency, packet loss, and SSL/TLS issues
- Resolve issues involving VLANs, NAT, 802.1X supplicants, DNS, and SaaS/COTS applications
- Collaborate on integrating SD-WAN with SASE platforms for secure traffic steering and optimal performance
- Manage and monitor network health using SNMP, SIEM, Grafana, and syslog tools
- Troubleshoot network connectivity issues within Docker/Linux environments
- Maintain firewall policies across AWS, Azure, and GCP while managing API-based security integrations with products such as Netskope
Requirements:
- 5+ years in Network/VPN Engineering
- 2+ years hands-on experience with SASE/ZTNA platforms and Cloud services
- Strong critical thinking and problem-solving skills
- Effective communication and teamwork abilities
- Fast learner with the ability to adapt to evolving technologies
- Solid understanding of SD-WAN integration with SSE/SASE frameworks
- Deep understanding of Windows 10/11 network behaviors and troubleshooting on client-side devices
- Strong knowledge of routing protocols, proxy (PAC file configuration), and architecture concepts
- Hands-on experience with Cisco Secure Client (AnyConnect), firewalls, and 802.1X authentication protocols
- Proficiency in tools such as SNMP, SIEM, Grafana, and Docker troubleshooting for monitoring operational health
- Hands-on expertise with solutions, including Netskope, Zscaler, or Palo Alto Networks Prisma Access
- Strong experience with scripting and automation using Python, PowerShell, or Bash
- Certifications such as CCNP Security, NSE4, Zscaler Certified Cloud Engineer, or equivalent are highly desirable
- Familiarity with secure DevOps principles and CI/CD in cloud environments
- Experience securing hybrid cloud workloads across AWS, Azure, and Google Cloud