Key skills
AkamaiSDLCLeadershipMentoringCommunicationCollaborationNetwork SecurityFirewall
About this role
Ferguson is a leading provider of quality supplies across various industries, and they are seeking a Network Security Engineer to enhance their security posture. The role involves operating and improving security platforms to protect enterprise networks, addressing complex security issues, and collaborating with different teams to drive secure outcomes.
Responsibilities:
- Operation and administration of global Network Security platforms supporting enterprise and data center environments
- Act as a technical authority and support point for complex network security issues involving customer concerns impacting enterprise, data center, and hybrid environments
- Drive secure‑by‑design outcomes by partnering with Architecture, Infrastructure, SOC/NOC, and Application teams to influence designs, standards, and implementation approaches
- Ensure network security services are reliable, scalable, well‑documented, and aligned with business and risk objectives
- Contribute to the evolution of network security capabilities through technology evaluation, service enhancement, and process optimization
- Engineer, administer, and optimize next‑generation firewall environments, including security policy management, network segmentation, intrusion prevention, and SSL/TLS decryption
- Administer and enhance DNS security services, including policy design, threat protection, and reporting
- Lead or support the deployment and operation of SD‑WAN security controls, wireless intrusion prevention, and DDoS protection platforms
- Develop and execute security test plans based on architectural designs; identify deficiencies and implement improvements while minimizing production impact
- Serve as a subject‑matter expert for firewall, DNS security, SD‑WAN, and related network security technologies
- Respond to security incidents, service requests, and escalations, ensuring resolution within defined service levels
- Create and maintain runbooks, operational documentation, and workflows to improve consistency, reliability, and operational maturity
- Support mergers and acquisitions through network security assessments, discovery activities, remediation planning, and secure integration design
- Advocate for new or enhanced network security services and contribute technical requirements to technology selection and evaluation processes
- Drive operational efficiencies and automation that enable the team to focus on higher‑value engineering work
- Deliver assigned initiatives on time and in alignment with service level expectations
- Adhere to all applicable policies, standards, and procedures, and perform other duties as assigned by management
Requirements:
- Bachelor's degree in computer science, Information Security, MIS, or a related field, or equivalent practical experience
- 4 - 7 years of hands‑on experience in network security engineering within large enterprise environments
- Demonstrable experience managing and operating large‑scale next‑generation firewall policies for complex enterprises; experience with Palo Alto Networks Panorama and/or Versa Director preferred (other NGFW platforms considered)
- Strong practical experience with DNS security (Cisco & Palo Alto Networks), DDoS protection (Akamai Prolexic), wireless security (Cisco Meraki), VPNs, and SD‑WAN technologies
- Deep understanding of network and web protocols, routing (e.g., BGP), firewall architectures, intrusion prevention, and network segmentation
- Experience supporting enterprise security assessments, remediation efforts, and modernization initiatives
- Strong analytical and troubleshooting skills, with the ability to resolve sophisticated, ambiguous problems
- Excellent written and verbal communication skills, including the ability to explain technical concepts to non‑technical audiences
- Demonstrated ability to work independently, take initiative, and provide technical leadership through mentoring, documentation, and fostering collaboration
- Working understanding of the SDLC and QA lifecycle, and how network security integrates into modern delivery practices
- Demonstrated integrity, curiosity, adaptability, and a strong customer‑focused approach
- Certifications are not required but are valued (e.g., CCNA, SSCP, CISSP)