Network Security Engineer II

Rackspace Technology is a multicloud solutions expert that combines expertise with leading technologies to deliver end-to-end solutions. The Network Security Engineer II will lead the management of firewall systems, provide tier 3 support for network issues, and collaborate with customers to design secure solutions.

Responsibilities:

• Multi-Vendor Firewall Management: Lead the migration, configuration, and maintenance of Cisco ASA (Classic) and Firepower (FTD) systems, while managing a robust Palo Alto environment via Panorama
• Application Delivery & Security: Design and manage F5 BIG-IP solutions, focusing on LTM (Local Traffic Manager) for load balancing and ASM/WAF (Application Security Manager) for protecting web applications
• Software-Defined Networking (SDN): Implement and manage micro-segmentation policies and virtualized security services within VMware NSX (T/V) environments
• Legacy to Next-Gen Migration: Architect strategies to transition legacy Cisco ASA rulesets to Cisco Firepower or Palo Alto NGFWs without service disruption
• Tier 3 Support: Act as the highest escalation point for complex network outages, security breaches, or performance degradation across the global fabric
• Provide exceptional customer support via the phone and ticketing system
• Own level-appropriate customer requests and issues, seeing them through to resolution
• Own support escalations from other engineers and support teams according to escalation procedures
• Collaborate with Service Delivery Managers and Account Executives to build strong customer relationships
• Work closely with customers in the pre-implementation process to design and architect desired customer solutions
• Work closely with the implementation team to quality check deployments and perform initial vulnerability assessment as part of the customer environment acceptance process
• Research, plan and coordinate complex maintenance activities
• Participate in Root Cause Analysis (RCA) exercises to drive process & technology improvements
• Collaborate and share knowledge with other administrators and engineers via articles and training presentations
• Contribute to the development of technical best practices for administrative responsibilities
• Prepare and review defined policy and process standards
• Ability to communicate effectively, both verbally and in writing, with customers as well as with internal stakeholders. Including preparing and presenting to customers electronically as well as on-site
• Must be able to work a flexible schedule, 24x7x365 coverage, including holidays and weekends

Requirements:

• Advanced knowledge of Cisco ASA (CLI/ASDM) and Firepower Threat Defense (FTD) managed via FMC
• Deep experience with Palo Alto NGFW features (App-ID, User-ID, SSL Decryption)
• Proficiency in F5 BIG-IP, including iRules development, SSL offloading, and traffic steering
• Hands-on experience with VMware NSX, specifically in configuring distributed firewalls (DFW) and edge gateways
• Mastery of TCP/IP, BGP, OSPF, and deep packet inspection
• CCNA Security – Required
• Intermediate level professional experience in network security engineering
• Demonstrated experience managing complex firewall rule bases (10,000+ rules) across disparate platforms
• Expertise in troubleshooting complex asymmetric routing issues and application-level latency in a multi-vendor environment
• Ability to communicate effectively, both verbally and in writing, with customers as well as with internal stakeholders
• Must be able to work a flexible schedule, 24x7x365 coverage, including holidays and weekends
• CCNP Security – Highly Preferred
• Specialist certifications in Firepower or ASA are a significant plus
• PCNSE (Palo Alto Networks Certified Network Security Engineer) – Highly Preferred
• F5-CTS (Certified Technology Specialist)
• VCP-NV (VMware Certified Professional – Network Virtualization)