The Opportunity
"The Senior Cloud Network Security Engineer will be responsible for the continuous improvement of the security and compliance of FICO’s complex cloud and corporate services. This role will lead implementation of Zero Trust within our AWS environments and work cross-functionally with internal Cybersecurity, engineering, operations, corporate and production services teams to deploy, manage, and support network integration with public cloud workloads and infrastructure. " - Cyber Security-Director
What You’ll Contribute
Lead deployment of layer 7 network security services within AWS VPCs, Availability Zones, regions.
Design, Implement and manage scalable security controls and automation in public cloud environments (AWS, Azure, GCP, Oracle).
Architect integration between 3rd party ZTNA services and native AWS constructs like, VPCs, Security Groups, NACLs etc.
Provide technical leadership throughout implementation, configuring policies and managing certificates.
Work closely with infrastructure and security teams on deployment strategies, redundancy, failover. Troubleshoot issues, identify root cause, and drive to resolution.
Proactively monitor and enhance secure transport reliability, scalability, resiliency.
Maintain automation for cloud connectivity lifecycle management.
Collaborate with various teams to continuously improve and optimize integrations.
Serve as a subject matter expert to provide guidance and technical leadership to other staff members and teams outside of Security.
Provide insight and recommendations regarding new tools that mitigate risks, strengthen defenses and reduce vulnerabilities.
Collaborate with other teams on design, analysis, architecture, implementation, Troubleshooting, pen-testing, security reviews and process enhancements.
Mentor/train our developing security engineers and provide technical direction and project leadership.
What We’re Seeking
In-depth experience with network security and connectivity solutions for the cloud.
Strong knowledge of cloud networking and security services and experience deploying secure network ingress/egress services.
Hands on experience with large-scale AWS, Azure, GCP, or Oracle Cloud Infrastructure networking and security constructs.
Experience implementing Zero Trust Network Access solutions such as Zscaler, Palo Alto, Netskope, or similar.
Strong understanding of TLS, routing, IPsec VPN, WAF, and proxy services.
Proficiency with one or more scripting/automation tools like Terraform, CloudFormation, Python, Bash.
Resourceful problem-solver skilled at navigating ambiguity and change.
Customer-focused individual with strong analytical problem-solving skills and solid communication abilities.
Cloud Platform certification like AWS Certified Advanced Networking - Specialty, AWS Certified Security - Specialty and network/security cert like Palo Alto Networks PCNSE and Zscaler ZIA/ZPA professional highly desirable.
Our Offer to You
A culture and work environment strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
The opportunity to make a difference by leveraging your unique strengths.
Highly competitive compensation and rewards.
Flexible work options, opportunities to give back to your community, social events with colleagues and a comprehensive benefits program inclusive of progressive parental leave.
The targeted base pay range for this role is: $133,000 to $209,000 with this range reflecting differences in candidate knowledge, skills and experience.