Hybrid Network Security Engineer Firewall & Policy Management
Title: Network Security Engineer - Firewall & Policy Management Pay Rate Range: $60.00 - $71.00/hr. (DOE) Employment Type: Contract 6 Months Schedule: Full-time, Monday-Friday 7:00AM - 3:00PM Location: Elma, NY - Hybrid -(2 remote days and 3 days onsite, training may differ) Job Code: 1942
Overview
Tekberry is seeking an experienced Network Security Engineer to support network security operations for our client. This role focuses on firewall engineering, policy design, and security optimization, ensuring secure and compliant network environments. The ideal candidate will have strong hands-on experience with firewall technologies, particularly Palo Alto Networks, and a proven ability to translate business and project requirements into effective security controls. This role requires collaboration across technical and non-technical teams to design, implement, and maintain robust network security solutions. As a Tekberry W2 employee, you will have access to health benefits including medical, dental, vision, and 401(k) options.
Key Responsibilities
Firewall Engineering & Security Operations
- Design, implement, and maintain secure firewall policies aligned with business and security requirements
- Perform firewall hardening, including rulebase optimization, risk reduction, and compliance alignment
- Monitor, troubleshoot, and maintain firewall performance and availability
Policy Design & Implementation
- Analyze project and business requirements and translate them into firewall rules and security policies
- Configure and manage firewall rulebases, NAT policies, zones, and security profiles
- Conduct impact analysis and risk assessments for firewall changes
Change Management & Compliance
- Manage firewall changes through structured change control processes
- Support audit remediation and ensure alignment with security compliance frameworks
- Maintain accurate documentation for firewall configurations, rules, and design standards
Collaboration & Project Support
- Partner with project managers, network engineers, and security teams to implement security requirements
- Participate in project planning and execution to ensure secure network design
- Provide guidance on security best practices and risk mitigation
Advanced Security & Optimization
- Support network segmentation and micro-segmentation initiatives
- Contribute to zero trust architecture strategies
- Leverage tools such as Tufin for policy orchestration, analysis, and automation
Qualifications
- Bachelor's degree in Information Technology, Cybersecurity, or related field (or equivalent experience)
- 5-8+ years of experience in network security engineering
- Strong hands-on experience with Palo Alto Networks firewalls (PAN-OS)
- Deep understanding of firewall rulebases, NAT, zones, and security policies
- Experience with firewall hardening, audit remediation, and compliance frameworks
- Proven ability to translate business requirements into technical security solutions
- Strong analytical, troubleshooting, and problem-solving skills
- Experience working in project-based, cross-functional environments
- Excellent communication skills with ability to work across technical and non-technical teams
Preferred Qualifications
- Experience with Tufin or similar firewall policy management tools
- Experience designing and implementing network segmentation or micro-segmentation
- Familiarity with cloud environments (AWS, Azure) and hybrid networks
- Knowledge of zero trust security architecture
Certifications (Preferred)
- Palo Alto Networks Certified Network Security Engineer (PCNSE)
- Palo Alto Networks Certified Network Security Administrator (PCNSA)
- CISSP, CISM, or similar security certifications
- CCNP Security or equivalent networking certification
Work Environment
This role supports a fast-paced, security-focused environment requiring strong collaboration across engineering, security, and project teams. Candidates should be comfortable managing multiple priorities, working independently, and contributing to enterprise-level security initiatives. We need hard-working, reliable professionals. If you are interested in joining a high-impact security team, apply today! Tekberry is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, disability, veteran status, or any other protected category. Tekberry is a certified Minority Business Enterprise (MBE) and a Disadvantaged Business Enterprise (DBE). #INDHP Apply tot his job Apply To this Job