[Remote] Senior Principal Security Engineer - East Coast or Midwest
Note: The job is a remote job and is open to candidates in USA. MKS Inc. is seeking a Senior Principal Security Engineer to partner with various teams to enhance the company's internal network and data communications systems. The role focuses on designing and implementing secure network protocols and driving the enterprise security architecture roadmap.
Responsibilities
- Owning and driving the enterprise Zero Trust and SASE security architecture roadmap, ensuring alignment with business and regulatory requirements
- Designing, implementing, and evolving secure data communications networks, including on-prem, cloud and hybrid environments with AWS and Microsoft Azure
- Defining and enforcing network segmentation strategies across IT and OT environments to reduce risk and support operational resiliency
- Owning the enterprise network security architecture and continuously improving designs based on industry standards, emerging threats, and organizational needs
- Serving as the primary Subject Matter Expert (SME) for network security best practices, standards, and procedures
- Acting as a technical escalation point for complex network security issues across engineering, operations and partner teams
- Defining, implementing, and governing network security standards and best practices across the enterprise infrastructure
Skills
- Bachelor's Degree or Trade Certification in Computer related fields preferred or equivalent work experience
- Minimum 12+ years of experience in Security and Networking technology environments
- Experience with network and security platforms including ClearPass, Solar Winds, Cisco Umbrella, Infoblox, Cisco Thousand Eyes, and Prisma
- Strong hands-on experience in establishing security policy governance and designing, deploying, and managing firewall solutions using Fortinet and Palo Alto firewalls
- Ability to take and follow directions and instructions
- Ability to interact with other employees, customers, suppliers, vendors, or the public, in a safe, professional, and respectful manner
- Access to sensitive and confidential business systems and software, personally identifying information, the company's financial information, and/or the ability to maintain physical security and safety
- Trustworthiness, reliability, and good judgment
- Industry certifications such as PCNSA/PCNSE, CCNP, or CISSP or equivalent
- Remote access technologies (SSL, IPSec) and site-to-site VPN
- Network Skills: TCP/IP, routing protocols (EIGRP,BGP,MPLS,IPSec VPN), Layer2/3 switching and VLAN configuration, Firewall security policy
- Familiar with authentication services: Radius, TACACS/TACACS+, 802.1x
Benefits
- This position is eligible for a discretionary annual bonus, in an amount to be determined by MKS [or as applicable].
- MKS offers a comprehensive benefits package, including health insurance coverage (medical, dental and vision), 401(k) with company match, life and disability insurance, 12 paid holidays, sick time, 15 paid vacation days, [6 weeks fully paid] parental leave, adoption assistance and tuition reimbursement [and for participation in any stock programs, signing bonus, etc.
Company Overview
Company H1B Sponsorship