Job Description - Sr. Network Security Engineer in Chicago
Return to jobs

Sr. Network Security Engineer

Ref: US_EN_6_914778_1424100

Posted on 07 January 2022
Job Location
Chicago, Illinois
Contract Type
Information Systems

Job Title: Senior Network Security Engineer

Industry: Grocer/Retailer

Location: Remote (Based in Austin, TX)

Primary responsibility:  Deployment of Akamai DDoS solution in Chicago and Dallas peering centers.  Research, design and recommend a Web Application Firewall (WAF) solution in Chicago and Dallas as well.  Facilitate the automation of remedial actions/tasks/solutions of enterprise infrastructure vulnerabilities.


· Influencing, building, and assisting with solutions and core security projects related to network connectivity, firewalls, and segmentation

· Managing a network security policy management (NSPM) solution and generate reports

· Audit the NSPM solution to ensure compliance with Security and Compliance guidelines

· Manage security settings implementations to enhance security posture without affecting system availability

· Working closely with application, infrastructure, networking, and security teams to provide guidance on various topics related to network security

· Promoting security practices through cross functional work with Blackbaud’s network, product, and application teams

· Deliver secure network solutions that enable secure operations and highly available products and services for our customers

· Monitoring the general security landscape and researching current trends in the industry to optimize and align our Cyber Security processes to their respective reference frameworks

· Conducting detailed assessments of network security systems and access rules to ensure they are appropriate, secure, and defensible

· Identifying and implementing solutions to complex network security problems

· Participate in project management, planning, and implementation on specialized projects with minimal oversight

· Enhancing Blackbaud’s network security posture to better protect against attacks and detect new threat vectors

· Streamlining operational tasks, such as firewall rule reviews and approvals, as required to better support internal customers while ensuring security is maintained

Preferred Qualifications

  • 10+ years of experience in network, security and DevOps engineering
  • Network Certifications (e.g., CCNP Security, CCIE Security, JNCIP, JNCIE, etc.).
  • Excellent IP networking fundamentals and extensive experience in the application of IP protocols as well as network analysis fundamentals and robust troubleshooting skills.
  • Knowledge of authentication protocols (TACACS, RADIUS, 802.1x, etc).
  • Strong knowledge of Network Protocols: BGP, OSPF, 802.1x, and HTTP/S, TCP/IP, UDP.
  • Strong Knowledge of reading TCP decode and troubleshooting – Wireshark, Sniffer
  • Knowledge and experience with the design and deployment of IDS/IPS technologies.
  • Knowledge and experience with the design and deployment of firewalls and associated maintenance and configuration of rulesets.
  • Strong knowledge of current Network Security Threats, Trends, and Vulnerability Patching and Mitigations.
  • Strong coding skills in multiple common languages (e.g. Salt, Perl, Ansible, Python, Ruby, shell scripting, PowerShell).
  • Experience implementing and supporting Cisco ASA Firewalls
  • Experience implementing and supporting Cisco Firepower
  • Experience and detailed technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security.
  • Excellent written and verbal communication skills.
  • Excellent leadership, teamwork, and collaboration skills.
  • Results-oriented, self-starter, high energy, self-motivated.
  • Excellent written skills – to be able to produce network recommendation document (using MS Word or Adobe PDF) and presentations and network support documentation (Network drawings using Lucidchart or Visio)
  • Major Plus – Strong Network Linux and Unix experience
  • Plus - AWS experience
  • Plus - Open-Source experience
  • You would be working on:

  • FireMon alert and vulnerabilities – remediation of those vulnerabilities
  • Network Segmentation – using Illumio (Micro-segmentation) and internal Cisco 4145 firewall cluster (non-internet facing) to build protective parameter around application internal to WFM trusted network
  • Equal Opportunity Employer/Veterans/Disabled

    To read our Candidate Privacy Information Statement, which explains how we will use your information, please navigate to

    The Company will consider qualified applicants with arrest and conviction records


    Find your local office.

    Modis has over 100 offices in the United States, Canada and Europe. With both industry and location-specific expertise, our people know their area and their labor market and can find the right position for you.