NetApp logo

Network Security Engineer

NetApp
16 hours ago
Full-time
On-site
North Carolina, United States

Job Summary

As a member of our Engineering Security Operations Team, the Network Security Engineer plays a critical role in protecting our enterprise infrastructure and enabling secure delivery of business services. This position owns and operates core security and traffic-management platforms, leads vulnerability identification and remediation across on-prem and cloud environments, and drives automation and continuous improvement of security operations.

 

The ideal candidate combines strong hands-on network/security engineering skills with disciplined vulnerability management, clear documentation, and the ability to coordinate effectively across Engineering, IT, and business teams.

Job Requirements

Vulnerability Management (On-Prem & Cloud)

  • Operate and maintain vulnerability scanning tools (Rapid7, Wiz) to identify, validate, and prioritize vulnerabilities across networks, servers, endpoints, containers, and cloud resources.
  • Triage findings, eliminate false positives, determine exploitability/business impact, and define remediation guidance aligned to risk.
  • Identify and drive remediation of weak credentials and insecure authentication patterns across environments (including detection, rotation, and hardening actions).
     

Perimeter, Network, and Traffic Security Operations

  • Administer Palo Alto firewalls, including policy management, NAT, threat prevention, logging/monitoring, and rulebase hygiene.
  • Manage F5 load balancers, including secure configuration, TLS/cipher posture, certificate lifecycle, and traffic flow changes.
  • Collaborate with teams to design and implement secure network segmentation and access controls.
     

IAM / PAM / Least Privilege

  • Enhance identity and privileged access controls focusing on least privilege, access governance, and secure workflows.
  • Administer PAM and secrets management platforms (CyberArk, Conjur), including onboarding, policy configuration, rotation, and integrations.
  • Remediate over-privileged access and implement role-based access patterns.
     

Remediation Coordination & Risk Ownership

  • Drive remediation efforts with Engineering, IT, and business owners, ensuring vulnerabilities are addressed within SLAs.
  • Provide actionable remediation plans, validate fixes, and document residual risk.
  • Participate in architecture and design reviews to prevent recurring issues and improve security-by-design outcomes.Participate in architecture and design reviews to improve security-by-design outcomes.
     

Asset Inventory & Security Standards

  • Maintain and improve asset inventories and security standards, ensuring systems are discoverable, owned, classified, and covered by security controls.
  • Define and enforce baseline configuration standards for network/security devices and infrastructure components.
     

Rapid Response & Incident Support

  • Support rapid response activities for security events, including investigation support, containment recommendations, emergency changes, and post-incident corrective actions.
  • Partner with SOC/IR functions and Global Security to enhance detections, logging, and response playbooks.
     

Metrics, Reporting, and Documentation

  • Develop and maintain dashboards and metrics for vulnerability posture, remediation performance, firewall/load balancer changes, and control coverage.
  • Produce regular reporting for leadership, translating technical findings into business risk and prioritized action.
  • Create and maintain clear documentation for security assessments, configurations, procedures, and remediation activities.
     

Tooling, Automation, and Continuous Improvement

  • Drive tooling selection, integration, and automation for security activities (scanning, reporting, ticketing, policy validation, compliance evidence, and operational tasks).
  • Improve operational efficiency through scripting, infrastructure-as-code patterns, and repeatable processes.
  • Stay current with emerging threats, vulnerabilities, and best practices; refine security policies, standards, and procedures.
     

Education & Experience

Typically requires up to 2 years related experience.

Compensation:
The target salary range for this position is 82,450 - 123,200 USD. The salary offered will be determined by the candidate's location, qualifications, experience, and education and may be outside of this range. Final compensation packages are competitive and in line with industry standards, reflecting a variety of factors, and include a comprehensive benefits package. This may cover Health Insurance, Life Insurance, Retirement or Pension Plans, Paid Time Off, various Leave options, Performance-Based Incentives, employee stock purchase plan, and/or restricted stocks (RSU’s), with all offerings subject to regional variations and governed by local laws, regulations, and company policies. Benefits may vary by country and region, and further details will be provided as part of the recruitment process.