Apply on Employer Site

AEG Vision · 2 days ago

Sr. Network & Security Engineer

Addison, TX

Full-time

Onsite

Senior Level

$100K/yr - $120K/yr

7+ years exp

AEG Vision is seeking a Sr. Network and Security Engineer who will implement network strategies to support business needs securely and cost-effectively. The role involves administration, support, and troubleshooting of various network technologies, including Fortinet firewalls, VPNs, and cloud security solutions.

Health CareHome Health CareHospitalMedicalMedical Device

Responsibilities

Design, implement, and support Fortinet firewalls (FortiGate), VPNs, security policies, HA, and micro-segmentation

Manage FortiSwitch and FortiAP environments including VLANs, Wi-Fi, QoS, and secure segmentation

Utilize FortiAnalyzer and FortiManager for centralized logging, reporting, and configuration management

Support FortiMail for secure email, anti-phishing, and anti-spam

Build and maintain Fortinet SD-WAN for multi-site connectivity and carrier diversity

Administer Cato VPN / Cato SASE for user and site connectivity

Engineer multi-carrier BGP for high availability, redundancy, and traffic engineering

Troubleshoot complex connectivity issues across sites, cloud, and remote users

Support Cisco MDS Fibre Channel switches, zoning, and fabric management

Collaborate with storage/server teams to ensure reliable SAN performance

Configure and support F5 load balancers including VIPs, pools, SSL offload, and monitoring

Manage Kemp LoadMaster appliances for internal and external workloads

Partner with application owners to design highly available, load-balanced solutions

Support VMware networking (vSphere, vCenter, vDS, NSX), VLANs, routing, and micro-segmentation

Assist with performance tuning and capacity planning

Configure Cloudflare DNS, WAF, Zero Trust, CDN, and DDoS protections

Optimize Cloudflare rules to enhance both security and performance

Maintain LogicMonitor (or similar tools) for monitoring and alerting

Build observability across SNMP, NetFlow/sFlow/IPFIX, syslog, and dashboards

Support CrowdStrike endpoint protection and coordinated remediation

Onboard log sources into a next-gen SIEM and fine-tune alerts, correlation rules, dashboards, and detection workflows

Contribute to network/SOC runbooks, standards, and escalation paths for 24×7 monitoring

Act as Tier 3/4 escalation for complex network and security incidents

Manage incidents, changes, and problems using ITSM tools (e.g., Zendesk)

Document network topologies, design standards, IP schema, and firewall/SD-WAN policies

Create knowledge base articles and support documentation for operational excellence

Participate in an on-call rotation and support after-hours deployments

Work closely with teams across cloud, security, DevOps, helpdesk, field services, and application groups

Translate technical concepts into clear communications for both technical and non-technical audiences

Qualification

Fortinet expertiseBGP routingLoad balancingVMware networkingCloudflare knowledgeMonitoring toolsITSM toolsNetwork segmentationDocumentation skillsCross-functional collaboration

Required

7+ years of experience in enterprise or multi-site network and infrastructure engineering

Fortinet expertise including FortiGate (policies, VPNs, SD-WAN, HA, segmentation/micro-segmentation), FortiSwitch, FortiAP, FortiAnalyzer, FortiManager, and FortiMail; experience with Fortinet deployments and migration projects

SASE & VPN experience with Cato or comparable cloud-based SASE/VPN platforms

Advanced routing skills, including hands-on multi-carrier BGP for redundant ISP connectivity and failover

Strong experience in network segmentation and micro-segmentation (Fortinet, VMware NSX, or similar)

Hands-on experience with Cisco MDS Fibre Channel switches in SAN environments

Proficiency with load balancing, including F5 and Kemp LoadMaster

Strong VMware networking background (vSphere/vCenter, vDS, VLANs, routing, NSX or similar)

Working knowledge of Cloudflare (DNS, WAF, CDN, reverse proxy)

Practical experience with enterprise monitoring and security tools, including: LogicMonitor or similar NMS/NPM, SNMP, NetFlow/flow monitoring, CrowdStrike, syslog ingestion, and NG-SIEM platforms

Experience serving as a Tier 3/4 escalation resource and incident lead for complex network/security issues

Experience using Zendesk or similar ITSM tools for incident, request, and change management

Experience contributing to or helping build a NOC/SOC or network monitoring function

Strong understanding of core network technologies including TCP/IP, routing (BGP/OSPF), switching, VLANs, STP, QoS, VPNs, and firewall rule design/segmentation

Excellent cross-functional collaboration and communication skills, with the ability to translate technical concepts for varied audiences

Strong documentation skills, including network diagramming (Visio, Lucidchart, etc.)

Proven ability to lead medium-to-large infrastructure projects from design through implementation