The Company

NorthMark Compute & Cloud (NMC²) is backed by dedicated leadership and investment, with a clear mission as it operates at the bleeding edge of technology. Its goal is to scale and enhance the high-performance computing (HPC) and cloud infrastructure that supports its clients’ research, production, and delivery, enabling breakthroughs that shape the industries of tomorrow. Its engineers build critical infrastructure to eliminate friction in scientific research, simulations, analysis, and decision-making, accelerating discovery and driving faster innovation.

The Position

The Network Security Engineer is a hands-on technical role within NMC²’s centralized Security Engineering organization, responsible for designing and maintaining the network security infrastructure that protects our hyperscale HPC and cloud compute environment. This role plays a direct part in building the controls, automation, and operational practices that keep NMC²’s infrastructure secure at scale.

You would be responsible for designing, implementing, and maintaining the organization's network security architecture and controls. Reporting to the Manager of Network and Infrastructure Security, this role serves as a technical subject matter expert for network security, driving initiatives that protect the organization's infrastructure from internal and external threats. The ideal candidate combines deep technical expertise with a collaborative mindset and a proactive approach to identifying and mitigating risk.

Responsibilities:

• Design, implement, and maintain network security architecture including firewalls, IDS/IPS, VPNs, and related controls across on-premises and cloud environments

• Serve as the team's primary subject matter expert for network security technologies, providing guidance and technical direction on complex security challenges

• Evaluate and recommend new network security technologies and solutions to continuously improve the organization's security posture

• Collaborate with infrastructure, cloud, and IT operations teams to ensure network security controls are integrated into new and existing environments

• Monitor network security events and alerts, investigate anomalies, and lead response efforts for network-based threats

• Develop and maintain network security standards, policies, and technical documentation

• Support network segmentation and micro-segmentation efforts by providing technical expertise on traffic flows, access controls, and policy enforcement

• Participate in security architecture reviews for new projects, systems, and third-party integrations to ensure network security requirements are addressed

• Mentor junior security engineers and contribute to the overall growth and development of the network security team

Requirements:

• 5+ years of experience in network security engineering, with hands-on experience across trusted, untrusted, and DMZ environments

• Strong understanding of network protocols and the OSI model, with practical experience in TCP/UDP-based applications, routing, switching, and load balancing

• Experience securing both on-premises and cloud network environments (AWS, Azure, or GCP)

• Solid knowledge of network security technologies including firewalls, VPNs, proxies, MACsec, IPsec, HTTPS, certificate chains, DNS, NTP, AAA, and domain-based authentication and authorization

• Experience with one or more leading security vendors such as Palo Alto, Fortinet, Check Point, or F5

• Familiarity with Zero Trust principles, network segmentation, and secure cloud networking in AWS or Azure

• Hands-on experience with scripting and automation using Python, Ansible, or Terraform

• Excellent communication skills with the ability to document technical findings and present recommendations to both technical and non-technical audiences

Nice to Have:

• Experience with VxLAN EVPN data center architecture

• Background in SOC operations or working with MSSPs

• Firewall automation experience