Aspira · 1 week ago
Senior Cloud Network Security Engineer
Dallas, TX
Full-time
Hybrid
Senior Level
7+ years expAspira is a market-leading provider of software and services that help public agencies protect natural and cultural resources. The Senior Cloud Network Security Engineer is responsible for implementing and operating secure hybrid-cloud network infrastructures, executing the company's security strategy, and providing technical depth to security and operations teams.
CommunitiesGovernmentHospitalityInformation TechnologyInternetInternet of ThingsLeisureTourismTravel
No H1B
Responsibilities
Design and implement secure connectivity across AWS VPCs, Transit Gateway, ExpressRoute, and Direct Connect, in alignment with policies and standards defined by the Director of Information Security
Support hybrid integration of Dallas and China office networks with AWS workloads through site-to-site VPNs, IPSec tunnels, and Direct Connect
Enforce segmentation strategies (subnets, VLANs, security groups, NACLs) using AWS Network Firewall for cloud workloads and Palo Alto/Cisco ASA for on-prem environments, aligned with zero-trust principles
Configure and manage next-gen firewalls (Palo Alto Panorama, Cisco ASA/Meraki, Fortinet) across cloud and on-prem environments
Deploy and operate AWS-native firewall/security controls (AWS Network Firewall, WAF, Shield)
Implement and tune intrusion detection, DDoS mitigation, and endpoint-aware access policies under guidance from the Director
Ensure all logs, flows, and firewall telemetry are ingested into SIEM platforms (Rapid7, LogRhythm, Splunk) as required by security governance
Utilize AWS CloudWatch, CloudTrail, GuardDuty, and Security Hub for visibility and detection
Tune and maintain security alerts for anomalies, IAM misconfigurations, and suspicious traffic
Act as Tier 3 escalation point for complex network/security incidents, reporting incident summaries and remediation outcomes back to the Director of Information Security
Provide technical evidence and reporting to support audits, insurer requirements, and customer security reviews
Support compliance frameworks (NIST, PCI, SOC 2, CIS benchmarks) with security controls and operational evidence
Contribute to security KPIs, including SIEM coverage across assets, MTTR for incidents, and SLA compliance for patching
Build and manage Infrastructure as Code (Terraform, Ansible, CloudFormation) for secure, repeatable deployments
Embed automated security controls into CI/CD pipelines under direction of the Director’s security roadmap
Continuously optimize cost and performance of cloud networking through automated enforcement of routing, peering, and inspection policies
Partner with DevOps, IT Ops, and AppSec teams to integrate secure networking into projects and migrations
Mentor junior engineers and analysts, aligning daily practices with security policies and standards
Provide architecture recommendations to the Director of Information Security and contribute input during design reviews
Qualification
Required
7-10 years in network engineering, with at least 4+ years in cloud networking/security
Deep technical knowledge of AWS (VPC, Transit Gateway, Direct Connect, GuardDuty, Security Hub)
Hands-on experience with Palo Alto (Panorama), Cisco ASA/Meraki, and Fortinet firewalls
Strong understanding of routing (BGP, OSPF), load balancing, and hybrid troubleshooting
Proficiency in automation/scripting (Terraform, Ansible, Python, Bash, CloudFormation)
Familiarity with compliance standards (NIST 800-53, PCI DSS, SOC2, CIS)
Preferred
AWS Security Specialty
AWS Advanced Networking Specialty
PCNSE
CCNP Security
Company
Aspira
Aspira's technology helps you manage campground reservations, hunting/fishing licenses, and more.
501-1000 employees
Funding
Current Stage
Late StageTotal Funding
unknown2021-04-23Acquired
Leadership Team
Glenn Wilson
Chief Technology Officer
Dan McGrew
CFO
Recent News
2025-04-01
Globe Newswire
2024-03-21
Company data provided by crunchbase