VPN Engineer jobs in United States
info-icon
This job has closed.
company-logo

Jobs via Dice · 6 hours ago

VPN Engineer

positionRochester, NY
timeFull-time
remoteOnsite
seniorityMid Level

Dice is the leading career destination for tech experts and is seeking a Secure Overlay/VPN Engineer to design, implement, and operate identity-based, encrypted network overlays. The role involves ensuring secure connectivity across various environments and collaborating with teams to align network behavior with security policies.

Computer Software

Responsibilities

Design, implement, and maintain VPN gateways and peer-to-peer secure overlay networks
Support NAT traversal, VPN hole punching, and decentralized peer discovery mechanisms
Optimize encrypted tunnels for latency, jitter, packet loss, and intermittent connectivity
Manage cryptographic identities, including key generation, rotation, and certificate lifecycles
Ensure multicast and control-plane traffic can traverse encrypted overlays when required
Collaborate with SDN, routing, and platform teams to align overlay behavior with network and security policy
Troubleshoot complex overlay networking issues across heterogeneous transports and endpoints

Qualification

WireGuardStrongSwan / IPsecPublic key cryptographyCertificate-based authenticationNAT traversalLinux NetworkingPeer discoverySoft skills

Required

Design, implement, and maintain VPN gateways and peer-to-peer secure overlay networks
Support NAT traversal, VPN hole punching, and decentralized peer discovery mechanisms
Optimize encrypted tunnels for latency, jitter, packet loss, and intermittent connectivity
Manage cryptographic identities, including key generation, rotation, and certificate lifecycles
Ensure multicast and control-plane traffic can traverse encrypted overlays when required
Collaborate with SDN, routing, and platform teams to align overlay behavior with network and security policy
Troubleshoot complex overlay networking issues across heterogeneous transports and endpoints
WireGuard (preferred)
StrongSwan / IPsec
Familiarity with ZeroTier / Tailscale architectural concepts
STUN / TURN / ICE fundamentals
UDP/TCP hole punching strategies
Experience operating across carrier-grade NAT, mobile networks, and constrained links
Public key cryptography
Certificate-based authentication
Secure key management and automated rotation
Network interface configuration and management
Routing behavior and policy-based routing
Understanding of firewall interactions with encrypted tunnels
Peer discovery and membership management
Failure detection and recovery
Autonomous reconnection and self-healing behaviors

Preferred

Secure communications platforms
Peer-to-peer or overlay networking systems
Telecommunications security engineering
Defense, government, or other regulated environments

Company

Jobs via Dice

twitter
company-logo
Welcome to Jobs via Dice, the go-to destination for discovering the tech jobs you want.
people-size0-1 employees
web-link
https://www.dice.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase