Apply on Employer Site

WebstaurantStore · 3 hours ago

Network Security Engineer - Remote

United States

Full-time

Remote

Senior Level

5+ years exp

WebstaurantStore is a leading source for restaurant equipment and supplies, and they are seeking a Network Security Engineer to join their Cybersecurity team. This role is essential for designing and improving network security controls across the organization’s hybrid infrastructure.

Consumer GoodsIndustrialManufacturingService Industry

Comp. & Benefits

No H1B

Responsibilities

Own the design and implementation of network security controls across on-premises, cloud, and containerized environments, ensuring that segmentation, access controls, and monitoring capabilities align with enterprise security standards and business needs

Serve as the primary security partner to the Network Engineering and Cloud teams, providing expert guidance on secure architectures, connectivity models, and risk mitigation strategies. This includes influencing design decisions and ensuring security is embedded into new and existing infrastructure

Lead initiatives that strengthen network security posture, such as segmenting critical systems, securing DMZ and public-facing zones, improving container network controls, and maturing detection and logging across hybrid environments

Act as a key contributor to the organization’s threat detection strategy by ensuring appropriate network telemetry is collected, normalized, and integrated into the SIEM. Work closely with the SIEM engineer and SOC to improve alerting fidelity and visibility across the network

Drive continuous improvement efforts by reviewing existing configurations and architectures, identifying weaknesses or opportunities, and developing actionable plans to enhance security, resilience, and operational efficiency

Support incident response activities, providing deep network-level expertise during investigations, helping contain threats, and contributing to root-cause analysis and long-term remediation

Develop and maintain comprehensive network security documentation, including architectural diagrams, standards, change records, and incident reports that support audit readiness and ongoing operational excellence

Collaborate cross-functionally with security, infrastructure, and application teams to ensure consistent application of network security controls and to promote a culture of security-first design

Provide mentorship and guidance to junior security staff and partner teams as needed. This role does not have direct reports but may provide technical leadership on projects and influence others across the organization

Qualification

Network Security EngineeringEnterprise Firewall TechnologiesCloud NetworkingNetwork SegmentationSIEM IntegrationIDS/IPS PlatformsRemote Access TechnologiesNetwork Traffic AnalysisContainer SecurityZero Trust PrinciplesScripting/Automation ToolsCommunication SkillsProblem-Solving MindsetCross-Team Collaboration

Required

5+ years of hands-on network security engineering experience, supporting hybrid environments (on-prem, cloud, and containerized platforms)

Deep expertise with enterprise firewall technologies (e.g., Palo Alto, Cisco ASA, Checkpoint), including policy tuning, rule optimization, and secure architecture planning

Strong experience with IDS/IPS platforms, including tuning signatures, interpreting alerts, and improving detection coverage

Proven ability to design and implement network segmentation and micro-segmentation, including creation of secure zones, DMZs, and controlled pathways to reduce lateral movement risk

Hands-on experience with cloud networking and cloud-native security controls, such as AWS Security Groups, Azure NSGs, and secure VPC/VNet architecture

Experience with secure remote access technologies, including VPN configuration, encryption standards, and identity-based access controls

Strong network traffic analysis experience, using tools such as Wireshark, SolarWinds, or Splunk to support threat detection and incident response

Demonstrated success leading or owning security improvement projects, particularly in network segmentation, cloud security, or detection/monitoring initiatives

Experience integrating network telemetry into SIEM platforms and collaborating with SOC/SIEM engineers to improve alert fidelity and visibility

Experience contributing to or supporting incident response, including containment, investigation, and root-cause analysis from a network-security perspective

Access to a reliable and secure high-speed internet connection. Cable or fiber internet connections (at least 75mbps download/10mbps upload) are preferred, as satellite connections often cannot support the technologies used to perform day-to-day tasks

Access to a home router and modem

A dedicated home office space that is noise- and distraction-free. The space should have strong wireless connection or a wired Ethernet connection (wired connection is preferred, if possible)

A valid, physical address (apartment, suite, etc.). PO Boxes are not supported, as a physical address is required for you to receive your computer equipment

The desire and ability to work and communicate with other team members via chat, webcam, etc

Legal residents of one of the following states: (AK, AL, AR, AZ, CT, DE, FL, GA, IA, ID, IN, KS, KY, LA, MD, ME, MI, MN, MO, MS, NC, ND, NH, NM, NV, OH, OK, PA, SC, SD, TN, TX, UT, VA, VT, WI, WV, or WY). H-1B Visa Sponsorship Not Available, W2 only

Preferred

Advanced understanding of securing containerized environments, including network controls between containers, container hosts, and surrounding infrastructure

Strong knowledge of securing public-facing and DMZ environments, including threat-modeling and appropriate layered defenses

Familiarity with Zero Trust principles and modern network security patterns aligned with that approach

Ability to influence architecture decisions across network, cloud, and security teams through clear communication and sound technical judgment

Excellent written and verbal communication skills, including the ability to produce high-quality documentation and explain complex concepts to diverse audiences

A proactive, ownership-driven mindset, with a focus on problem-solving, continuous improvement, and identifying gaps before they become issues

Strong cross-team collaboration and leadership presence, even without formal direct reports—able to guide junior staff and influence partners across the organization

Comfort with scripting or automation tools (e.g., Python, Ansible) to streamline security workflows and enhance consistency in configurations

Benefits

Medical

Vision

Dental

PTO

Paid Maternity Leave

Paid Parental Leave

Life Insurance

Disability

Dependent Care FSA

401(k) matching

Employee Assistance Program

Wellness Incentives

Company Discounts

AT&T & Verizon Discount

Bonus Opportunities

Accident Insurance

Critical Illness Insurance

Adoption Assistance

On-Site Fitness Centers

Dog-friendly Offices

Company

WebstaurantStore

Glassdoor3.9

Since WebstaurantStore's start in 2004, we have worked hard to build an innovative, easy-to-use website that meets the purchasing needs of foodservice professionals throughout the world.

Founded in 2004

Lititz, Pennsylvania, USA

5001-10000 employees

http://www.webstaurantstore.com/

Funding

Current Stage

Late Stage

Leadership Team

Laura Brent

Conversion Rate Optimization (CRO) Lead

Luara Da Silva, MBA

Partnership & Project Coordinator

Recent News

WebstaurantStore expands automation technology with three additional Sparck CVP Impack Solutions

2024-03-06

WebstaurantStore Signs 1.2M-SF Lease at Hagerstown Logistics Park

2024-03-06

Company data provided by crunchbase