Apex Systems · 2 days ago
AWS Network Firewall Engineer
Plano, TX
Contract
Hybrid
Senior Level
$60/hr - $90/hrApex Systems is a world-class IT services company that serves thousands of clients across the globe. They are seeking an AWS Network Firewall Engineer to design, implement, and operationalize AWS Network Firewall infrastructure, ensuring robust security and compliance across multi-account environments.
Human ResourcesInformation TechnologyRecruiting
Responsibilities
Lead the end-to-end architecture of AWS Network Firewall across multi-account, multi-VPC topologies (Transit Gateway/Hub-Spoke)
Define policy management models, rule groups, stateless/stateful rule sets, inspection points, and logging strategies
Integrate with AWS WAF and existing Palo Alto controls (e.g., mapping control coverage, defining policy precedence, and traffic steering)
Stand up AWS Network Firewall infrastructure-as-code (CloudFormation/Terraform), rule group pipelines, and environment baselines
Build traffic inspection patterns (east-west, north-south, egress filtering, TLS decryption strategy where applicable)
Establish centralized logging to CloudWatch, Kinesis, S3, and SIEM with alerting and metrics (threat detections, rule hit counts, packet drops)
Partner with security architecture, app teams, and networking to align on zero trust, segmentation, and least privilege egress
Develop playbooks for detection/response (malicious egress, DNS tunneling, C2 callbacks)
Provide knowledge transfer and training to broaden internal bench strength
Qualification
Required
Hands-on experience designing, implementing, and operationalizing AWS Network Firewall
Experience building reference architectures, guardrails, etc
Lead the end-to-end architecture of AWS Network Firewall across multi-account, multi-VPC topologies (Transit Gateway/Hub-Spoke)
Define policy management models, rule groups, stateless/stateful rule sets, inspection points, and logging strategies
Integrate with AWS WAF and existing Palo Alto controls
Stand up AWS Network Firewall infrastructure-as-code (CloudFormation/Terraform), rule group pipelines, and environment baselines
Build traffic inspection patterns (east-west, north-south, egress filtering, TLS decryption strategy where applicable)
Establish centralized logging to CloudWatch, Kinesis, S3, and SIEM with alerting and metrics
Partner with security architecture, app teams, and networking to align on zero trust, segmentation, and least privilege egress
Develop playbooks for detection/response (malicious egress, DNS tunneling, C2 callbacks)
Provide knowledge transfer and training to broaden internal bench strength
Benefits
Medical
Dental
Vision
Life
Disability
Other insurance plans
ESPP (employee stock purchase program)
401K program
HSA (Health Savings Account on the HDHP plan)
SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions
Corporate discount savings program
Certification prep
Library of technical and leadership courses/books/seminars
Certification discounts
Perks to associations that include CompTIA and IIBA
Company
Apex Systems
Apex Systems, a division of On Assignment, provides organizations with IT staffing solutions to address gaps in their current workforce.
Founded in 1995
1001-5000 employees
H1B Sponsorship
Apex Systems has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (28)
2024 (21)
2023 (35)
2022 (26)
2021 (29)
2020 (38)
Funding
Current Stage
Late StageLeadership Team
Roger Wahman
Chief Technology Officer - SVP
Andrea Schiola
Global Head of Technology Partnerships, SVP, Principal
Recent News
Company data provided by crunchbase