Optomi · 12 hours ago
Lead Network Security Engineer
United States
Full-time
Remote
Senior Level, Lead/Staff
$175K/yr - $210K/yr
5+ years expOptomi is partnering with a client specializing in IT infrastructure and cybersecurity solutions, seeking a Lead Network Security Engineer. This high-impact, client-facing role involves designing, deploying, and optimizing Cisco product stacks, alongside implementing advanced security capabilities like Zero Trust and SASE.
Human ResourcesInformation TechnologyRecruiting
Responsibilities
Product Expertise: Depending on the project, will serve as the Subject Matter Expert for Cisco and perhaps Palo Alto Networks/Fortinet product stacks, leading implementation, optimization, and troubleshooting engagements
If you come with Palo Alto Networks expertise: Deep experience with NGFWs (PAN-OS), Panorama, Prisma Access (SASE/ZTNA), Prisma Cloud (CSPM/CIEM), and Cortex XDR/XSOAR.If expIf
If you come with Fortinet expertise: Deep experience with FortiGate NGFWs (FortiOS), FortiManager, FortiAnalyzer, FortiEDR, FortiSASE, and other elements of the Fortinet Security Fabric
Security Architecture & Migration: Design and deploy secure, high-availability, and scalable network and cloud security architectures. Lead complex projects to migrate clients from legacy firewalls (or from one vendor to the other) while minimizing business disruption
Zero Trust and SASE Implementation: Architect and deploy advanced capabilities like Zero Trust Network Access (ZTNA) and Secure Access Service Edge (SASE) using vendor-specific platforms (e.g., Prisma Access, FortiSASE)
Advanced Feature Configuration: Implement and optimize critical security features, including advanced URL filtering, IPS/IDS, SSL decryption, WildFire/FortiGuard integration, SD-WAN overlays, and VPN tunneling (IPSec/SSL)
Security Architecture & Design: Architect enterprise-level security solutions, ensuring all deployments adhere to security best practices, industry compliance standards (e.g., NIST, ISO 27001), and a fundamental Zero Trust security model
Implementation & Optimization: Execute hands-on configuration, integration, and fine-tuning of platforms to maximize threat prevention capabilities (e.g., App-ID, User-ID, WildFire, Threat Prevention)
Client Advisory & Training: Act as a subject matter expert, providing post-implementation knowledge transfer, technical mentorship, and high-quality documentation to client engineering and SOC teams
Advanced Troubleshooting: Utilize deep knowledge of network protocols (TCP/IP, BGP, OSPF, VPNs) and security telemetry to diagnose and resolve complex multi-domain technical issues in high-pressure client environments
Qualification
Required
Minimum 5 years of hands-on experience in a dedicated cybersecurity engineering or consulting role
Minimum 3 years of deep, demonstrable experience in designing, deploying, and managing a significant portion of the Palo Alto Networks OR Fortinet product stacks (NGFW is mandatory; additional expertise in Cortex/FortiEDR and/or Prisma/FortiCNP is highly desired)
Expert-Level Firewall Proficiency: Demonstrated ability to configure, troubleshoot, and manage complex environments using both Palo Alto Networks and Fortinet
Solid understanding of core security principles across multiple domains (e.g., CIA Triad, Zero Trust, MITRE ATT&CK, Network, Cloud, IAM, GRC, Application Security)
Advanced knowledge of networking fundamentals (L2/L3 routing, switching, VPNs, IPSEC, PKI) as they relate to network security implementation
Proven ability to work independently, manage project timelines, and deliver high-quality technical documentation and client reports
Excellent verbal and written communication skills, with the ability to clearly articulate complex technical issues to both technical and executive audiences
Must actively hold and maintain at least one of the below certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE) or Fortinet Network Security Expert Level 7 (NSE 7) or higher
Preferred
Consulting experience is highly preferred for this role, as it ensures familiarity with the cadence and nature of the industry
Deep experience with NGFWs (PAN-OS), Panorama, Prisma Access (SASE/ZTNA), Prisma Cloud (CSPM/CIEM), and Cortex XDR/XSOAR for Palo Alto Networks expertise
Deep experience with FortiGate NGFWs (FortiOS), FortiManager, FortiAnalyzer, FortiEDR, FortiSASE, and other elements of the Fortinet Security Fabric for Fortinet expertise
Experience with SASE & Zero Trust Solutions
Preferred (Plus): CISSP, CISM, Fortinet NSE 8, Palo Alto PCCSE, or CCIE Security
Company
Optomi
OPTOMI is an IT staffing firm that serves its consultants, clients, and employees through its consultant-focused approach.
501-1000 employees
H1B Sponsorship
Optomi has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)
2024 (6)
2023 (2)
2022 (5)
2021 (8)
2020 (7)
Funding
Current Stage
Late StageLeadership Team
Todd Black
Co-Founder & Board Member
Amber Castleberry
Vice President of Talent
Recent News
2025-09-24
2024-05-31
2024-05-24
Company data provided by crunchbase