JMS Talent Acquisition LLC
Network Security Engineer
JMS Talent Acquisition LLC, Los Angeles, California, United States, 90079
Overview:
A high-performing professional services firm is seeking a skilled and proactive
Network Security Engineer
to join its Information Technology team. This is a critical role for an experienced engineer who thrives in a fast-paced environment and is passionate about protecting digital infrastructure and driving forward modern network and cybersecurity practices.
You'll begin by assessing and strengthening the existing network architecture, and then transition into a security-centric role focused on maintaining the confidentiality, integrity, and availability of enterprise systems. This hands-on position is ideal for someone who enjoys solving complex challenges and building secure, scalable, and resilient IT infrastructure.
Key Responsibilities:
Design, implement, and manage Layer 2/Layer 3 network infrastructure, including advanced switching, routing, and inter-VLAN routing.
Configure routing protocols such as BGP, OSPF, and static routes to ensure high performance and availability.
Administer VLANs, spanning tree, and link aggregation technologies (e.g., LACP, EtherChannel).
Manage firewall policies, NAT rules, and VPN configurations on platforms such as Palo Alto and Meraki.
Implement network segmentation and least-privilege architectures aligned with Zero Trust principles.
Enforce secure access protocols, including MFA, SSO, and conditional access within Microsoft 365 and VPN environments.
Maintain and optimize email/web security tools (e.g., Mimecast, Forcepoint) to combat advanced threats.
Deploy and support endpoint protection systems (e.g., SentinelOne) to secure user devices.
Monitor network behavior and security events using tools like Darktrace, SolarWinds, and Nessus.
Utilize SIEM platforms, IDS/IPS, and vulnerability management systems to detect and respond to threats.
Investigate and respond to security incidents with urgency and thorough documentation.
Work cross-functionally with infrastructure, applications, and support teams to resolve complex technical issues.
Provide escalation support and root cause analysis for WAN/LAN, wireless, and fiber optic issues.
Contribute to business continuity through network resiliency, testing, and failover strategies.
Support compliance audits, client security reviews, and internal risk assessments.
Stay current with evolving cybersecurity threats, tools, and best practices. Qualifications:
Bachelor's degree in Computer Science, Information Systems, or a related field preferred (or equivalent hands-on experience).
At least 5 years of experience in networking, security, or IT infrastructure roles.
Strong command of networking protocols (TCP/IP, DNS, DHCP, BGP) and security best practices.
Hands-on experience with enterprise-grade firewalls, VPNs, and endpoint security solutions.
Familiarity with cybersecurity frameworks and standards (e.g., NIST, CIS, ISO 27001).
Proven diagnostic and troubleshooting skills across both networking and security domains.
Professional certifications (CISSP, CISM, CEH, CCNP Security, etc.) are a plus.
Experience in professional services or legal environments is preferred.
Employment Type: Full-Time, Non-Exempt
Work Environment: Century City, CA (Hybrid - 5 days onsite for first 90 days, then 3 days onsite / 2 days remote)
#LI #Hybrid
A high-performing professional services firm is seeking a skilled and proactive
Network Security Engineer
to join its Information Technology team. This is a critical role for an experienced engineer who thrives in a fast-paced environment and is passionate about protecting digital infrastructure and driving forward modern network and cybersecurity practices.
You'll begin by assessing and strengthening the existing network architecture, and then transition into a security-centric role focused on maintaining the confidentiality, integrity, and availability of enterprise systems. This hands-on position is ideal for someone who enjoys solving complex challenges and building secure, scalable, and resilient IT infrastructure.
Key Responsibilities:
Design, implement, and manage Layer 2/Layer 3 network infrastructure, including advanced switching, routing, and inter-VLAN routing.
Configure routing protocols such as BGP, OSPF, and static routes to ensure high performance and availability.
Administer VLANs, spanning tree, and link aggregation technologies (e.g., LACP, EtherChannel).
Manage firewall policies, NAT rules, and VPN configurations on platforms such as Palo Alto and Meraki.
Implement network segmentation and least-privilege architectures aligned with Zero Trust principles.
Enforce secure access protocols, including MFA, SSO, and conditional access within Microsoft 365 and VPN environments.
Maintain and optimize email/web security tools (e.g., Mimecast, Forcepoint) to combat advanced threats.
Deploy and support endpoint protection systems (e.g., SentinelOne) to secure user devices.
Monitor network behavior and security events using tools like Darktrace, SolarWinds, and Nessus.
Utilize SIEM platforms, IDS/IPS, and vulnerability management systems to detect and respond to threats.
Investigate and respond to security incidents with urgency and thorough documentation.
Work cross-functionally with infrastructure, applications, and support teams to resolve complex technical issues.
Provide escalation support and root cause analysis for WAN/LAN, wireless, and fiber optic issues.
Contribute to business continuity through network resiliency, testing, and failover strategies.
Support compliance audits, client security reviews, and internal risk assessments.
Stay current with evolving cybersecurity threats, tools, and best practices. Qualifications:
Bachelor's degree in Computer Science, Information Systems, or a related field preferred (or equivalent hands-on experience).
At least 5 years of experience in networking, security, or IT infrastructure roles.
Strong command of networking protocols (TCP/IP, DNS, DHCP, BGP) and security best practices.
Hands-on experience with enterprise-grade firewalls, VPNs, and endpoint security solutions.
Familiarity with cybersecurity frameworks and standards (e.g., NIST, CIS, ISO 27001).
Proven diagnostic and troubleshooting skills across both networking and security domains.
Professional certifications (CISSP, CISM, CEH, CCNP Security, etc.) are a plus.
Experience in professional services or legal environments is preferred.
Employment Type: Full-Time, Non-Exempt
Work Environment: Century City, CA (Hybrid - 5 days onsite for first 90 days, then 3 days onsite / 2 days remote)
#LI #Hybrid