Skip to content
Kargo

Network Security Engineer

Design and implement secure network architectures across cloud, on-premise, and edge/IoT environments. Configure firewalls, VPNs, and manage security operations, incident response, and compliance initiatives.

San Francisco, CASecurity EngineeringHybrid3+ YOE
Apply

About the role

Responsibilities

Network Security Architecture & Engineering

  • Design and implement secure network architectures across cloud, on-premise, and edge/IoT environments.
  • Configure and maintain firewalls, VPNs, network segmentation, NAC, and secure remote access solutions.
  • Evaluate and deploy new security technologies and controls.

Security Operations & Incident Response

  • Monitor network activity and security alerts.
  • Investigate suspicious activity, security events, and potential breaches.
  • Lead containment, remediation, and post-incident reviews.

Vulnerability Management & Risk Reduction

  • Oversee vulnerability assessments, penetration testing, and security reviews.
  • Prioritize and remediate identified risks and security gaps.
  • Maintain security hardening standards and best practices.

Cloud & Infrastructure Security

  • Secure cloud infrastructure, network connectivity, and identity/access controls.
  • Partner with Infrastructure and Engineering teams to embed security into deployments and operations.
  • Support secure scaling of systems, services, and environments.

IoT/Edge Networking/Security

  • Implement zero-touch provisioning and secure identity management for edge hardware to ensure fleet integrity.
  • Architect secure, low-latency remote access and mesh VPN solutions for intra-fleet communication, field support and fleet maintenance.
  • Work with customers for networking integration.

Governance, Compliance & Security Enablement

  • Support compliance initiatives (SOC 2, ISO 27001, NIST, etc.).
  • Develop security policies, standards, and documentation.
  • Provide security guidance and training to internal teams.

Requirements

  • 3+ years of experience in network security, cybersecurity engineering, or infrastructure security roles.
  • Strong knowledge of networking protocols and technologies including TCP/IP, DNS, DHCP, VPN, routing, and switching.
  • Hands-on experience with security technologies such as firewalls, endpoint protection, and vulnerability management tools.
  • Experience securing cloud environments such as AWS or Google Cloud Platform.
  • Bachelor's degree in Computer Science, Cybersecurity, Information Security, Computer Engineering, or a related technical field.

Nice-to-Haves

  • Hands-on experience with software defined mesh VPN systems like WireGuard, Tailscale, etc.
  • Familiarity with security frameworks and compliance standards such as SOC 2.
  • Strong incident response, threat detection, and security troubleshooting skills.
  • Relevant certifications such as CISSP, CCNP Security, Security+, GSEC, or equivalent.

Skills

Network SecurityTCP/IPDNSDhcpVpnRoutingSwitchingFirewallsAWSGCPVulnerability ManagementEndpoint ProtectionSOC 2ISO 27001Nist

Similar roles

Security Engineering jobs
Vercel

Product Security Engineer

Product Security Engineer driving threat modeling, secure code review, open-source security, SDLC tooling, and bug bounty management for Vercel's web platform built on Next.js and Node.js. Requires 5+ years securing web products with strong JavaScript/Node.js and cloud security expertise.

United StatesSecurity EngineeringRemote5+ YOESASTDAST
AKASA

IT Security Operations Engineer

IT Security Operations Engineer responsible for implementing DLP, email security, endpoint protection, Okta/Google Workspace hardening, automation, compliance evidence collection, and incident response in a hybrid healthcare AI startup.

150k – 190kSan Francisco, CASecurity EngineeringHybrid4+ YOEGoDlp
Novig

Security Engineer

Build and maintain security automation pipelines, AI agents, SOAR/SIEM integrations, vulnerability management, and IAM systems for a sports prediction market platform.

150k – 200kNew York, NYSecurity EngineeringOn-site5+ YOECdkIAM
Metropolis

Security Engineer II

Security Engineer II responsible for monitoring security alerts, responding to incidents, administering enterprise security tools, and supporting cloud and identity security initiatives. Requires 3+ years in cybersecurity or related fields with strong scripting and troubleshooting skills.

105k – 150kLos Angeles, CASecurity EngineeringOn-site3+ YOEAWSmacOS
Metropolis

Security Engineer II

Security Engineer II responsible for monitoring and responding to security alerts, administering enterprise security tools, supporting vulnerability and IAM programs, and securing cloud environments. Requires 3+ years in cybersecurity or related fields and scripting experience.

115k – 160kNew York, NYSecurity EngineeringOn-site3+ YOEAWSmacOS