Network Engineer III - Firewall Specialist

Description

Position Summary

Credit One Bank is seeking a highly skilled Network Engineer III specializing in next-generation firewalls and advanced network security platforms. This role focuses on Palo Alto, FortiGate, Akamai Prolexic DDoS protection, and AWS networking. The ideal candidate is experienced, self-driven, and able to manage complex security and network initiatives in a fast-paced financial environment.

Essential Job Functions

• Design, deploy, and maintain Palo Alto Networks and FortiGate firewalls across datacenter and cloud environments
• Configure security policies, NAT, VPN (IPSec/SSL), threat prevention, URL filtering, SSL decryption, and App-ID
• Deploy and manage Palo Alto User-ID integrations including user mapping, group mapping, and Global Protect
• Implement firewall upgrades, HA failovers, clustering, migrations, and performance tuning
• Utilize Panorama, FortiManager, and FortiAnalyzer for centralized configuration and reporting
• Conduct advanced troubleshooting using packet capture systems, flow analysis, and log correlation tools
• Support routing and switching across datacenter, WAN, and enterprise networks
• Configure and troubleshoot OSPF, BGP, static routing, ECMP, VRRP/HA
• Support and design AWS VPC networking (subnets, route tables, NACLs, SGs)
• Maintain VPN tunnels, Direct Connect, TGW, and routing between AWS and on-prem infrastructure
• Integrate AWS network security with Palo Alto VM-Series firewalls or cloud-native controls
• Configure and support Akamai Prolexic for enterprise DDoS mitigation
• Lead network and security projects end-to-end including planning, design, testing, and implementation
• Collaborate with System, Cloud, Security, Application, and Datacenter teams
• Create diagrams, documentation, standards, and operational runbooks
  
  

Position Requirements

• 6–10 years of enterprise network/security engineering experience
• Strong hands-on experience with Palo Alto firewalls (required)
• Strong hands-on experience with FortiGate firewalls (required)
• Experience with AWS networking (VPC, VPN, DX, TGW)
• Proficiency with Panorama, FortiManager, FortiAnalyzer
• Solid understanding of routing, switching, TCP/IP, VLANs, HA, and VPN technologies
• Ability to perform packet analysis (tcpdump, Wireshark) and interpret logs
• Bachelor’s degree in a technical field or equivalent experience
  
  

Preferred

• Certifications preferred: PCNSE, NSE4/5/7 – Associate, CCNP Security
• Bachelor’s degree in technical field or equivalent experience.
• Automation skills (Python, Ansible, APIs) are preferred and a strong plus
• Financial industry or regulated environmental experience preferred
  
  

Credit One Bank, N.A. is a data-driven financial services company based in Las Vegas. Founded in 1984, Credit One Bank offers a spectrum of credit card products for people in all stages of financial life. Credit One Bank is an equal opportunity employer committed to diversity and inclusion and does not discriminate against any employee or applicant for employment because of age, race, religion, color, disability, sex, sexual orientation, or national origin. Reasonable accommodations can be made for those who require them, including access to job applications and workplace accommodations. Employment at Credit One Bank is based on mutual consent (also known as at-will). This means that employees and the Bank may terminate the employment relationship at any time, with or without cause and with or without notice. Please contact the recruiter for this position to learn more. Credit One Bank does not accept unsolicited resumes from agencies and is not responsible for related fees.