Proxy & VPN Security Engineer

Network Security Engineer – Proxy & VPN (Contract)

Location: Plano, TX/Columbus, OH/Jersey City, NJ/ San Francisco, CA(onsite)

Employment Type:9 Months Contract

Job Summary:

We are seeking a Network Proxy and VPN Engineer with 3–5 years of hands‑on experience and strong network engineering skills to execute project work and rollouts for secure web proxy and enterprise VPN solutions. The role centers on delivering project milestones, coordinating cross‑team rollout activities, executing planned changes with clear implementation and rollback steps, and producing concise runbooks and lightweight automation to support deployment and post‑deployment stabilization in a fast‑paced environment.

Job Responsibilities

• Engineers manage their book of work in Agile Scrum by prioritizing the backlog, committing in sprint planning, and delivering in short iterations.
• Execute project‑driven changes for proxies and VPN gateways using standardized change templates and runbooks (policy updates, routing/steering, segmentation, NAT where applicable).
• Build, test, and deploy proxy policies (URL filtering, SSL/TLS inspection where applicable, malware/threat profiles, access controls), including certificate handling, PAC files, and traffic steering.
• Collaborate with network, security, and application teams to align proxy and VPN designs with business and security requirements.
• Develop and maintain concise operational documentation and runbooks; contribute lightweight automation (shell/Python/Ansible) for configuration checks and validation.
• Manage client and stakeholder communications, including consultations, target dates, and expectation setting.
• Contribute to process improvements by updating and creating documentation and runbooks aligned to engineering standards.

Required Skills and Experience (3–5 years):

• Strong networking fundamentals: TCP/IP, routing/switching, VLANs, DNS, load‑balancing concepts, security zones; solid understanding of HTTP/HTTPS and TLS/SSL for web traffic analysis.
• Secure web proxy technologies: experience with on‑prem proxy platforms (e.g., Broadcom/Blue Coat ProxySG or comparable); ability to implement and validate proxy policies and PAC files; skilled with packet captures, HTTP debugging, and log/flow analysis.
• Enterprise VPN: hands‑on with site‑to‑site and/or remote‑access VPNs (IPsec, IKEv2, SSL VPN), including policy, routing, authentication integration, and troubleshooting.
• Practical scripting for operations (bash/shell and/or Python) and simple Ansible playbooks; familiarity with vendor APIs is a plus.
• Experience using SIEM tools for investigation and incident triage.
• Comfortable with change management: concise implementation/rollback plans and post‑change validation.
• Strong problem‑solving, communication, and teamwork.

Preferred Qualifications, Skills, and Capabilities:

• Self-starter who can take initiative and demonstrated collaboration skills in a large enterprise environment
• Strong critical thinking and a results-oriented
• Strong work ethic with a results oriented mindset

Nice to have:

• Exposure to cloud‑delivered ZTNA/SWG SaaS platforms (e.g., Zscaler, Netskope). Support for cloud‑based solutions is not a requirement for this role but is a plus.
• Experience integrating DLP or advanced malware analysis with on‑prem proxies.
• Familiarity with version control for automation artifacts (e.g., Git).

Please share the qualified resumes with anil.reddy@technosphere.com