Network Security Engineer

  • United States
  • Full Time

We are seeking a Principal Security Engineer with 10+ years of experience in mid/large-scale global enterprise networking infrastructure. The ideal candidate will have strong expertise in PAN, Aruba, and Arista switches, as well as extensive knowledge of Palo Alto Network firewall configuration and management. The role requires a deep understanding of network high availability and reliability, as well as strong network troubleshooting skills.

Key Responsibilities:

  • Lead the design, implementation, and management of security measures for Astera Labs’ IT, cloud infrastructure, and products.
  • Develop and enforce security policies and procedures to ensure data protection and compliance with industry standards.
  • Conduct security risk assessments, vulnerability analyses, and recommend appropriate mitigation strategies.
  • Oversee incident response planning and conduct breach simulation exercises to test response protocols.
  • Design, implement, configure, and support security solutions and tools such as SIEM, IDPS, IAM, and MDM.
  • Collaborate with cross-functional teams to integrate security best practices into product development and operational processes.
  • Provide mentorship and guidance to junior security engineers and technical staff.
  • Stay current with emerging security threats and technologies, continuously handle company’s security.

Required experience:

  • Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
  • Minimum of 10 years of experience in cybersecurity, with at least 5 years in a senior or lead role.
  • Hands-on experience working with AWS services such as IAM, CloudTrail, CloudWatch, SecurityHub, GuardDuty, Inspector, Shield, WAF, KMS, Secrets Manager, and CloudWatch.
  • In-depth knowledge of security frameworks and compliance standards such as ISO 27001, SOC2, NIST, and CIS.
  • Proficiency in security technologies, including firewalls, intrusion detection/prevention systems, SIEM, and encryption.
  • Experience with securing M365, network, and cloud, particularly in AWS environment.
  • Excellent problem-solving skills and the ability to think critically under pressure.
  • Strong communication and interpersonal skills, with the ability to work effectively with diverse teams.

Preferred experience:

  • CISSP, OSCP, GIAC, and or AWS Certified Security Specialty a plus
  • Experience in the semiconductor industry or with connectivity solutions (PCIe, CXL, Ethernet) is a significant advantage.
  • Active participation in the security community, including contributions to open-source projects, publications, or speaking engagements at security conferences.
  • Knowledge of machine learning and AI security implications.
  • Experience with DevSecOps practices and tools.

This position requires an in-person presence in Santa Clara and offers a unique opportunity to directly impact our global operations. The role also involves occasional weekend, after-hours, and holiday work, and flexibility for remote emergency support. If you have 5-10 years of combined experience in Network Security and Cyber, strong AWS networking skills, and a background in Palo Alto Cortex / MDR, we encourage you to apply.

Feel free to reach out if you have any further questions or require additional information.

Apply now

Submit your details and attach your resume below. Hint: make sure all relevant experience is included in your CV and keep your message to the hiring team short and sweet - 2000 characters or less is perfect.