Sr. Network Security Engineer At UKG, security is at the core of everything we do. We are looking for a Sr. Network Security Engineer who has experience in security-related technologies such as Next Generation Firewalls, intrusion detection, Email Security, IPSEC VPN, and Zero Trust Network Architecture technologies to join our team. The Sr. Network Security Engineer will be responsible for designing, implementing, maintaining, and documenting security solutions and related security controls throughout the Enterprise. This includes managing security tools and tasks that will include installing, configuring, and updating hardware and software; establishing and managing user accounts; overseeing or conducting backup and recovery tasks; implementing operational and technical security controls; and adhering to organizational security policies and procedures. Primary/Essential Duties and Key Responsibilities: Review, test, and implement security solutions related to: DLP (e.g., MS Purview, Conditional Access, CASB solutions) Public Cloud (e.g., AWS, Azure, or GCP) ZTNA solutions (e.g., Zscaler, Axis, Prisma Access) DDOS/WAF (e.g., Cloudflare, Silverline, Cloud Armor) Firewalls/IDS/Network Detection and Response tools Assess network security architectures, document findings and recommendations based on industry best practices. Solid understanding of network protocols, including TCP/IP, DNS, DHCP, and routing protocols. Define and review security policies to control access to systems. Experience with firewall administration, VPN configuration, and network intrusion detection/prevention systems. Strong knowledge of security best practices and standards (e.g., ISO 27001, NIST). Relevant certifications such as CISSP, CISA, CISM, or CCNP Security are a plus. Perform implementations and configuration of network security technologies. Apply Zero Trust principles to control network access to resources. Recommend, create, and maintain security configuration baselines to harden systems. Ensure all systems security operations and maintenance activities are properly documented and updated. Automate manual tasks for improved efficiencies (e.g., infrastructure as code). Support Enterprise Risk with audits and compliance initiatives. Assist in developing requirements and driving deliverables. Conduct rule review and evaluation for risk exposure and protection effectiveness within the environment. Support and maintain security architecture and controls that meet or exceed FedRAMP requirements, including boundary protections, encryption, and access control. Collaborate with internal teams and external vendors to ensure that FedRAMP network security controls (NIST 800-53) are designed, implemented, and continuously monitored. Support FedRAMP audit readiness activities including technical evidence collection, system documentation, and implementation of continuous monitoring activities. Develop and maintain network diagrams, security control mappings, and related documentation required for FedRAMP authorization and compliance. Knowledge, Skills and Abilities: Strong knowledge and understanding of both network and application layer firewall concepts. Hands-on experience with Enterprise Class firewalls. Knowledge of security frameworks including NIST, ISO, CIS, OWASP 10, etc. Understanding of SSL/TLS certificates and implementation (Private and Public Key Infrastructure) Working knowledge with PowerShell, Ansible, Terraform, RegEx, Chef or Puppet are preferred. Experience with Public Cloud provider infrastructure, system deployments and product release operations. Excellent written and verbal communication skills. Excellent teamwork and collaboration skills. Results oriented, high energy, self-motivated. Required Qualifications: Minimum five (5) years of experience in a Network Security Engineering role working with Firewalls, DDOS/WAF, IPS and ZTNA. Bachelor's or Master's in Information Systems, Information Security, or related fields; preferred but not required. Industry-recognized Security certification such as CSSP, CISSP, or Security+, etc., preferred experience with FedRamp. Where we're going UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it's our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow! Equal Opportunity Employer UKG is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, disability, religion, sex, age, national origin, veteran status, genetic information, and other legally protected categories.