Senior Network Security Engineer

DEPARTMENT OVERVIEW:The Information Technology department provides strategic direction and day-to-day IT operational, software and emerging technology supporting the Red Sox, Fenway Sports Management, the Red Sox Foundation, and FSG Real Estate. Responsibilities include support for corporate and ballpark infrastructure, systems architecture, networks, computer and auxiliary operations, desktop support, data and cyber security, and broadcast cabling and related infrastructure. Provides applications development and support for corporate systems, MLB Ballpark and fan engagement apps, and systems and data architecture.
POSITION OVERVIEW:The Information Technology department is seeking a Senior Network Security Engineer with broad public cloud platform expertise to join the team. While this role is primarily focused on securing on-premises and critical cloud infrastructure, close coordination with the cyber and customer service teams will be required to effectively help secure and manage the endpoint. The Senior Network Security Engineer should thrive in high-pressure situations that require quick problem solving in a datacenter environment.  This role will have an opportunity to provide thought leadership and strategic thinking in every area of the IT organization.  

RESPONSIBILITIES:

• Manage, maintain and administer a multi-platform perimeter security environment primarily powered by Palo Alto delivered technologies.  
• Work with the rest of the systems engineering team to manage and maintain our internal Extreme switching environment.
• Identify opportunities to implement and manage the advanced switching and security features of XOS to prevent common attacks and manage endpoints.
• Assist with the administration of a VMWare based on-premises private compute cloud.
• Design, architect, implement and administer the core network and security services required to support our GCP and Azure focused public compute cloud. 
• Act as the lead engineering resource responsible for all roads coming into and out of our private and public cloud environments, administer all site-to-site VPN’s to facilitate secure communications and to ensure reachability to all services.  
• Work with the Manager of Cybersecurity and the Legal team to perform certain tasks as needed to fulfill various data privacy and compliance mandates.   
• Assist the Manager of Cybersecurity to execute and administer the endpoint and server patch management program.   
• Assist the Manager of Cybersecurity to remediate vulnerabilities discovered in on-premises and cloud infrastructure as discovered by various active and passive scanning technologies. 
• Identify and execute security, productivity and resiliency-focused automation opportunities throughout our entire tech stack.
• Where needed, help administer and troubleshoot our server environment and stadium IoT.    

CHARACTERISTICS/QUALIFICATIONS:

• 6-8 years experience as a network/systems/security engineer.
• Expert knowledge of TCP/IP, routing and switching concepts as well as core network services and protocols.
• Expert knowledge of the Windows operating system, and a solid working knowledge of Linux.  
• Demonstrate a DevSecOps mindset.
• Working knowledge of Kubernetes, Google Stackdriver, Google Cloud Monitoring and Logging, Google Cloud Load Balancer, firewalls and networking concepts is preferred.
• Experience with market leading Observability, alerting, logging and SEIM tooling (Grafana, Splunk, Pagerduty) is a huge plus.
• Have a solid working knowledge of using Powershell, Python, the Graph API to automate tasks or report on the status of critical infrastructure.  
• Demonstrate a passion for technology and security.
• Ability to prioritize tasks, manage time, set reasonable expectations with your teammates and customers, proactively identify and communicate risks, and interact with all levels of the organization where needed. 
• Ability to work in the office 4 days a week and be willing to travel to industry events, cover spring training operations in Fort Myers, FL, and sometimes travel to remote sites where needed to assist with the implementation of new technologies or troubleshooting.

At the Boston Red Sox and Fenway Sports Management, we go beyond embracing diversity. We’re committed to living by our values, strengthening our community, and creating a workplace where people genuinely feel like they belong.  Too often, job seekers don’t apply to positions because they don’t meet every qualification. If you love this role and are great at what you do, we encourage you to apply. Your unique skills and experiences might just be what we’ve been looking for. Prospective employees will receive consideration without discrimination based on race, religious creed, color, sex, age, national origin, handicap, disability, military/veteran status, ancestry, sexual orientation, gender identity/expression or protected genetic information.