Network Security Engineer, AVP - Blackstone Technology & Innovations

Blackstone is the world’s largest alternative asset manager. We seek to create positive economic impact and long-term value for our investors, the companies we invest in, and the communities in which we work. We do this by using extraordinary people and flexible capital to help companies solve problems. Our $1.1 trillion in assets under management include investment vehicles focused on private equity, real estate, public debt and equity, infrastructure, life sciences, growth equity, opportunistic, non-investment grade credit, real assets and secondary funds, all on a global basis. Further information is available at www.blackstone.com. Follow @blackstone on LinkedIn, Twitter, and Instagram.
 

Business Unit Overview:

Blackstone Technology & Innovations (BXTI) is the technology team at the core of each of Blackstone’s businesses and new growth initiatives. Serving both internal and external clients, we work to build the next generation of systems that manage risk, create efficiency and improve transparency within the firm and across our broad community of investors and portfolio companies.

BXTI is nimble and entrepreneurial – our open, iterative design processes and rapid pace of development mean that everyone on the team has the opportunity to make an impact from day one. We are problem solvers who can take projects from idea to implementation. We believe in active mentoring and developing excellence. We collaborate to find the best answers for our customers and for Blackstone. We are critical to the firm maintaining its competitive edge.

Role:

The Network Security Engineer works as part of the Cybersecurity function to implement, improve, and support Network Security tools. This role requires a blend of network security engineering expertise and proficiency in managing and optimizing security policy.

Responsibilities:

• The candidate will be responsible for the engineering of vendor solutions at Blackstone, including Firewalls, ZTNA (Zero Trust Network Access), SWGs (Secure Web Gateways), Network Segmentation, Access Control, and Cloud Network Security (NACLs, NSGs, etc).

• Provide engineering and security expertise for network security tools and process including policy design, implementation, and governance.

• Provide technical product ownership of tools, setting and managing product roadmaps

• Improve support procedures, standardize, and document rigid processes.

• Leverage infrastructure-as-code frameworks (e.g., Terraform) to provision and maintain tool configurations and infrastructure.

• Analyze network traffic flow using SIEM platforms (e.g., Splunk) to optimize performance, rules, and ensure efficient network operations.

• Implement traditional segmentation policies (firewalling/ACLs) and Zero Trust Network policies, including micro-segmentation.

• Work closely with network architecture teams to evaluate the readiness of new features and functionalities.

Qualifications:

• 7+ years of hands-on technical experience engineering Network Security tools

• Experience with Web Application Firewalls, Network Segmentation, Microsegmentation, Secure Web Gateways, Zero Trust Network Access, Cloud Network Security

• Experience working in a Product Owner capacity with prior tools

• Preferred experience (or similar vendors ) with: Zscaler, Cloudflare, Palo Alto, Fortinet, Cloudgenix, Tufin, Algosec

• Hands-on experience with public cloud providers (AWS preferred) and cloud infrastructure management.

• Experience with infrastructure-as-code frameworks (e.g., Terraform Cloud).

• Ability to write automation scripts and web services (Python, Bash).

• Strong understanding of network protocols and information security best practices.

• Experience working with git source control and CI/CD systems (GitLab CI/CD).

• Good understanding of enterprise architecture, including endpoint, network, and cloud-based systems.

• Experience with SIEM (Splunk) technologies, event correlations, query management, and custom detections. Experience with observability platforms (Grafana)

• B.S. in Information Technology, Computer Science, or a similar technical program.

• Excellent communication skills, with the ability to explain technical concepts to non-technical stakeholders and collaborate effectively with cross-functional teams.

• Strong analytical, problem-solving, and excellent documentation and organization skills.

• Ability to self-organize, prioritize activities independently, and manage uncertainty effectively.

• Experience managing stakeholder expectations in the delivery of projects.

• Adaptability and continuous learning: proactive approach to self-education and flexibility to pivot strategies in response to new information or changing environments.

• Attention to detail: able to thoroughly review configurations and policies, identifying gaps in solution designs prior to implementation.

The duties and responsibilities described here are not exhaustive and additional assignments, duties, or responsibilities may be required of this position.  Assignments, duties, and responsibilities may be changed at any time, with or without notice, by Blackstone in its sole discretion.

Expected annual base salary range:

Actual base salary within that range will be determined by several components including but not limited to the individual's experience, skills, qualifications and job location. For roles located outside of the US, please disregard the posted salary bands as these roles will follow a separate compensation process based on local market comparables.

Additional compensation: Base salary does not include other forms of compensation or benefits offered in connection with the advertised role.

Blackstone is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, sex, pregnancy, national origin, ancestry, citizenship status, age, marital or partnership status, sexual orientation, gender identity or expression, disability, genetic predisposition, veteran or military status, status as a victim of domestic violence, a sex offense or stalking, or any other class or status in accordance with applicable federal, state and local laws. This policy applies to all terms and conditions of employment, including but not limited to hiring, placement, promotion, termination, transfer, leave of absence, compensation, and training.  All Blackstone employees, including but not limited to recruiting personnel and hiring managers, are required to abide by this policy.

If you need a reasonable accommodation to complete your application, please email Human Resources at HR-Recruiting-Americas@Blackstone.com.

Depending on the position, you may be required to obtain certain securities licenses if you are in a client facing role and/or if you are engaged in the following:

• Attending client meetings where you are discussing Blackstone products and/or and client questions;

• Marketing Blackstone funds to new or existing clients;

• Supervising or training securities licensed employees;

• Structuring or creating Blackstone funds/products; and

• Advising on marketing plans prepared by a sales team or developing and/or contributing information for marketing materials.

Note: The above list is not the exhaustive list of activities requiring securities licenses and there may be roles that require review on a case-by-case basis.  Please speak with your Blackstone Recruiting contact with any questions.

To submit your application please complete the form below. Fields marked with a red asterisk * must be completed to be considered for employment (although some can be answered "prefer not to say"). Failure to provide this information may compromise the follow-up of your application. When you have finished click Submit at the bottom of this form.