Cybersecurity Infrastructure Engineer

EchoStar Corporation (NASDAQ: SATS) is a premier global provider of satellite communication solutions. Headquartered in Englewood, Colo., and conducting business around the globe, EchoStar is a pioneer in communications technologies through its Hughes Network Systems and EchoStar Satellite Services business segments. For more information, visit echostar.com. Follow @EchoStar on Twitter.

Today, our brands include EchoStar, Hughes, DISH TV, Sling TV, Boost Infinite, Boost Mobile, DISH Wireless, OnTech and GenMobile.

EchoStar has an exciting opportunity for a Cybersecurity Infrastructure Engineer in our Hughes Network Systems division. This position plays a critical role in securing our network infrastructure and would be responsible for managing and optimizing our network security systems and applications, driving automation efforts, ensuring compliance, and implementing security best practices across our multi-data center environment. This position will be located at our headquarters in Germantown, MD.

Responsibilities:

• Design, develop, and maintain scripts and tools to automate the configuration, deployment, and management of a large number of physical and virtual firewalls and network infrastructure devices across multiple data centers, significantly improving efficiency and consistency.
• Propose, design, and implement enhancements to the network security infrastructure to improve performance, scalability, reliability, and security posture. This includes addressing performance bottlenecks, scalability limitations, and service architecture administration issues.
• Design, install, configure, and maintain a wide range of network security services, equipment, and devices.
• Plan and support the evolution and expansion of the network security infrastructure to meet business demands and security requirements.
• Apply capacity planning configuration changes proactively to ensure the network security infrastructure can support business growth and peak demands.
• Proactively monitor the health and performance of the network security infrastructure, troubleshoot complex platform, OS, and connectivity issues, and implement effective solutions in a 24x7 mission-critical environment.
• Perform thorough launch testing for new software releases and the introduction of new security features to ensure stability and effectiveness.
• Develop and maintain clear, concise technical documentation and written procedures for identified issues, implemented solutions, and standard operational practices.
• Ensure adherence to security best practices and contribute to maintaining relevant compliance standards within the network security infrastructure.
• Provide timely and effective on-call support outside of business hours as required.
• Coordinate the procurement of network security equipment (physical and virtual), and manage the upgrading, monitoring, testing, and servicing of these systems.

Basic Requirements:

• Bachelor’s degree in Computer Science, Cyber Security, Information Systems, Telecommunications, or related technical field.
• 4 years of hands-on experience in a network security engineering or cybersecurity infrastructure role, with a strong understanding of network principles.
• CompTIA Security+ certification or equivalent industry-recognized security certification.

Preferred Qualifications:

• Proven experience participating in and ideally leading projects involving the implementation of new network security solutions and technologies.
• Solid experience with a range of network security products, including firewalls (e.g., Palo Alto Networks, Cisco ASA), intrusion detection/prevention systems (IDS/IPS), VPNs, and content filtering solutions.
• Strong foundational knowledge of networking principles and protocols, including TCP/IP, routing (e.g., BGP, OSPF), switching, and network segmentation.
• Excellent verbal and written communication skills, with the ability to articulate technical concepts clearly to both technical and non-technical audiences. 
• Demonstrated working proficiency in scripting languages such as Python, Bash, or other relevant automation languages.
• Proven ability to manage multiple projects with varying priorities simultaneously and deliver results effectively.
• Strong working knowledge of Linux operating systems (e.g., RedHat, Ubuntu, Alma, Rocky Linux) in a server environment.
• Experience with infrastructure-as-code and automation tools such as Ansible, Terraform, or similar technologies.
• Understanding of web services, REST APIs, and their security implications.
• Hands-on experience with VMware ESXi and managing virtual security appliances.
• Self-motivated individual with strong research skills and a proven ability to collaborate effectively within a team environment.
• Experience integrating with and managing authentication services (LDAP, Microsoft AD, RADIUS, SAML, OAuth).
• CCNA Routing and Switching or other relevant networking certifications (e.g., CCNP Security).
• Familiarity with cloud security concepts and platforms (e.g., AWS, Azure, GCP).

Will be eligible for discretionary bonus, with funding based on company performance.

The base pay range shown is a guideline. Individual total compensation will vary based on factors such as qualifications, skill level and competencies. Candidates need to successfully complete a pre-employment screen, which may include a drug test and DMV check.

#LI-AM1

Compensation Range

EchoStar is committed to offering a comprehensive and competitive benefits package. Our programs are designed to provide you with the ability to customize your benefits to best meet the needs of you and your family. Our philosophy for these programs is to support and encourage healthy living and wellness. Our benefits package covers it all–from healthcare savings plans to education assistance and more!

• Financial:  401(k) retirement savings plan with company match; employee stock purchase plan; profit-sharing; company-paid life insurance, AD&D and disability

• Work-Life Balance:  Paid Time Off (PTO), company-paid holidays, health and wellness events, exercise and sports facilities (locations may vary)

• Employee Incentives:  Tuition reimbursement, employee referral program, year round employee events and community programs, discounts on Dish Network and HughesNet

• Health:  Medical, Dental, Vision, Employee Assistance Program (EAP), Health Savings Account (HSA) with opportunities to earn employer contributions; Health Care, Dependent Care and Transportation Flexible Spending Accounts (FSA)

EchoStar and its Affiliated Companies are committed to developing and promoting an inclusive workplace. We are an Equal Employment Opportunity employer- Veteran/Disability. We will consider all qualified applicants for employment without regard to race, color, religion, gender, pregnancy, sex, sexual orientation, gender identity, national origin, age, genetic information, protected veteran status, disability, or any other basis protected by local, state, or federal law.  U.S. Persons or those able to obtain and maintain U.S. government security clearances may be required for certain positions. EEO is the law.