Director, Network Boundary Protection Assurance

Director, Network Boundary Protection Assurance

Description:

Our Why: We exist to protect a way of life that many people have come to rely on. We protect the small business that relies on Coupang to be able to open their doors every day. The customer trust in protecting their PII fiercely. Also, our fellow employees and their data as they come to work every day being proud to work for Coupang.

We exist to be thought leaders and help the industry and government partners. To come to work focused on outcomes and not egos, and to head home at the end of a day with a sense of pride with what we accomplished together as a team. Our why drives everything that we do.

As our Director over Network Boundary Protection Assurance, you will be responsible for building a new program that provides oversight and assurance for our current network configurations including but not limited to firewall rules, toxic combinations, enclave and network segmentation configuration, and PII route tracing.

This is a new function being created to address the unique challenges of the eCommerce space of a global company. You will need a proven track record of building successful programs, inspiring and developing teams, with the ability to work across levels and organizations with autonomy.

In addition to being a leader, you will be a technical manager that has expert working knowledge in Cybersecurity Assurance, cloud security, risk-based vulnerability and configuration management, root-cause security issues, quickly assessing the potential threats, and educating other members of the broader team.

Key Responsibilities:

• Provide technical guidance to cross-functional teams on best practices for network boundary protection.Conduct regular assessments and updates to ensure boundary defenses remain effective against evolving threats.
• Implement automation and analytics tools to enhance detection and response capabilities.
• Lead continuous improvement efforts and stay current on emerging threats, technologies, and industry trends.
• Drive strategic initiatives to harden network security posture across the enterprise.
• Design, develop, and maintain secure baseline configurations for enterprise IT infrastructure, including servers, workstations, cloud environments, and network devices.
• Implement and enforce security configuration policies and standards in alignment with industry best practices (e.g., CIS, NIST, DISA STIGs).
• Adjust compliance scanning policies and disposition false positive scan results.
• Develop and manage automated solutions for secure configuration deployment and monitoring.
• Conduct periodic assessments to validate security compliance and identify deviations from baseline configurations.
• Provide technical leadership in Network Boundary Protection, including training and mentorship for junior team members.
• Ensure alignment with regulatory and compliance requirements, such as PCI-DSS, HIPAA, ISO 27001, and FedRAMP.
• Document and maintain security configuration policies, procedures, and implementation guides.
• Investigate and remediate security configuration issues identified through audits, assessments, or security incidents.

Qualifications:

• 10+ years of experience in network management, system hardening, and compliance.
• Knowledge of STIGs, RMF, and security hardening techniques.
• Knowledge of Zero Trust security principles and implementation strategies.
• Specialized expertise in industry baseline configuration sources (CIS, NIST, etc.), public cloud hosting/architecture, and SaaS configuration monitoring tooling (e.g., Netskope).
• Strong knowledge of security frameworks, including CIS Benchmarks, NIST 800-53, DISA STIGs, and ISO 27001.
• Proficiency with technologies such as Palo Alto, Cisco ASA/Firepower, Fortinet, Snort, Suricata, and secure web gateways.
• Proficiency in scripting languages (e.g., PowerShell, Python, Bash) for automation and compliance enforcement.
• Experience with security configuration auditing and assessment tools.
• Strong problem-solving, analytical, and communication skills.
• Master’s degree or equivalent practical experience.

Preferred Languages and Certifications:

• Industry certifications such as CISSP, CISM, CISA, or relevant vendor-specific certifications (AWS Security, Microsoft Security, etc.) are preferred.
• English, Korean, and Mandarin