Network Security Engineer

Glocomms is partnered with a leading investment management firm to support the growth of its technology organization by hiring a skilled Network Security Engineer to join the Information Security team. This is an in‑person role based in Boston, requiring four days per week onsite.The Network Security Engineer will play a critical role in protecting enterprise and cloud-based environments that support complex financial systems. This individual will design, implement, and maintain secure network architectures while contributing to broader infrastructure and security initiatives across the organization. The role requires deep technical expertise, strong problem-solving skills, and the ability to collaborate effectively within a global, deadline-driven environment.Key ResponsibilitiesDesign, implement, and manage network and infrastructure security controls, including firewalls, VPNs, IDS/IPS, NAC, and network segmentation.Monitor and analyze network traffic to identify security threats, vulnerabilities, and anomalous behavior.Develop, implement, and maintain network security policies, procedures, and standards aligned with defense‑in‑depth and Zero Trust principles.Support enterprise email security capabilities, including secure email gateways, phishing and malware protection, encryption, and security assessments.Manage endpoint security solutions such as antivirus, antimalware, EDR, DLP, and endpoint compliance and patching.Lead vulnerability management activities, including scanning, assessment, risk-based prioritization, remediation tracking, and reporting.Secure cloud environments across AWS, Microsoft Azure, and Google Cloud, covering infrastructure, applications, and cloud services (SaaS, PaaS).Partner with engineering and operations teams to secure virtualization, containers, and cloud-native workloads.Apply cryptographic technologies and protocols, including SSL/TLS, PKI, IPSec, disk encryption, and HSMs.Contribute to incident response efforts involving ransomware, phishing, malware, DoS/DDoS, and other advanced attack vectors.Perform or support penetration testing, sandboxing, and continuous improvement of security defenses through automation and scripting.Provide business‑friendly and technically accurate communication to stakeholders across the organization.Technical EnvironmentEnterprise LAN/WAN networks, TCP/IP, routing and switching, VLANs, NAT, DNS, and DHCPLayer 7 / next‑generation firewalls from market‑leading vendors, SSL/TLS inspection, and traffic decryption policiesApplication delivery technologies including load balancing, HTTP protocols, sessions, caching, and CDNsWindows, Linux, and Active Directory environmentsQualifications6+ years of experience in network and infrastructure security within complex enterprise environmentsStrong networking background with hands‑on experience securing large‑scale, hybrid and cloud-based systemsExperience supporting financial systems or highly regulated environmentsKnowledge of identity and access management concepts, including authentication, authorization, and SSOFamiliarity with AI security concepts and emerging threat landscapesProven ability to work under pressure, manage competing priorities, and meet strict deadlinesPersonal AttributesStrategic self‑starter with an innovative, detail‑oriented mindsetStrong collaboration skills and comfort working in a global team environmentCreative problem solver with excellent technical and business communication abilitiesThis is a full-time role - no C2C/C2H. Resumes must include first/last name and contact information in order to be considered.