Senior Network Security Automation Engineer

STRATEGIC STAFFING SOLUTIONS HAS AN OPENING!

This is a Contract Opportunity with our company that MUST be worked on a W2 Only. No C2C eligibility for this position. Visa Sponsorship is Available! The details are below.

“Beware of scams. S3 never asks for money during its onboarding process.”

Job Title: Senior Network Security Automation Engineer

Contract Length: 6+ Months

Locations: Las Colinas, TX (Preferred), Charlotte, NC, Chandler, AZ, Minneapolis, MN

Some on Site Work- 3 days on site/ 2 days remote

Seeking a Senior Network Security Automation Engineer to drive the transformation of traditional Firewall, Proxy, and Network Access Control (NAC) operations into a fully automated, unified Zero Trust Network Access (ZTNA) architecture.

This role will focus on designing and implementing end-to-end zero-touch provisioning (ZTP) solutions where deployment, configuration, validation, and lifecycle management are fully automated with minimal manual intervention. The engineer will play a key role in accelerating enterprise automation initiatives across Firewall, Proxy, and NAC environments while delivering measurable reductions in operational effort.

Key Responsibilities

Unified Network Security Automation Architecture

• Design and implement a unified network security automation architecture across Firewall, Proxy, and NAC platforms.
• Standardize networking, security services, and automation behaviors across:
• Palo Alto Firewall
• Fortinet Firewall
• Broadcom Cloud Proxy Services
• Implement automated software lifecycle workflows for Firewall, Proxy, and related security platforms.
• Automate Day 0, Day 1, and Day 2 operational processes.
• Develop automated workflows for standard operational changes.

Automation & Orchestration

• Design and implement stateful, fault-tolerant workflows using Temporal, ORCA, or similar orchestration platforms.
• Build reusable orchestration patterns for deployment and operational workflows.
• Embed validation, retry, timeout, and compensation logic into automation processes.

Source of Truth Integration

• Extend and integrate Nautobot as the authoritative source of truth.
• Model topology, IPAM, configuration, and operational state data.
• Ensure automation executes directly from source-of-truth data.

CI/CD & Infrastructure as Code

• Establish CI/CD pipelines using GitHub and GitHub Actions.
• Implement Infrastructure as Code practices to support automation and provisioning.
• Follow enterprise standards for version control, testing, and deployment promotion.

Operational Automation

• Design and implement Ansible-based automation for operational environments.
• Automate configuration management, compliance validation, rollback, and remediation activities.
• Ensure all changes are secure, auditable, and repeatable.

API & Observability

• Expose automation capabilities through Apigee APIs.
• Instrument automation workflows using Grafana and/or Prometheus.
• Provide telemetry and monitoring for reliability, scalability, and troubleshooting.

Required Qualifications

• Senior-level hands-on Python development experience.
• Extensive experience with GitHub, GitHub Actions, and CI/CD pipelines.
• Strong Infrastructure as Code expertise.
• Hands-on operational automation experience using Ansible.
• Deep knowledge of Proxy and Firewall technologies.
• Hands-on experience integrating and automating:
• Palo Alto Firewall
• Fortinet Firewall
• Broadcom Cloud Proxy Services
• Experience designing, implementing, and automating security controls and policy management across Firewall and Proxy environments.
• Proven experience delivering stateful workflow orchestration using Temporal, ORCA, or similar platforms.
• Ability to work independently and deliver solutions within complex enterprise environments.

Preferred Qualifications

• Experience with AI-assisted engineering or AI-driven automation workflows.

Engagement Objectives

• Transform existing Firewall, Proxy, and NAC certification and lifecycle processes into automated workflows.
• Deliver end-to-end Zero Touch Provisioning (ZTP) for SASE infrastructure.
• Implement stateful workflow orchestration using Temporal, ORCA, or similar technologies.
• Integrate Nautobot as the authoritative source of truth for topology and configuration management.
• Establish CI/CD pipelines using GitHub and GitHub Actions.
• Implement Infrastructure as Code solutions supporting automation platforms.
• Enable automated operational changes through Ansible.
• Expose automation services through Apigee APIs.
• Implement monitoring and observability using Grafana and/or Prometheus.
• Deliver measurable reductions in deployment times and operational support effort for Firewall, Proxy, and NAC environments.

Interview Process

• Technical Screening
• Team Interview via Microsoft Teams

Success Measures

• Adoption of a unified Firewall, Proxy, and NAC automation architecture.
• Significant reduction in deployment times and manual operational effort.
• Elimination of routine provisioning tasks from Technology teams through automation.
• Comprehensive documentation supporting long-term internal ownership and sustainability.