Your Job
As a Network Security Engineer at Koch, you will design, implement, and operate secure and resilient application delivery solutions. In this role, you will play a key part in strengthening edge security, enhancing application performance, and protecting enterprise systems from evolving cyber threats.
Our Team
You will be part of a global network and security engineering team focused on delivering secure, scalable, and high-performing application infrastructure. The team works closely with cloud, security, and application stakeholders to ensure reliable and secure digital experiences.
What You Will Do
- Design, implement, and operate edge-based application delivery and security services, including DNS, content delivery (CDN), web application firewall (WAF), DDoS protection, and Zero Trust access capabilities
- Configure and maintain reverse proxy and application publishing patterns for internet-facing services across cloud and hybrid environments
- Develop, tune, and maintain WAF policies and custom rules to protect against application-layer threats while minimizing false positives
- Analyze and mitigate malicious traffic patterns, including DDoS attacks, bot activity, and common web application exploits
- Apply edge-based traffic management strategies, including traffic steering, failover, and performance optimization across geographic regions
- Optimize application performance, availability, and resiliency through caching strategies, load distribution, and edge control capabilities
- Deploy and manage edge platform configurations
- Automate configuration, policy enforcement, and lifecycle management
- Troubleshoot application delivery issues, including latency, connectivity, TLS/certificate errors, and WAF rule conflicts
- Perform traffic analysis using logs, metrics, and packet capture tools to investigate and resolve production issues
- Partner with security, cloud, and application teams to implement and enforce secure design patterns aligned with modern web security standards (e.g., OWASP Top 10)
- Contribute to monitoring and alerting strategies to proactively detect and respond to performance or security issues at the edge
- Create and maintain documentation for configurations, standards, and operational procedures to support scalable service delivery
Who You Are (Basic Qualifications)
- Hands-on experience with edge networking or security platforms (e.g., CDN, WAF, or application delivery platforms such as Cloudflare, Akamai, CloudFront, or similar)
- Strong understanding of internet and web application technologies, including DNS, HTTP/S, TLS, and certificate management
- Experience supporting secure application delivery architectures, including reverse proxies, caching, and traffic flows between client, edge, and origin systems
- Solid understanding of web security concepts, including OWASP Top 10 vulnerabilities, WAF protections, and threat mitigation techniques
- Experience with Infrastructure as Code tools and Git-based version control workflows
- Familiarity with API-driven automation and CI/CD pipelines for infrastructure or platform delivery
- Foundational knowledge of networking concepts, including TCP/IP, routing fundamentals, and cloud/hybrid connectivity models
- Hands-on experience troubleshooting network and application delivery issues using logs, metrics, and packet analysis tools (e.g., Wireshark, tcpdump)
- Experience working in cloud environments (AWS, Azure, or GCP) and supporting hybrid application deployments
- Strong problem-solving skills with the ability to analyze complex technical issues and drive resolution
- Effective communication skills with the ability to collaborate across engineering, security, and application teams
What Will Put You Ahead
- 7+ years of experience in either support of complex enterprise networks, or management of network security devices like firewalls, proxies, reverse proxies and IPS devices
- Knowledge on the Palo Alto NGFW's, ZScaler - ZIA, ZPA, ZBA FortiGate firewalls and Cloudflare.
- Knowledge and work experience on any of the cloud platforms such as AWS, Azure, GCP and Alkira.
- Experience in network automation, design, and usage of scripting technologies Ansible tower, Ansible core, Python, YAML, CloudFormation/Terraform is a plus.
- Prior understanding of Agile/Scrum methodologies
At Koch companies, we are entrepreneurs. This means we openly challenge the status quo, find new ways to create value and get rewarded for our individual contributions. Any compensation range provided for a role is an estimate determined by available market data. The actual amount may be higher or lower than the range provided considering each candidate's knowledge, skills, abilities, and geographic location. If you have questions, please speak to your recruiter about the flexibility and detail of our compensation philosophy.
Who We Are
At Koch, employees are empowered to do what they do best to make life better. Learn how our business philosophy helps employees unleash their potential while creating value for themselves and the company.
Additionally, everyone has individual work and personal needs. We seek to enable the best work environment that helps you and the business work together to produce superior results.
