Camden, New Jersey, USA
36 days ago
Network Security Infrastructure Engineer

Since 1869 we've connected people through food they love. Our history was created by remarkable people, ideas, and innovations. It serves as inspiration and foundation for our future success. 
 
We’re proud to be stewards of amazing brands that people trust. Our portfolio includes the iconic Campbell’s brand, as well as Michael Angelo’s, noosa, Pace, Pacific Foods, Prego, Rao’s Homemade, Swanson, and V8. In our Snacks division, we have brands like Cape Cod, Goldfish, Kettle Brand, Lance, Late July, Pepperidge Farm, Snack Factory, and Snyder's of Hanover.  
 
We foster a culture of belonging where people come first, and diversity is embraced. And we live our values, always, while setting the highest standards for performance.
 
Here, you will make a difference every day. You will be part of a dynamic, collaborative, and competitive team. You will be supported to build a rewarding career with opportunities to grow, innovate and inspire. Make history with us.

The Global Cybersecurity & Network Services team ensures that Campbell’s business operations including internal communications, business applications, manufacturing and data access which rely on secure networks are delivered with the highest levels of security, availability, and performance. 
 Who we are looking for...
 In this role, you will direct, support, and develop next-gen firewall, software-defined perimeter controls, micro-segmentation, Threat protection, VPN, SASE and other security platforms to ensure they are delivered with reliability and resiliency.   In addition, the job will have direct involvement of designing, architecting, and delivering of enhanced security features and upgrades, maintenance, and monitoring to ensure quality, administration, and support in partnership with Managed Service Providers (MSP)’s.
 What you will do...
 As a Network Security Engineer, you will be expected to operate with a ‘security first’ mindset while working to optimize and improve the operation and future scalability of Network Solutions.  This will include contributing to Campbell’s digital transformation roadmap; including areas which are focused on delivering quality services and introducing new technologies to improve the network value offering while sustaining performance, reliability, and maintain security compliance  This role will be responsible for delivering network end-to-end solutions for Global Cybersecurity & Network Service related projects; including participating in Business projects that require Infrastructure Network security design and services as a dependency.
 Principal Accountabilities20%   -   Maintain in-depth knowledge of company’s existing Network architecture/infrastructure, and technology portfolio. Provide direct input on design and implementation of short- and long-term strategic plans to ensure network & security services meet existing and future business requirements.20%   - Works closely with other groups, including System Administrators, AppOps, Infosec, Incident response & Vulnerability management teams, to ensure corporate compliance & improvements across network infrastructure.   Provide support for Infosec related project initiatives and CSIRT event responses. 25%   -    Deliver tier IV support & guidance for network service operations and net new deployments with MSPs as subject matter expert (SME) over Global Cybersecurity & Network Services’ equipment, services and/or applications.  Provide quality control, SLAs, and governance over move, add, changes, and decommissions for Global Cybersecurity & Network Services’ offerings. Manage technical lifecycle for all network security services.20% -   Develop, document, communicate, and enforce a network technology standards policy which is delivers value, is manageable and scalable.  Conduct analysis of security requirements and controls to identify gaps and provides recommendations of industry best practices, trends, and technology products. 15% -   Conduct research and make recommendations on network products, services, protocols, and standards in support of network procurement and digital development efforts.  Lead efforts on Network infrastructure transition following ‘DevSecOps’ principles & framework.    Provides senior level technical leadership for Network area.Responsible for a technical framework and defines new standards for given platform/technology.Supports the Architecture and Business programs for the discovery, evaluation, and selection of enterprise network solutions.Leads and participates in multiple projects/programs concurrently.Analyzes emerging technologies and determines how it can be used at Campbell’s.Responsible for innovating the platform to meet new service needs and deliver value beyond service and capacity alignment.Reviews new business requirements and provides subject matter expertise in the decision-making process for technology solutions for their area.Participates in the business engagement roadmap sessions, leveraging roadmap to define the service strategy.Ensures adherence to Network security standards, best practices, and access controls over responsible CIs.Review & guidance over vulnerabilities patching cadence and feature-set enhancements for OEM vendor equipment/software.  Reviews & approves Network related changes by MSP via ‘four-eyes’ principles.Participate in on-call rotation to support Tier 4 escalated Priority 1 & 2 related Network incidences.
 What you bring to the table..Minimum education required:  Bachelor’s degree or equivalent years of experience/certifications.5+ years of IT work experience in infrastructure/systems environments3+ years of IT systems planning (Plan/Build/Run)2+ years architectural design, engineering, and optimization. Previous experience working in outsourced IT environment. Ability to translate business needs into implementation plans and can articulate cost implications of options.Extensive knowledge & understanding of NGFWs, SSL VPN, NAC & RBAC, Privileged access (PAM) & SASE solutions. Extensive experience with Firewall & SSL VPN based policy management; both with direct implementation and guiding principles with ‘zero-trust’ approach.Strong understanding of Zero-Trust architecture and experience in either deployment and/or management of such.Advanced technical knowledge of Network technologies as well as a broad knowledge in other disciplines/technologies.Strong experience and knowledge with SD-WAN, IPSEC B2B VPNs, Load-balancers, and dynamic routing protocols.3+ years of Firewall policy management (Deployment/Operations) for one or more of the leading NGFW companies (Palo Alto, Fortinet, Checkpoint)Direct experience with deployment and usage of Firewall configuration & Policy management tools or strong experience with Tufin.Direct experience with deployment & management of Aruba ClearPass or strong experience in other Network access control (NAC) and Access management tools.Experience with managing and using automation tools such as Ansible and/or Terraform for Network CI deployments & configuration management.Experience with software-defined networking and tag-based deployments for policy management.Public cloud (Azure/AWS/Google/OCI) tagsVMware Vcenter/NSX based tags.Ability to execute in and with diverse global cultures and resources.Ability to perform in a challenging, fast-paced technical and business environment.Ability to lead others through troubleshooting and resolutions.Proven analytical and problem-solving abilities.  Strong abilities to adjust ‘on the fly’ under pressure/stress. Team oriented and skilled in working in a collaborative environment; with abilities & skills to run projects solo when required.Strong verbal and written communication skills.Ability to use Microsoft Excel, Word, Visio, PowerPoint, and other Office 365 products.
 It would be great if you have...Desired education: bachelor’s or master’s degree in computer science or related certificationsCISSP and/or Security vendor certifications a plusSkills in cost management and developing budgets for network investments and related financial plan.Extensive vendor knowledge and past implementation of Cisco, Aruba, Fortinet & Checkpoint products.Experience with Vendor technology migrations & replacements.Experience with SIEM tools for log review and event correlation a plus; Splunk, Cribl or CrowdStrike experience desired.Strong experience and knowledge with Route/Switch, DDI, Enterprise Wi-Fi.IPv6 & dual-stack (IPv4/v6) planning & deployments a plus.Experience with Public & Private (CBRS) Cellular deployments for enterprisesExperience with Private LTE/CBRS based Cellular management or operations a plusExperience with Cradlepoint devices and NCM console a plusExperience with public cloud offerings (Azure preferred).Deployment & management of virtual (NVA) assetsFamiliarity with cloud-based networking (LBs, NSGs, Route Tables, ARS/TWGs)Experience in Monitoring and Telemetry tools such as SolarWinds NPM, Prometheus, Grafana Experience with APIs for monitoring and configuration implementation.  Experience with AI/ML technologies and offerings related to security, deployment & self-healing of IT infrastructure & applications.Experience delivering a significant series of large infrastructure projects.Strong mentoring skills.Working ConditionsRemote
10-15% Travel required

Compensation and Benefits:

The target base salary range for this full-time, salaried position is between 

$85,900-$140,800

Individual base pay depends on work location and additional factors such as experience, job-related skills, and relevant education or training. Total pay may include other forms of compensation. In addition, we offer competitive health, dental, 401k and wellness benefits beginning on the first day of employment. Please ask your Talent Acquisition Partner for more information about our total rewards package.

The Company is committed to providing equal opportunity for employees and qualified applicants in all aspects of the employment relationship, including consideration for employment, without regard to race, color, sex, sexual orientation, gender identity, national origin, citizenship, marital status, protected veteran status, disability, age, religion, or any other classification protected by law.

Confirm your E-mail: Send Email