Information Security Engineer 4 - Contingent

Title: Information Security Engineer 4

Location: Irving, TX (401 Las Colinas Blvd W Bldg A)

Duration: 24 months

Work Engagement: W2

Work Schedule: Hybrid 3 days in office/2 days remote

Benefits on offer for this contract position: Health Insurance, Life insurance, 401K and Voluntary Benefits

Summary:

In this contingent resource assignment, you may: Consult on complex initiatives with broad impact and large-scale planning for Information Security Engineering. Review and analyze complex multi-faceted, larger scale or longer-term Information Security Engineering challenges that require in-depth evaluation of multiple factors including intangibles or unprecedented factors. Contribute to the resolution of complex and multi-faceted situations requiring solid understanding of the function, policies, procedures, and compliance requirements that meet deliverables. Strategically collaborate and consult with client personnel.

This contract role is focused on accelerating the build and delivery of the enterprise automation framework, with a critical mandate to transform the current VPN and Proxy technology landscape into a unified, standardized ZTNA architecture, including integration with Palo Alto Firewall, Fortinet Firewall, and Broadcom Cloud proxy services.

The engineer will design and implement an end to end, ZTNA model with full zero touch provisioning (ZTP), where site deployment, configuration, validation, and lifecycle management are fully automated and require minimal to no manual Technology involvement.

The engineer will automate software lifecycle and operations functions for Proxy, Firewall and Network Access Control (NAC) deployment, configuration, validation, and lifecycle management are fully automated and require minimal to no manual Technology involvement.

Emphasis is on hands on engineering, rapid execution, and measurable outcomes that materially reduce operational burden on Technology teams.

Key Responsibilities:

Unified Network Security Automation Architecture

• Design a unified Network Security automation architecture that standardizes networking, security services, and automation behaviors across Palo Alto Firewall, Fortinet Firewall, and Broadcom Cloud proxy services
• Implement fully automated, Sepio, SAT and Proxy software lifecycle workflows
• Implement fully automated, standard changes workflows
• Automate software lifecycle events including day 0, day 1, and day 2 operations

Automation & Orchestration Execution

• Design and implement stateful, fault tolerant workflows using Temporal / ORCA
• Embed retry, timeout, validation, and compensation logic into SAT, Proxy and Sepio workflows
• Build reusable orchestration patterns for SAT, Proxy and Sepio deployment and operations

Source of Truth Integration

• Extend and integrate Nautobot as the authoritative source of intent and state
• Model into SAT, Proxy and Sepio, topology, IPAM, and configuration data
• Ensure SAT, Proxy and Sepio automation executes strictly from source of truth data

CI/CD & Infrastructure as Code

• Implement CI pipelines using GitHub Actions
• Use Temporal to provision and manage automation and Branch related infrastructure
• Follow version control, testing, and promotion standards

Operational Automation

• Design and execute Ansible based operational automation for Branch environments
• Automate configuration, compliance validation, rollback, and remediation
• Ensure changes are secure, auditable, and repeatable

API & Observability Enablement

• Expose SAT, Proxy and Sepio and automation services through Apigee
• Instrument workflows using Grafana and/or Prometheus
• Provide telemetry for reliability, scaling, and troubleshooting

Required Qualifications:

• Applicants must be authorized to work for ANY employer in the U.S. This position is not eligible for visa sponsorship.
• Senior level hands on experience with Python
• Extensive experience with GitHub, GitHub Actions, and CI/CD pipelines
• GitHub Actions and Infrastructure as Code expertise
• Strong hands-on operational automation experience using Ansible
• Deep familiarity with Proxy and Firewalls technologies, including integration with Palo Alto Firewall, Fortinet Firewall, and Broadcom Cloud proxy services
• Hands on experience designing, implementing, and automating security controls and policy management across Palo Alto Firewall, Fortinet Firewall, and Broadcom Cloud proxy service environments
• Ability to deliver independently in complex enterprise environments

Preferred Qualifications:

• Strong exposure to AI assisted engineering or AI driven automation workflows