Network Security Engineer (Wayne, PA)

Network Security Engineer DETAILS Location: Wayne, PA 19087 (onsite 4-5 days per week)Position Type: 3-6M C2HHourly / Salary: to $150K JOB SUMMARYVaco is currently seeking a Network Security Engineer for a 3-6M C2H opportunity that is located in Wayne, PA (onsite 4-5 days per week).  The Network Security Engineer will focus on the protecting the integrity and availability of platforms that are vital to K-12 educational organizations.  The Network Security Engineer will design, implement, maintain, and support the network security infrastructure.  The Network Security Engineer will safeguard sensitive data and ensure continuous, secure access to the SaaS solutions for all staff across the nation. Network Security Architecture – Design / Test / Implement Robust / Scalable Secure Network Solutions | Firewalls / Micro-Segmentation / Security Gateways Aligning with Cloud-First Strategy Security / Compliance Alignment – Ensure Network Infrastructure Adheres to Internal Security Policies / External Compliance Requirements Relevant to Education Technology / Data Privacy (FERPA / COPPA / State-Specific Regulations) Architecture Documentation – Develop / Maintain Network Security Architecture Documentation / Technical Standards / Operational Playbooks Network Security Operations – Manage / Monitor Next-Generation Security Systems (NGFWs / WAFs / IDS / IPS) to Detect / Prevent / Respond to Network-Based Threats Security Assessments – Conduct Security Audits / Vulnerability Assessments / Penetration Testing on Network Infrastructure to Identify / Remediate Weaknesses Platform Maintenance – Implement Configuration Changes / Patching / Upgrades on Network Security Devices while Minimizing Service Disruption Access Control Management – Administer NAC / AAA Services (RADIUS / TACACS+) to Enforce Least-Privilege Access Incident Response – Lead Investigation / Resolution of Network Security Incidents as a Member of the Security Incident Response Team (SIRT) SOC Collaboration – Partner with SOC to Tune SIEM Correlation Rules Related to Network Activity / Anomalies Security Reporting – Deliver Clear Reports on Network Security Status / Incident Metrics / Risk Posture to Technology / Executive Leadership Integrity / Data Protection – Commitment to Protecting Sensitive Data (PII / SPII Related to Students / Educators) Exceptional Communication Skills – Ability to Translate Complex Security Vulnerabilities into Clear / Actionable Risks for Technical / Non-Technical Stakeholders Problem Solving – Strong Analytical Skills to Diagnose / Resolve Complex Network Security Issues Under Pressure Adaptability / Continuous Learning – Proactive Learner / Staying Current with Emerging Cybersecurity Threats / Defense Mechanisms Relevant to the EdTech Sector JOB REQUIREMENTS Network Security Engineer (3+ years) – Dedicated Focus on Security Principles / Implementation Networking (expertise) – TCP/IP / Routing Protocols (BGP / OSPF) | Securing Large-Scale / Multi-VLAN / Virtualized Network Environments | Conducting Security Audits / Vulnerability Assessments / Penetration Testing to Identify / Remediate Weaknesses Security Platforms (hands-on) – Enterprise Firewall Platforms (Palo Alto / Fortinet / Cisco) | Managing Security in Public Cloud Environments (AWS / Azure) Automation / Scripting (proficiency) – Python / Bash / Configuration Management Tools (Ansible) to Automate Network Security Tasks PREFERRED (not required) Certifications – CISSP / CCNP Security / PCNSE / AWS/Azure Security Certifications SaaS Security (direct experience) – Securing a High-Availability / Multi-Tenant SaaS Environment DevSecOps (familiarity) – Integrating Security Controls into CI/CD Pipelines / IaC Practices Micro-Segmentation (practical experience) – Designing / Implementing Zero Trust / Micro-Segmentation Architectures Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan. Additional disclaimer: Unless otherwise noted in the job description, the position Vaco/Highspring is filing for is occupied. Please note, however, that Vaco/Highspring is regularly asked to provide talent to other organizations. By submitting to this position, you are agreeing to be included in our talent pool for future hiring for similarly qualified positions. Submissions to this position are subject to the use of AI to perform preliminary candidate screenings, focused on ensuring minimum job requirements noted in the position are satisfied. Further assessment of candidates beyond this initial phase within Vaco/Highspring will be otherwise assessed by recruiters and hiring managers. Vaco/Highspring does not have knowledge of the tools used by its clients in making final hiring decisions and cannot opine on their use of AI products.

Created: 2026-03-11