×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Network Security

Principal Network Security Engineer

Job in Chicago, Cook County, Illinois, 60290, USA
Listing for: Heitmeyer Consulting
Full Time position
Listed on 2026-02-28
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Network Security
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

To Apply for this Job

Role
:
Principal Network Security Engineer
Location
:
Chicago, IL or Tempe, AZ preferred, remote possible
Contract
: 6 months with extensions likely, starting in March 2026

Our client, a global financial institution headquartered in Chicago, has a newly formed team dedicated to mission-critical initiatives and is seeking a Principal Network Security Engineer to lead the transformation.

Project Overview / Role:

The Principal Network Security Engineer plays a pivotal role in safeguarding the organization’s infrastructure by architecting, deploying, and managing advanced network security platforms. This is a high-impact position within a newly formed team dedicated to mission-critical initiatives, where reliability, resilience, and exceeding expectations are standard. Our client is seeking a strategic thought leader and self-driven engineer with a deep security-first mindset and a strong sense of product ownership—someone who can lead the transformation and continuous evolution of the network security ecosystem in alignment with the business and cybersecurity objectives.

Core

Skills & Experience:

  • Expert-level in NAC platform administration and configuration (Forescout preferred)
  • Strong understanding of network security principles. CISSP certification is desired but not required
  • Working experience deploying and operating Identity platforms (Cisco ISE preferred)
  • Exposure to Microsoft Active Directory, Microsoft Entra , and LDAP
  • Knowledge of network fundamentals (TCP/IP, VLANs, VRFs, VPN, Dynamic Routing). CCNP certification preferred
  • Strong understanding of how Network and Security infrastructure operate at Layer 2, Layer 3 & Layer 4-7
  • Knowledge of network authentication protocols including EAP/802.1x, TACACS, RADIUS, OAuth
  • Experience working with Public Key Infrastructure and tools (Venafi)
  • Expert-level experience working with Linux, Windows, and MacOS operating systems
  • Experience with scripting languages (Bash, Python, Perl, Powershell) and IaC tools like Ansible or Terraform
  • Proficient with packet data tools like Wireshark to perform deep-level forensic analysis
  • Ability to perform security analysis using SIEM and Analytics tools (Azure Sentinel, Log Analytics)
  • Expert-level writing skills to create playbooks and standard operating procedures
  • Experience with web APIs and data serialization languages (JSON, YAML)
  • Excellent problem-solving and troubleshooting abilities with an emphasis on security
  • Strong communication skills to collaborate with technical and non-technical stakeholders
  • Exposure to cloud service providers such as Azure or AWS
  • Working experience with Next Generation Firewalls (Check Point, Palo Alto) or host-based firewalls (Illumio)
  • Good understanding of DNS, DHCP, and IPAM systems
  • Previous experience at a financial organization is a plus

Certifications:

The following certifications are strongly preferred

  • FSCA – Forescout Certified Administrator
  • FSAA – Forescout Advanced Administrator
  • FSCE – Forescout Certified Engineer

Tasks & Responsibilities:

As the product owner for Network Access Control (NAC) and Identity Services platforms, the Principal Network Security Engineer will lead the strategic direction, architecture, and operational excellence of these technologies. This role demands a proactive security mindset and a deep sense of ownership to ensure the platforms are resilient, scalable, and aligned with enterprise security goals.

  • Solution Architecture & Design:
    Partner with cross-functional stakeholders to architect and deliver secure, scalable solutions tailored to evolving business and security requirements.
  • Deployment & Configuration:
    Lead global deployment and configuration of NAC appliances and Identity Services platforms across data centers, ensuring consistency, reliability, and compliance.
  • Device Discovery & Profiling:
    Implement advanced profiling techniques to identify and classify all network-connected devices, enforcing access only for authorized and trusted endpoints.
  • Policy Creation & Enforcement:
    Define and enforce granular access control policies based on device posture, driving network segmentation and strengthening the organization’s security posture.
  • Threat Detection &…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search