Network Security Engineer

About Marvell

Marvells semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise cloud and AI and carrier architectures our innovative technology is enabling new possibilities.

At Marvell you can affect the arc of individual lives lift the trajectory of entire industries and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation above and beyond fleeting trends Marvell is a place to thrive learn and lead.

Your Team Your Impact

What You Can Expect

• Design implement operate and support enterprise network security solutions across traditional virtualized and cloud environments including routing switching segmentation and traffic filtering technologies.
• Serve as a subject matter expert for network security technologies including firewalls remote access solutions IPSec VPNs IDS/IPS web application firewalls proxies DLP CASB NAC micro-segmentation wired and wireless security SIEM and next-generation breach detection platforms.
• Design deploy and operate Palo Alto Networks SaaS Inline Security capabilities to provide real-time inspection threat prevention and data protection for SaaS application traffic.
• Implement and manage Palo Alto Networks AI Access Security controls to secure enterprise usage of AI-driven and generative AI platforms including policy enforcement data loss prevention and visibility into AI application usage and risk.
• Integrate SaaS Inline Security and AI Access Security with existing Palo Alto Networks firewall platforms CASB DLP and SIEM solutions to deliver a cohesive end-to-end security architecture.
• Define and enforce security policies for SaaS and AI application access aligned with corporate risk tolerance data protection requirements and industry best practices.
• Monitor analyze and respond to security events and alerts related to SaaS and AI application traffic performing investigation tuning and continuous optimization of controls.
• Evaluate emerging SaaS and AI security features within the Palo Alto Networks ecosystem advising on adoption roadmap alignment and operationalization across the enterprise.
• Lead and contribute to network security initiatives from concept and architecture through implementation testing and production rollout ensuring solutions align with business and security requirements.
• Perform day-to-day operational support for network security infrastructure including monitoring troubleshooting break-fix remediation ticket handling and change management in accordance with established processes and SLAs.
• Provide expert-level troubleshooting of complex network and security issues at the protocol level (TCP/UDP IP ARP DNS HTTP/S) identifying root causes and implementing sustainable corrective actions.
• Design deploy and maintain IPSec VPN solutions including site-to-site and remote access with a focus on scalability security and operational reliability.
• Administer design and support Palo Alto Networks firewalls in on-premises virtualized and cloud-based environments; perform policy optimization threat prevention tuning upgrades and lifecycle management.
• Support and integrate complementary security platforms such as F5 WAF and McAfee CASB ensuring seamless interoperability within the broader cybersecurity ecosystem.
• Develop and maintain detailed technical documentation network diagrams security standards and operational runbooks that reflect best practices and reference architectures.
• Apply security control frameworks and methodologies (e.g. NIST Cybersecurity Kill Chain) to architecture decisions threat modeling and remediation strategies.
• Evaluate emerging cybersecurity technologies and vendors objectively assessing technical capabilities versus marketing claims and recommending solutions that provide measurable value and integrate effectively with existing systems.
• Collaborate closely with cross-functional teams including IT operations cloud engineering application teams and security leadership to ensure secure-by-design network architectures.
• Use scripting and automation to improve operational efficiency enhance visibility and reduce manual effort in network security operations.
• Provide technical leadership mentorship and oversight for assigned projects or junior team members promoting best practices and continuous improvement.
• Stay current with evolving threat landscapes attack vectors and next-generation security platforms proactively adapting defenses to address new risks.
• Participate in on-call rotations and provide after-hours support as required to ensure the availability integrity and security of critical network infrastructure.

What Were Looking For

Critical Skills

• Strong understanding of enterprise level network operations including but not limited to route switch segmentation and filtering technologies in traditional virtualized and cloud environments
• Proven track record of successful IT project contribution from concept to completion
• 4 years of specialization in Network Security technologies including firewall remote access and IPSec VPN
• 4 years of successful network-level troubleshooting and break-fix implementations
• 4 years of experience with day-to-day network support ticketing and change management
• Experience in network security solutions design documentation and best practices
• Proven experience working in engineering capacity supporting network security and capabilities such as Firewalls Intrusion Detection and Prevention Systems Proxies DLP Network Deception micro-segmentation Network Access Control (NAC) wired and wireless security SIEM Next Gen Breach Detection Systems Cloud Access Security Brokers(CASB)
• Hands on experience with Palo Alto firewalls F5 WAF and McAfee CASB is highly desired.
• Expert-level understanding of network protocols (TCP/UDP IP ARP DNS HTTP(S) etc.)
• Detailed understanding of attack vectors current threats and their remediation strategies
• Strong time management skills planning organizing and leading architecture development efforts
• Strong interpersonal and communications skills to build and maintain ongoing business relationships
• Self-Starter that requires minimal supervision multi-tasks effectively and can provide oversight and coaching to others for any assigned projects or tasks.
• Detailed understanding of control frameworks and reference architectures such as NIST Cybersecurity kill chain etc.
• Able to stay on top of latest cybersecurity developments and next gen platforms
• Available for on call after hours support as required

Additional Knowledge & Skills

• Demonstrable experience with IPSEC VPN design implementation troubleshooting
• Expert level knowledge of Palo Alto Networks firewalls including administration operations design deployment troubleshooting
• Demonstrable experience with Palo Alto Networks firewalls in virtual and cloud environments
• Demonstrable experience with Palo Alto Networks SaaS Inline Security and AI Access Security capabilities
• Able to work with suppliers and vendors to assess a true value of cybersecurity capabilities vs what they are offering as a sales pitch and how those capabilities would apply to the company as a whole from integrations to existing cybersecurity eco-system to their operationalization.
• Experience with various languages (perl python required Java) a plus

Additional Compensation and Benefit Elements

With competitive compensation and great benefits you will enjoy our workstyle within an environment of shared collaboration transparency and inclusivity. Were dedicated to giving our people the tools and resources they need to succeed in doing work that matters and to grow and develop with us. For additional information on what its like to work at Marvell visit our Careers page.

All qualified applicants will receive consideration for employment without regard to race color religion sex national origin sexual orientation gender identity disability or protected veteran status.

Interview Integrity

To support fair and authentic hiring practices candidates are not permitted to use AI tools (such as transcription apps real-time answer generators like ChatGPT or Copilot or automated note-taking bots) during interviews.

These tools must not be used to record assist with or enhance responses in any way. Our interviews are designed to evaluate your individual experience thought process and communication skills in real time. Use of AI tools without prior instruction from the interviewer will result in disqualification from the hiring process.

This position may require access to technology and/or software subject to U.S. export control laws and regulations including the Export Administration Regulations (EAR). As such applicants must be eligible to access export-controlled information as defined under applicable law. Marvell may be required to obtain export licensing approval from the U.S. Department of Commerce and/or the U.S. Department of State. Except for U.S. citizens lawful permanent residents or protected individuals as defined by 8 U.S.C. 1324b(a)(3) all applicants may be subject to an export license review process prior to employment.