Network Security Engineer

At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer experiences and having fun. Our vision, mission, and values guide us along our path to achieve excellence. Passion, attitude, creativity, integrity, alignment, and execution are cornerstones of our behaviors. They define who we are as an organization and as individuals. Everyone is encouraged to have personal development plans. By doing so, our team members are on their way to achieve their highest potential and be successful in their personal and professional lives.

This role is IN OFFICE in Malvern, PA Monday through Thursday with Friday remote.

Must be eligible to work in the U.S without requiring sponsorship now or in the future.

Who is Customers Bank?

Founded in 2009, Customers Bank is a super-community bank with over $22 billion in assets. We believe in dedicated personal service for the businesses, professionals, individuals, and families we work with.

We get you further, faster. 

Focused on you:  We provide every customer with a single point of contact. A dedicated team member who’s committed to meeting your needs today and tomorrow.

On the leading edge:  We’re innovating with the latest tools and technology so we can react to market conditions quicker and help you get ahead.

Proven reliability:  We always ground our innovation in our deep experience and strong financial foundation, so we’re a partner you can trust.

What you’ll do:

We are seeking a motivated and detail-oriented Network Security Engineer to secure, monitor, and enhance our enterprise network environment. This role focuses heavily on firewall administration, network segmentation, and security hardening. You will support the design and enforcement of security policies, maintain next‑generation firewalls, and collaborate with Security and Infrastructure teams to ensure a resilient and compliant network.

• Configure, maintain, and troubleshoot next‑generation firewalls (especially Palo Alto Networks) including security policies, NAT, threat profiles, URL filtering, and VPN configurations.
• Lead efforts in network segmentation, micro‑segmentation, and Zero Trust architecture adoption.
• Implement and maintain network security controls across wired, wireless, and cloud environments.
• Monitor security logs, analyze firewall events, and respond to network security incidents.
• Manage VPN technologies including remote access and site‑to‑site tunnels.
• Support network architecture reviews and security assessments.
• Ensure adherence to regulatory and security frameworks (SOX, FFIEC, PCI, HIPAA, etc.).
• Maintain detailed documentation of firewall rulesets, segmentation maps, topology changes, and security configurations.
• Work cross‑functionally with Information Security, Cloud, and Infrastructure teams.
• Participate in IT change management processes and follow ITIL best practices.

What do you need?

• 3-5 years of experience in network security, network engineering, or related IT roles.
• Strong understanding of network security concepts: segmentation, ACLs, IPS/IDS, threat prevention, SSL decryption, Zero Trust principles.
• Hands‑on experience with Palo Alto firewalls and Panorama; experience with Cisco firewalls is a plus.
• Experience designing and implementing network segmentation (VLANs, VRFs, micro‑segmentation).
• Experience with VPN technologies and troubleshooting secure remote access solutions.
• Experience with wireless security protocols and enterprise authentication (WPA2‑E, 802.1X).
• Experience with Cloud security concepts.
• Solid knowledge of TCP/IP, DNS, DHCP, NAT, VPN, VLANs, OSPF, BGP.
• Familiarity with network monitoring/logging tools (e.g., Splunk, Syslog).
• Strong communication and documentation skills.

Technology Skills:

• Relevant certifications are preferred such as Palo Alto PCCSA/PCNSA/PCNSE, Cisco CCNA Security, CompTIA Security+ or Network+.
• Experience with Palo Alto firewalls, Panorama, and threat prevention tools.
• Experience with Cisco networking including Cisco Identity Services Engine (ISE).
• Exposure to cloud security/networking (Azure) is a plus.
• Working knowledge of ITIL frameworks.

Customers Bank is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

We also provide “reasonable accommodations”, upon request, to qualified individuals with disabilities, in accordance with the Americans with Disabilities Act and applicable state and local laws. 

Diversity Statement:

At Customers Bank, we believe in working smart, working together, and having fun while delivering innovative solutions and memorable experiences for our customers. We are committed to the continual advancement of a culture which reflects the value we place on diversity, equity, and inclusion. We honor the diverse experiences, perspectives, and identities of our team members, and we recognize that it is their passion, creativity, and integrity that drives our success. Step into your future with us! Let’s take on tomorrow.