Network Security Engineer *Palo Alto network experience (on-Prem Firewall and Prisma)*

Energy Recovery (NASDAQ: ERII) creates technologies that solve complex challenges for industrial fluid-flow markets worldwide. Building on our pressure exchanger technology platform, we design and manufacture solutions that make industrial processes more efficient and sustainable. What began as a game-changing invention for desalination has grown into a global business advancing the environmental sustainability of customers’ operations in multiple industries. Headquartered in the San Francisco Bay Area, Energy Recovery has manufacturing, research and development facilities across California and Texas with sales and on-site technical support available globally. For more information, please visit www.energyrecovery.com.

Energy Recovery is seeking an Information Security Engineer to lead our cybersecurity program and foster a culture of security awareness across the organization.

In this role, you’ll provide strategic direction and vision, developing and implementing risk mitigation strategies to protect us from potential threats. Your expertise with Palo Alto Networks will be essential as you manage and maintain our networks and firewall systems daily.

We’re looking for someone who thrives on innovation—someone ready to conduct research and development to enhance our security services continually. If you’re ready to take on this vital role and help us safeguard our mission, we want to hear from you! Join us at Energy Recovery and be a key player in shaping our cybersecurity future!

***We win with teamwork and are in the office from Monday to Thursday, offering flexible start times. Plus, you can enjoy subsidized lunches and two weeks of work-from-anywhere annually!***

What Will You Do?

• The ISE will be responsible for developing and implementing robust cybersecurity strategies, policies, and practices to safeguard our organization's information assets and ensure the integrity, confidentiality, and availability of our data
• Develop and lead the implementation of the organization's cybersecurity strategy, ensuring alignment with business objectives
• Conduct regular risk assessments to identify and prioritize cybersecurity risks
• Ensure compliance with relevant laws, regulations, and industry standards related to information security
• Develop and maintain an incident response plan, including coordinating the response to cybersecurity incidents
• Conduct post-incident analysis to identify root causes and recommend improvements to prevent future incidents
• Collaborate with IT and business units to integrate security best practices into the design and development of systems and applications
• Ensure the continuous evaluation and enhancement of security architecture to address emerging threats
• Implement a comprehensive security awareness program for employees, promoting a security-conscious culture
•  Provide training on cybersecurity best practices and conduct regular drills to test the organization's readiness for security incidents
• Oversee the assessment and management of cybersecurity risks associated with third-party vendors and partners
• Ensure that vendors adhere to the organization's security standards and policies
• Implement and manage security monitoring tools and processes to detect and respond to security events
• Generate regular reports on the organization's cybersecurity posture and incidents for executive leadership
• Audit’s identity and access methods to ensure a zero-trust framework for both production and development business application systems
• Cybersecurity Strategy and Leadership: Develop and lead the implementation of the organization's cybersecurity strategy, ensuring alignment with business objectives
• All other duties as assigned

What You Bring to the Table:

• Bachelor’s Degree or equivalent work experience in a related field required
• Must have PCNSE certification or equivalent Palo Alto network experience (on-Prem Firewall and Prisma)
• 3+ years’ experience in an Information Security role with responsibilities in assessing application and infrastructure architectures for security threats and vulnerabilities
• Alternatively, 5+ years’ in a Senior level network/systems role with a strong focus on Security, required
• Hands-on experience with security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Secure Email Gateways, Web Content Filters, Proxies, DLP, SIEM) required
• Solid foundational understanding of networking concepts required
• Professional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), CompTIA Security+, CompTIA Network+, highly desirable
• Knowledge and experience with common information security management frameworks and best practices, specifically the National Institute of Standards and Technology (NIST) frameworks and Center for Internet Security (CIS) Critical Security Controls, highly desirable
• Understanding of cloud security concepts (SaaS, PaaS, IaaS), mobile architecture, network and application security and/or data protection, preferred
• Deep experience with Palo Alto security products, including on-prem firewalls, Panorama, Global Protect, and Prisma Access
• A solid understanding of security-focused enterprise networking
• Should be intimately familiar concepts such as Spanning Tree, Port Security, Portchannel/Etherchannel/Link Aggregation, VLANs, SNMP, Syslog, 802.1x, OSPF, BGP, route redistribution, IPSec tunnels, and TCP/IP in general.
• Hands on experience with Cisco enterprise switches (or a similar vendor)
• Familiarity with Network Access Control systems (Any vendor)
• Familiarity with monitoring/alerting systems (PRTG, Solarwinds, Splunk, etc)
• Basic understanding of Windows Server functions as they related to network services (Active Directory, DNS, & DHCP)
• Provide 24/7 support with rotating on-call duties after hours within predetermined and agreed upon service expectations

What's in It for You?

• Health Insurance: Comprehensive medical, dental, and vision coverage with options for family coverage
• Retirement Plans: 401(k) plan with company matching to help you save for the future
• Paid Time Off: Generous vacation policy, paid sick leave, and paid holidays to ensure a healthy work-life balance
• Wellness Programs: Mental Wellness Support with therapy and coaching in addition to an employee assistance program
• Fitness Perks: Enjoy access to our on-site gym with an on-site trainer, yoga classes and gym reimbursement for remote employees
• Team Events: Regular team-building activities and social events to foster a positive work culture such as; ping-pong tournaments, gratitude lunches, and summer BBQs
• Referral Bonus: Earn up to $1,500 for referring friends
• Flexible Spending Accounts (FSA): Pre-tax savings for medical expenses, commuter, and dependent care, helping you manage out-of-pocket costs
• Tuition Reimbursement: Financial support for continuing education, including courses and degree programs to help you advance your career
• Paid Parental Leave: Generous paid leave for new parents to bond with their children and support family needs

$130,000 - $160,000 a year