OneMain Financial Jobs

Home View All Jobs (2,082,767)

Job Information

Marvell Network Security Engineer in Dulles, Virginia

About Marvell

Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, and carrier architectures, our innovative technology is enabling new possibilities.

At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead.

Your Team, Your Impact

Be part of the team that’s redefining how a global technology leader secures its cloud and AI future. At Marvell, our Enterprise Security Engineering & Compliance group is where innovation meets protection — building and deploying next-gen security architectures that safeguard data across dynamic cloud, SaaS, and AI environments. From designing CASB strategies to securing the latest GenAI tools, you’ll work at the intersection of cutting-edge tech and real-world impact. If you’re passionate about staying ahead of evolving threats and enabling secure innovation at scale, this is where your expertise will make a difference.

We are seeking a highly skilled and motivated SaaS and Cloud Access Security Platform Engineer to join our Information Security team. This role will be pivotal in ensuring secure access to SaaS applications and safeguarding organizational data in the context of AI technologies. The ideal candidate will have deep expertise in CASB solutions, SaaS access security, data loss prevention, and developing robust security strategies to enable safe technology adoption.

What You Can Expect

  • Design, implement, operate, and support enterprise network security solutions across traditional, virtualized, and cloud environments, including routing, switching, segmentation, and traffic filtering technologies.

  • Serve as a subject matter expert for network security technologies, including firewalls, remote access solutions, IPSec VPNs, IDS/IPS, web application firewalls, proxies, DLP, CASB, NAC, micro-segmentation, wired and wireless security, SIEM, and next-generation breach detection platforms.

  • Design, deploy, and operate Palo Alto Networks SaaS Inline Security capabilities to provide real-time inspection, threat prevention, and data protection for SaaS application traffic.

  • Implement and manage Palo Alto Networks AI Access Security controls to secure enterprise usage of AI-driven and generative AI platforms, including policy enforcement, data loss prevention, and visibility into AI application usage and risk.

  • Integrate SaaS Inline Security and AI Access Security with existing Palo Alto Networks firewall platforms, CASB, DLP, and SIEM solutions to deliver a cohesive, end-to-end security architecture.

  • Define and enforce security policies for SaaS and AI application access aligned with corporate risk tolerance, data protection requirements, and industry best practices.

  • Monitor, analyze, and respond to security events and alerts related to SaaS and AI application traffic, performing investigation, tuning, and continuous optimization of controls.

  • Evaluate emerging SaaS and AI security features within the Palo Alto Networks ecosystem, advising on adoption, roadmap alignment, and operationalization across the enterprise.

  • Lead and contribute to network security initiatives from concept and architecture through implementation, testing, and production rollout, ensuring solutions align with business and security requirements.

  • Perform day-to-day operational support for network security infrastructure, including monitoring, troubleshooting, break-fix remediation, ticket handling, and change management in accordance with established processes and SLAs.

  • Provide expert-level troubleshooting of complex network and security issues at the protocol level (TCP/UDP, IP, ARP, DNS, HTTP/S), identifying root causes and implementing sustainable corrective actions.

  • Design, deploy, and maintain IPSec VPN solutions, including site-to-site and remote access, with a focus on scalability, security, and operational reliability.

  • Administer, design, and support Palo Alto Networks firewalls in on-premises, virtualized, and cloud-based environments; perform policy optimization, threat prevention tuning, upgrades, and lifecycle management.

  • Support and integrate complementary security platforms such as F5 WAF and McAfee CASB, ensuring seamless interoperability within the broader cybersecurity ecosystem.

  • Develop and maintain detailed technical documentation, network diagrams, security standards, and operational runbooks that reflect best practices and reference architectures.

  • Apply security control frameworks and methodologies (e.g., NIST, Cybersecurity Kill Chain) to architecture decisions, threat modeling, and remediation strategies.

  • Evaluate emerging cybersecurity technologies and vendors, objectively assessing technical capabilities versus marketing claims, and recommending solutions that provide measurable value and integrate effectively with existing systems.

  • Collaborate closely with cross-functional teams, including IT operations, cloud engineering, application teams, and security leadership, to ensure secure-by-design network architectures.

  • Use scripting and automation (Python required; Perl and Java a plus) to improve operational efficiency, enhance visibility, and reduce manual effort in network security operations.

  • Provide technical leadership, mentorship, and oversight for assigned projects or junior team members, promoting best practices and continuous improvement.

  • Stay current with evolving threat landscapes, attack vectors, and next-generation security platforms, proactively adapting defenses to address new risks.

  • Participate in on-call rotations and provide after-hours support as required to ensure the availability, integrity, and security of critical network infrastructure.

What We're Looking For

  • Bachelor's Degree or equivalent

  • Strong understanding of enterprise level network operations including but not limited to route, switch, segmentation and filtering technologies in traditional, virtualized and cloud environments

  • Proven track record of successful IT project contribution from concept to completion

  • 6+ years of specialization in Network Security technologies including firewall, remote access and IPSec VPN

  • 6+ years of successful network-level troubleshooting and break-fix implementations

  • 6+ years of experience with day-to-day network support, ticketing and change management

  • Experience in network security solutions design, documentation and best practices

  • Proven experience working in engineering capacity supporting network security and capabilities such as Firewalls, Intrusion Detection and Prevention Systems, Proxies, DLP, Network Deception, micro-segmentation, Network Access Control (NAC), wired and wireless security, SIEM, Next Gen Breach Detection Systems, Cloud Access Security Brokers(CASB)

  • Hands on experience with Palo Alto firewalls, F5 WAF, and McAfee CASB is highly desired.

  • Expert-level understanding of network protocols (TCP/UDP, IP, ARP, DNS, HTTP(S), etc.)

  • Detailed understanding of attack vectors, current threats, and their remediation strategies

  • Strong time management skills planning, organizing, and leading architecture development efforts

  • Strong interpersonal and communications skills to build and maintain ongoing business relationships

  • Self-Starter that requires minimal supervision, multi-tasks effectively, and can provide oversight and coaching to others for any assigned projects or tasks.

  • Detailed understanding of control frameworks and reference architectures such as NIST, Cybersecurity kill chain, etc.

  • Able to stay on top of latest cybersecurity developments and next gen platforms

  • Available for on call after hours support as required

Additional Knowledge & Skills

  • Demonstrable experience with IPSEC VPN design, implementation, troubleshooting

  • Expert level knowledge of Palo Alto Networks firewalls, including administration, operations, design, deployment, troubleshooting

  • Demonstrable experience with Palo Alto Networks firewalls in virtual and cloud environments

  • Demonstrable experience with Palo Alto Networks SaaS Inline Security and AI Access Security capabilities

  • Able to work with suppliers and vendors to assess a true value of cybersecurity capabilities vs what they are offering as a sales pitch and how those capabilities would apply to the company as a whole, from integrations to existing cybersecurity eco-system to their operationalization.

  • Experience with various languages (perl, python required, Java) a plus

    Expected Base Pay Range (USD)

133,000 - 196,800, $ per annum

The successful candidate’s starting base pay will be determined based on job-related skills, experience, qualifications, work location and market conditions. The expected base pay range for this role may be modified based on market conditions.

Additional Compensation and Benefit Elements

Marvell is committed to providing exceptional, comprehensive benefits that support our employees at every stage - from internship to retirement and through life’s most important moments. Our offerings are built around four key pillars: financial well-being, family support, mental and physical health, and recognition. Highlights include an employee stock purchase plan with a 2-year look back, family support programs to help balance work and home life, robust mental health resources to prioritize emotional well-being, and a recognition and service awards to celebrate contributions and milestones. We look forward to sharing more with you during the interview process.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

Any applicant who requires a reasonable accommodation during the selection process should contact Marvell HR Helpdesk at TAOps@marvell.com.

Interview Integrity

To support fair and authentic hiring practices, candidates are not permitted to use AI tools (such as transcription apps, real-time answer generators like ChatGPT or Copilot, or automated note-taking bots) during interviews.

These tools must not be used to record, assist with, or enhance responses in any way. Our interviews are designed to evaluate your individual experience, thought process, and communication skills in real time. Use of AI tools without prior instruction from the interviewer will result in disqualification from the hiring process.

This position may require access to technology and/or software subject to U.S. export control laws and regulations, including the Export Administration Regulations (EAR). As such, applicants must be eligible to access export-controlled information as defined under applicable law. Marvell may be required to obtain export licensing approval from the U.S. Department of Commerce and/or the U.S. Department of State. Except for U.S. citizens, lawful permanent residents, or protected individuals as defined by 8 U.S.C. 1324b(a)(3), all applicants may be subject to an export license review process prior to employment.

#LI-JS22

DirectEmployers