Global Network Security Solution Engineer - PVH Corp.

Bridgewater, New Jersey, United States of America
24 Jun 2022
08 Sep 2022
Full Time
Responsible for Global Network Security technology solution engineering including the network perimeter; may include internal network security aspects such as network access controls, logical security controls and physical security controls. Will leverage existing networking & security skillset to collaborate with global and regional business units to ensure new solutions are implemented within Global Network Security standards and strategy set forth by the Global Network Security team. The position requires continual review and contributions to the network security standard and strategy in order to keep pace with respective industries, as well as, to keep pace with changing business technology requirements.

Solution design documentation will be required to ensure thoughtful and easily communicated solutions at different levels of the organization and different teams. Must have strong documentation and presentation skills to develop reference architectures, operational processes and solution documentation and the ability to present the proposed solutions.

  • Act as Subject Matter Expert (SME) and provide third-level support and analysis during investigations. Hands on experience with Checkpoint Firewalls, Cisco ASA and FTD Firewalls, F5 LTM / GTM / APM, and DNS.
  • Act as liaison between the business and the Global Network Security team as a solution engineer; the role is to enable business strategies while balancing the security risk. Participate and guide the solution request, participate in deployment planning and build operational run books for network focused support of the solution.
  • Manage incoming projects by establishing viable, strategic, and security-centric solutions using repeatable frameworks where network infrastructure technologies are foundational to the business request.
  • Produce solution engineering documentation which details the proposed solution which will meet or exceed the business' project technical requirements while also meeting or exceeding networking and security standards. Documentation includes typical network diagrams (physical and logical), data flow charts, process diagrams, financial and budgetary and operational support. Must be proficient with Visio.
  • Ability to clearly articulate network security perspectives to the business partners, helping them understand the potential impact and possible controls in business terms.
  • Be action and solution oriented with an emphasis on engineering security-centric networking solutions that enable PVH to meet business goals as well as regulatory requirements such as PCI.
  • Validate and prove complex security designs to produce detailed engineering specifications for existing and proposed technologies; in certain cases, provide detailed designs to effectively mitigate legacy technology vulnerabilities.
  • Assess, design, implement, and integrate enterprise security solutions including, but not limited to, next-generation firewalls, web application firewalls (WAF), intrusion prevention/detection systems (IDS/IPS), content filtering, secure log management, security information, network access control (NAC), load balancing LTM / GTM/APM (F5), remote access VPN, DNS, event management (SIEM) systems, anti-malware solutions, endpoint security solutions and certificate management.
  • Identify technology risks and independently evaluate the efficiency and effectiveness of complex information technology and security controls across IT infrastructure, cloud services, networks, and security systems to help manage risks that could impact the company.
  • Maintain knowledge of complex industry trends, current security issues, and security technologies.
  • Collaborate with the PVH I&O and Security teams to develop engineering design strategies for PVH in the form of standards, frameworks, Service catalogs and guidelines, with the emphasis on Infrastructure security.
  • Advise and contribute to strategies and initiatives to strengthen PVH's Security.
  • Experience with network access control solutions a plus
  • Research and coordinate migrations of existing security boundaries to new platforms and infrastructure. Devise network management policies and procedures to ensure the maximum availability of the corporate network. Evaluate new hardware and software technology and assesses applicability to the communications requirements of the corporation.
  • Investigate security incidents for the BU, work with ISG and recommend appropriate corrective actions. Primary point of contact for Network security audits, participate in scoping, deliverable requests, collaborate with IT senior leadership to clear audit reports and help ensure effectiveness/completeness of action plans.
  • Ensure IT owners are held accountable for the state of their controls and understand their responsibilities as to risk mitigation and remediation as well as compliance to Security policy & standards, reducing the likelihood of audit, regulatory & legal liabilities.
  • Educate management of the risk implications associated with a particular infrastructure design decisions, and communicate the likelihood and impact of those decisions so management can fully quantify those risks and determine tolerance levels.


  • Minimum 10 years in Information Technology with at least 5 dealing directly with network security, information security or infrastructure security.
  • At least 3 years of experience with commercial and open source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, cryptography, firewalls, routing, load balancing, vulnerability scanning and penetration testing), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.)
  • Broad-based knowledge of information security processes and technologies such as: business process design, risk assessment, minimum baseline security controls (*nix, Windows, network protocols, common services), data classification and management, security monitoring and log analysis, incident management, network protocols, application and database architectures, SDLC, system planning and integration, and security metrics.
  • Working knowledge of technologies such as operating systems, directory services, and network protocols.

  • Strong experience with Checkpoint, Cisco ASA series, Cisco FTD series, Cisco Switches and Routers Configurations, F5 Load Balancing and Forescout.
  • Have a complete understanding on system's infrastructure including firewalls, switches/routers, load balancers, DMZ networks, proxies, IPS, and DNS infrastructure.
  • Able to provide L3/L4 support including configuration changes, infrastructure enhancements and upgrades.
  • Capable of providing advanced support for enterprise firewall management; engages with infrastructure vendors as appropriate for complete problem resolution.
  • Capable of providing advanced support for enterprise load balancing management; engages with infrastructure vendors as appropriate for complete problem resolution.
  • The ability to understand and report on the overall infrastructure security risk posture of the environment, providing a holistic view of vulnerabilities and associated risks to the business and Infrastructure.
  • Able to focus on process improvements, removing deficiencies to manage risk, prevent/anticipate problems and identify opportunities for efficiencies and to move from manual to automated processes.


Bachelor's degree in Computer Science, Information Systems, Engineering, or related.

Certifications preferred: ITIL, ITSM, CISSP, CCNA, CCENT, CCNP, GSEC, MCSA, CISM.


  • Ability to translate business driver and priorities into security design.
  • Ability to influence others and shape/obtain desired outcome in areas outside of direct control.
  • Basics project management skills required to organize teams to deliver an implement a solution.
  • Outstanding verbal, written and presentation skills to effectively communicate infrastructure security projects in business terms to various levels within the organization.
  • Ability to see the big picture with high attention to critical details.
  • Strong, proven problem-solving and analytical skills to resolve problems and conflicts and drive solutions through to completion.
  • Strong facilitation skills and a clear ability to build strong relationships with business stakeholders at all levels, including executive managers and vendors.
  • Results oriented, well organized with follow-up skills to meet deadlines; has a track record of effectively managing multiple tasks in a dynamic environment.
  • Knowledge of government and other regulations related to the Security field (e.g., PCI, FFIEC, HIPAA).
  • Experienced in IS programs including, but not limited to, Audit Reviews, Risk Assessment, Awareness & Training, Identity Access & Management, Data Protection, Secure SDLC, Incident Management, Vulnerability Assessment, Penetration Testing, Third Party IS Assessment, Secure Configurations, Patch Management.
  • In depth knowledge of infrastructure and logical security technology with experience working with ITIL, ISO 27001 and/or CoBIT processes and procedures.

PVH Corp. or its subsidiary ("PVH") is an equal opportunity employer and considers all applicants for employment on the basis of their individual capabilities and qualifications, consistent with applicable law and without regard to race, color, sex, gender identity or expression, age, religion, creed, national origin, citizenship status, sexual orientation, genetic information, physical or mental disability, military status or any other characteristic protected under federal, state or local law. In addition to complying with all applicable laws, PVH also has a strong corporate commitment to inclusion, diversity and to ensuring that all current and future PVH associates are compensated solely on job-related factors such as skill, ability, educational background, work quality, experience and potential. To achieve these goals, across the United States and its territories, PVH prohibits any PVH employee, agent or representative from requesting or otherwise considering any job applicant's current or prior wages, salary or other compensation information in connection with the hiring process. Accordingly, applicants are asked not to disclose this salary history information to PVH

More searches like this