Cloud Network Security Engineer
Top focus
About this role YOUR TEAM Aladdin Platform Engineering powers the technology foundation behind BlackRock’s Aladdin platform - a unified system that connects risk, portfolio management, trading, and operations for investors globally. We build the mission critical hosting platform that enable engineers to develop products and operators to run the platform at scale.
Our teams sit at the center of how Aladdin evolves - partnering across product, data, and engineering to deliver scalable infrastructure that support mission-critical workflows for clients worldwide. We develop AI-first engineering capabilities, using a suite of tools across the development lifecycle to improve developer productivity and reduce friction at scale.
YOUR ROLE AND IMPACT The Cloud Network Security Engineer is responsible for automating, designing, implementing, and maintaining secure networking environments across public, private, and hybrid cloud platforms. This role ensures confidentiality, integrity, and availability of data and services by applying advanced security principles, and compliance standards.
You’ll pair strong engineering fundamentals with an AI-driven approach to solving problems—leveraging automation, intelligent tooling, and emerging AI capabilities to reduce operational toil, accelerate delivery, and enhance the developer experience.
As a technical leader, you will help shape platform strategy, influence architectural direction, mentor engineers, and drive the adoption of next-generation engineering practices that define the future of Aladdin. YOUR RESPONSIBILITIES Architecture & Design Develop secure network architectures for hybrid & multi cloud environments (AWS, Azure, GCP).
Architect robust security solutions for containerized applications. Implement network segmentation, micro-segmentation, and zero-trust principles. Design end-to-end encrypted connectivity patterns. Design secure network architecture for containerized environments i.e.
Open Container Initiative (OCI) container packaging and runtime Design scalable / dynamic security patterns, leveraging tag & identity-based attributes. Security Implementation Configure and manage cloud-native firewalls, security groups, network ACLs and network security appliances.
Deploy intrusion detection/prevention systems and threat monitoring tools. Operations & Monitoring Monitor cloud network traffic for anomalies and potential breaches. Remediate vulnerability assessments and penetration testing on cloud networks.
Respond to and investigate cloud security incidents. Automation & Optimization Strong understanding of Infrastructure as Code (IaC) tools and CI/CD pipelines for secure deployments. Automate security policy enforcement and configuration management.
Proficient in scripting with Python to automate network tasks, build integrations, and manage workflows. YOU HAVE… Required Skills & Qualifications Excellent collaboration skills to work effectively across teams, along with strong verbal and written communication abilities.
Expertise in network security protocols (IPSec, TLS, MacSec, etc.) and encryption standards. Experience with cloud networking services: VPC, VNets, Subnets, Load Balancers. Proficiency with IaC Tools and Frameworks: Comfortable working with tools such as Terraform, Ansible to automate infrastructure provisioning and security configuration Proficient in AI tooling & innovation Preferred Tools & Technologies Infrastructure as Code (IaC) tools for provisioning cloud resources., Automation tools for configuration management and deployment, Python scripting.
Git/GitHub/GitLab for version control. SIEM tools (Splunk) for monitoring. Ensure compliance with regulatory frameworks (ISO 27001, SOC2, GDPR). Cloud-Native distributed containerized microservice orchestration Network Policies, Istio, Calico.
Strong knowledge of networking protocols (BGP, OSPF). Understanding of Open Container Initiative (OCI) container image packaging and runtime/Netconf-yang/Linux/ API programming /JSON /XML /GitHub. Certifications preferred: AWS Certified Security Specialty, Azure Security Engineer Associate, Certified Enterprise-grade container orchestration platform supporting declarative infrastructure and horizontal scaling Security Specialist (CKS), CISSP or CCSP.
Experience 5+ years in cloud network engineering and security. Hands-on experience with hybrid cloud connectivity and secure design patterns. Strong analytical and problem-solving abilities. Excellent communication and documentation skills Preferred skills Work closely with DevOps, Cloud Engineering, and Security Operations teams to deliver key projects.
Provide technical guidance and documentation for security best practices. Excellent collaboration skills to work effectively across teams, along with strong verbal and written communication abilities. 
For New York, NY Only the salary range for this position is USD$162,000.00 - USD$200,000.00 .
Additionally, employees are eligible for an annual discretionary bonus, and benefits including healthcare, leave benefits, and retirement benefits. BlackRock operates a pay-for-performance compensation philosophy and your total compensation may vary based on role, location, and firm, department and individual performance.
 Our benefits To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.
Our hybrid work model BlackRock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week.
Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation.
As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock. Guidance on AI use for candidates At BlackRock, AI has long been part of how we work – enhancing decision-making, improving operations, and helping us deliver better outcomes for clients.
We encourage candidates to use AI thoughtfully to learn, prepare, and work more effectively; but during our interview process, we want to focus on getting to know you through your own experiences, thinking, and judgment. To support you, we’ve provided guidance on when and how to use AI during our hiring process so you can approach each step with confidence and showcase your best self.
About BlackRock At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses.
Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress. This mission would not be possible without our smartest investment – the one we make in our employees.
It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive. To learn more about BlackRock, please visit Careers.BlackRock.com .
We also encourage you to get to know us on LinkedIn , Instagram , YouTube , X , and TikTok . BlackRock is proud to be an equal opportunity workplace. We are committed to equal employment opportunity to all applicants and existing employees, and we evaluate qualified applicants without regard to race, creed, color, national origin, sex (including pregnancy and gender identity/expression), sexual orientation, age, ancestry, physical or mental disability, marital status, political affiliation, religion, citizenship status, genetic information, veteran status, or any other basis protected under applicable federal, state, or local law.
View the EEOC’s Know Your Rights poster and its supplement and the pay transparency statement . BlackRock is committed to full inclusion of all qualified individuals and to providing reasonable accommodations or job modifications for individuals with disabilities.
If reasonable accommodation/adjustments are needed throughout the employment process, please email Disability.Assistance@blackrock.com . All requests are treated in line with our privacy policy . BlackRock will consider for employment qualified applicants with arrest or conviction records in a manner consistent with the requirements of the law, including any applicable fair chance law.