Network TDA - Security (Checkpoint Firewalls)

Company Description

We are part of International Airlines Group (IAG), one of the world’s leading airline groups and owner
of some of the biggest brands in the sky.

With a diverse workforce spread across four countries, IAG GBS provides creative and innovative solutions to drive sustainable transformation by delivering finance, procurement, and airline services, as well as group-wide systems across IAG. Each operating company benefits from the GBS centralised model, driving efficiencies, automation, and economies of scale.
IAG Tech’s vision is to increase shareholder value, accelerate business performance, delight
customers, enable employees, and protect our business through the innovative and agile use of technology and data.

Job Description

Purpose of the Role:

The Senior Network Security Engineer is a hands-on technical role focused on delivering network security projects and supporting the organization's network infrastructure. The role involves designing, configuring, and maintaining network security hardware and software, resolving complex service issues, and ensuring project deliverables align with operational requirements.

Key Responsibilities:

• Project Delivery & Technical Support:

  • Act as the lead technical authority in resolving complex service incidents, ensuring timely and effective resolutions.
  • Develop and implement secure, detailed logical designs for firewalls, load balancers, and Layer 2/Layer 3 VPNs.
  • Proactively deliver on projects, ensuring that network security systems are implemented effectively and within KPIs/SLAs.
  • Apply technical governance during project transitions, ensuring alignment with live environments.

• Network Security Operations:

  • Maintain and update firewall configurations and policies.
  • Test, secure, and optimize network systems.
  • Monitor network traffic, diagnose issues, and implement solutions to resolve congestion or protocol-related challenges.
  • Develop secure network architectures, maximizing the utilization of routers, switches, and related equipment.

• Collaboration & Communication:

  • Work with internal and external stakeholders to address information gaps and communicate technical solutions.
  • Establish procedures and best practices for network security operations.

Qualifications

Required Skills and Experience:

• Experience:

  • 5+ years in a network security role with hands-on expertise.
  • Operating at a CCNP level (certification not required but competency is essential).

• Technical Skills:

  • Strong competence in maintaining and securing network systems.
  • Practical experience in designing, deploying, and maintaining:
    • MPLS, VPN, and VRF network cores.
    • Layer 2 functions (e.g., VLAN, VXLAN, STP, MAC filtering).
  • Expertise in firewalls, load balancing, and VPN technologies.
  • Familiarity with implementing security blueprints provided by security architects.

• Industry Knowledge:

  • Knowledge of security best practices, communications networks, and user environments.

Desirable Skills and Certifications:

• Education and Certifications:

  • Bachelor's degree in Computer Science, IT, or a related field (or equivalent experience).
  • Certifications such as CISSP, CCNP Security, CCNA, MCIPT, or MCTS.

• Technology Experience:

  • Experience with Checkpoint and F5 appliances, Cisco ISE, and DNS/DHCPv4/DHCPv6/IPAM/DDI.
  • Exposure to Cisco, Juniper, and Palo Alto systems.

Additional Information