Network Security Engineer

Job Description Summary:

We are seeking an experienced and passionate Senior Network Security Engineer to join our client. The Engineer will be responsible for designing, implementing, and maintaining secure enterprise network platforms. This role involves leading initiatives to protect network integrity, ensuring compliance with security standards, and designing security solutions that enhance user and customer experiences. Candidates must possess excellent technical expertise, project and time management abilities, and proven problem-resolution skills while demonstrating curiosity to explore and implement innovative security solutions.

Key Duties & Responsibilities

• Design, implement, and manage secure enterprise network infrastructure to protect against cyber threats.

• Develop and enforce security policies, procedures, and best practices for network architecture.

• Configure and maintain firewalls, VPNs, IDS/IPS, and other network security solutions.

• Conduct regular vulnerability assessments, penetration testing, and security audits.

• Monitor and analyze network traffic to identify and mitigate potential threats and vulnerabilities.

• Develop security architectures and High-Level Design (HLD), Low-Level Design (LLD), and As-Built documentation.

• Collaborate with IT teams to integrate security measures into new and existing network solutions.

• Investigate security incidents, provide root cause analysis, and recommend remediation measures.

• Research and implement emerging security technologies to enhance network protection.

• Ensure compliance with industry security standards and regulations such as ISO 27001, NIST, and GDPR.

• Provide technical guidance and mentorship to junior network security engineers.

Requirements:

Skills and Experience (3+ years required):

• Strong understanding of Cisco networking (Routers, Switches, BGP, SDN, SDA, SD-WAN) with a security focus.

• Expertise in firewall administration, including Palo Alto, Fortinet, and Cisco ASA.

• Advanced knowledge of network security protocols (IPSec, SSL/TLS, 802.1X, NAC).

• Experience with Microsoft security solutions, including Active Directory, Group Policy, DHCP, and DNS security.

• Hands-on experience with VPNs, VLANs, intrusion detection systems (IDS/IPS), and DDoS mitigation.

• Knowledge of wireless security technologies and best practices.

• Experience with Cloud Security in platforms such as Azure, AWS, and Google Cloud.

• Strong background in cybersecurity frameworks and methodologies, including SOC operations.

• Ability to design, implement, and manage SIEM and log analysis tools.

• Experience with network automation and scripting (Python, PowerShell, or Ansible) is a plus.

Desirable Certifications / Skills / Experience:

• CCNP Security or Higher

• CISSP, CISM, or CEH certification is highly desirable.

• Cisco CCIE Security (preferred but not essential).

• Experience with Zero Trust Architecture (ZTA) and Identity and Access Management (IAM).

• Familiarity with Security Orchestration, Automation, and Response (SOAR) solutions.

• Experience in presales security consulting (preferred but not essential).

Attributes:

• Passionate about cybersecurity and staying ahead of emerging threats.

• Strong problem-solving skills with an analytical and methodical approach.

• Excellent troubleshooting abilities in a high-pressure environment.

• Strong communication and interpersonal skills to engage with technical and non-technical stakeholders.

• Ability to work independently and as part of a team.

• Detail-oriented with excellent organisational and time management skills.

• Willingness to work flexible hours and be available for on-call support when required.

• Strong documentation skills for security policies and incident reports.

• Commitment to continuous learning and professional development.