Senior Network Security Engineer

The role of Senior Network Security Engineer is to design, implement, maintain and improve security compliance protecting our organization's network infrastructure from Cyber Threats, vulnerabilities, and unauthorized access. This role is primarily responsible for rolling our network security monitoring and visibility tools like Arista, Gigamon, Viavi, Plixer and NDR. This focuses on ensuring that security technologies are optimized for detecting, preventing, and responding to security threats in real-time. This also involves collaboration with Network engineers, IT, and security operations to deploy and support enterprise-level Cyber security platforms and solutions.

• Define and enforce network security policies, standards, and best practices.
• Setup network port, IP, rack and stack the hardware for the network visibility tools like Arista, Gigamon & Viavi.
• Design, deploy, and manage security solutions such as firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), and endpoint protections.
• Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate risks.
• Monitor network activity, analyse traffic logs, and investigate security incidents or breaches.
• Perform root cause analysis on incidents and coordinate incident response and remediation efforts to improve security posture and prevent security breaches.
• Maintain and update security documentation, including policies, incident reports, and network diagrams.
• Build observability dashboard on the health of the network monitoring tools and the traffic visibility on various network infrastructure and tools.
• Collaborate with stakeholders, network and cross-functional teams to align security with organizational goals and compliance requirements.
• Lead or participate in security projects, disaster recovery planning, and business continuity initiatives.
• Stay updated on emerging threats, vulnerabilities, and security technologies, and recommend improvements.
• Optimize network security tools and platforms for performance and effectiveness, ensuring they meet compliance and organizational requirements.
• Maintain comprehensive documentation for network configurations, troubleshooting guides, and operational procedures.

• Technical Skills:
  • Experience with IDS/IPS, and security frameworks (e.g., NIST, ISO 27001).
  • Strong scripting skills in Python, PowerShell, or Bash for automation and tool integration.
  • Experience in Cloud security tools and platforms (GCP, AWS, Azure) and DevOps.
  • Experience in Observability tools (Dynatrace, Splunk, Prometheus Grafana).
  • Understanding of the SIEM tools (e.g., Splunk, QRadar, SecOps or equivalent)
  • Familiarity with ITSM processes, Agile practices, ServiceNow, JIRA.
• Proficiency with network monitoring tools such as Gigamon, Viavi, Arista or equivalent, NDR tools like Arista, Cisco or equivalent, NetOps like Plixer and SIEM tools like (e.g., Splunk, QRadar, SecOps or equivalent).
• Strong experience in rack & stack and rolling out network security tools and architecting various tools to build an optimized solution.
• Strong knowledge of network architectures, protocols (TCP/IP, UDP), routing, switching, and load balancing.
• Expertise in firewall technologies (e.g., Check Point, Cisco, Fortinet), VPNs (SSL, IPSec), authentication protocols (LDAP, RADIUS), load balancers and cloud security.

• Experience:
  • Bachelor's or Master’s degree in Computer Science, Information Security, or related field, or equivalent practical experience.
  • Minimum 5-10 years of experience in network engineering and security management.
  • Proven experience in managing security platforms and tools in a large, complex environment.
  • Experience with Network security, analysis, and response, including knowledge of common attack vectors.

• Certifications:
  • Relevant certifications such as CISSP, CEH, CCNA/CCNP Security, NSE (Fortinet), or equivalent.
  • Cybersecurity certificates (preferred)