The Network Security Engineer is responsible for protecting an organization’s networks and data from cyber threats. This role involves designing, implementing, and maintaining security infrastructure (firewalls, intrusion detection/prevention systems, VPNs, etc.) and monitoring the network for vulnerabilities or incidents. The engineer will play a critical role in upholding Zero Trust security principles and ensuring high availability and integrity of network services in a dynamic, cloud-enabled environment.
Key Responsibilities:
* Security Infrastructure Management: Configure, deploy, and maintain network security systems (firewalls, IDS/IPS, VPN gateways, encryption devices) to safeguard internal networks and cloud environments.
* Threat Monitoring & Incident Response: Monitor network traffic and logs for suspicious activities; promptly investigate and respond to security incidents or breaches to minimize impact.
* Vulnerability Assessment: Conduct regular security audits, vulnerability scans, and penetration tests to identify and remediate network weaknesses. Implement patches and updates to address vulnerabilities and ensure systems are protected against emerging threats.
* Access Control & Policies: Enforce access controls and network segmentation (supporting a Zero Trust Network Access model) by administering firewalls and network access control lists. Develop and update network security policies, standards, and procedures to align with best practices and compliance requirements.
* Collaboration & Advisory: Work closely with IT infrastructure teams, application developers, and security architects to integrate security measures into new projects and systems. Provide guidance on secure network design and educate team members on security best practices.
* Documentation & Compliance: Maintain detailed documentation of configurations, incidents, and changes. Ensure all network security measures comply with relevant regulations and industry standards (e.g., NIST, ISO 27001, PCI-DSS) and assist in preparing for security audits.
Required Qualifications & Skills:
* Education & Background: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent work experience).
* Technical Skills: Strong understanding of networking protocols (TCP/IP, DNS, VPN, etc.) and hands-on experience with network security technologies (firewalls such as Palo Alto/Cisco/Fortinet, IDS/IPS, VPN solutions, SIEM tools). Proficiency in configuring and managing firewalls and routing/switching equipment in complex networks.
* Security Expertise: Knowledge of cybersecurity principles, threat landscape, and best practices (e.g., Zero Trust architecture, defense-in-depth, encryption, secure network design ). Ability to perform log analysis, intrusion detection, malware analysis basics, and incident handling.
* Problem-Solving: Strong analytical and troubleshooting skills for diagnosing network and security issues. Ability to respond effectively under pressure during security incidents or outages.
* Communication & Teamwork: Excellent verbal and written communication skills. Ability to work collaboratively with cross-functional teams, explain technical issues to non-technical stakeholders, and provide user training or guidance on security policies when needed.
Preferred Qualifications:
* Advanced/Cloud Security: Experience with cloud security (AWS, Azure, or GCP networking and security services) or secure network design in hybrid cloud environments. Familiarity with SASE (Secure Access Service Edge) frameworks or software-defined networking is a plus.
* Automation & Scripting: Scripting or automation skills (e.g., Python, PowerShell) to automate network/security tasks and improve efficiency in security operations.
* Advanced Education: Master’s degree in Cybersecurity or Information Systems.
Experience Requirements:
* Experience: Minimum 5+ years of hands-on experience in network security, cybersecurity engineering, or a related IT infrastructure security role. Proven track record implementing and managing firewalls, IDS/IPS, VPNs, and performing security monitoring and incident response in an enterprise or managed services environment.
Certifications:
* Industry Certifications: Professional certifications are highly advantageous. Preferred certifications include CISSP, CISM (for security management knowledge) or CEH, GIAC (for technical security skills). Vendor-specific certifications such as Palo Alto Networks PCNSE/PCNSA are also valuable and demonstrate expertise in relevant technologies.