Back to Job Search

Security Engineer

Job Purpose

The role holder works under limited supervision, performing routine activities and taking on non-routine activities. The role holder understands the importance of meeting Service Level Agreements and is focused on meeting customer expectations. The role holder will resolve escalations from other team members and will have a good knowledge of their working area, processes and required technical skills.

Job Description : Security Engineer

We are seeking a candidate with 3 or more years of hands-on experience with enterprise-level network design and deployment, deploying and maintaining networking devices, with basic knowledge of security and load balancer technology.

  • A deep understanding of various factors to support various aspects of Security technology (Cisco, Palo Alto, Fortinet, F5, etc.) in an Enterprise network, Service Provider network, WAN/LAN Networking.
  • The ability to create high- and low-level design documents, test plans, develop use cases, and participate in implementation.
  • Fully able to support routine technical queries related to a single product/small set of products and able to support less experienced team members
  • Take ownership for listening to and understanding customer problems by asking relevant questions to resolve typically known problems within required timescales. Knows when problems need to be further escalated to ensure satisfactory resolution.
  • Develop an understanding of the customer's environment and service delivery requirements to enable the delivery of a first-class service.
  • To interpret client needs, assess the full requirements, and identify suitable solutions.
  • support on the service delivery and network solution implementation.
  • Builds simulated networks in test labs to validate the design and solution and to resolve highly complex problems and compatibility issues.
  • Executes all phases of project delivery including plan, design, network staging, implementation, migration, testing, handover, etc.
  • Write, review, implement and document configuration changes in customer environments
  • Communicating with client (and internal) end user and management groups regarding infrastructure design, maintenance, and administration


Qualifications

  • Bachelor's degree in Computer Science, Information Technology, Engineering, or related field.
  • 3+ years of hands-on experience in network engineering with focus on Security platforms.
  • Strong experience in configuring, managing, and troubleshooting security devices, including:
  • Next-Generation Firewalls (NGFWs): Palo Alto Networks (PAN-OS), Fortinet FortiGate, Cisco ASA/Firepower, Check Point.
  • Load Balancers & Web Application Firewalls (WAFs): F5 BIG-IP (LTM, GTM, ASM, APM), Citrix ADC (NetScaler), and Custom Profiles.
  • Intrusion Prevention Systems (IPS/IDS): Palo Alto Threat Prevention, FortiIPS.
  • VPN & Remote Access Solutions: Cisco AnyConnect, GlobalProtect, FortiClient, F5 APM.
  • Exposure in complex network security analysis and troubleshooting
  • Exposure in network security protocols such as:
  • Firewall and Routing/Switching: BGP, OSPF, VLAN, VRF, VXLAN.
  • VPN Technologies: IPsec, SSL/TLS VPN, L2TP, GRE.
  • Authentication & Access Control: RADIUS, TACACS+, LDAP, SAML, OAuth.
  • Encryption Standards: AES, RSA, SHA, ECC.
  • Experience in security monitoring, threat analysis, and incident response.
  • Strong scripting skills (Python, Bash, PowerShell) for automation and security policy management.
  • Perform security audits and risk assessments to identify potential threats and recommend mitigations.
  • Develop and enforce security policies related to access control, firewall rules, and network segmentation.
  • Manage and audit firewall policies and network access control lists (ACLs).
  • Knowledge of Cisco software technologies, including IOS, IOS-XE, IOS-XR, and NX-OS.
  • Proficient with the design, installation, configuration, troubleshooting, and monitoring of core LAN/WAN/ MAN services, as well as Wireless solutions
  • Expertise in creating repeatable, reliable, scalable network architectures, with fault tolerance, performance tuning, monitoring systems, statistics/metrics collection, and disaster recovery
  • Perform network performance tuning, capacity planning, and high availability management.
  • Use packet capture tools such as Wireshark for network troubleshooting and analysis.
    Certification is an advantage:
    • Minimum requirement: CCNA certification (Cisco Certified Network Associate).
    • Cisco Certified Network Professional (CCNP) - Security
    • Cisco Certified Network Professional (CCNP) - Enterprise
    • Cisco Certified CyberOps Professional
    • Check Point Certified Security Expert (CCSE)
    • Palo Alto Networks Certified Network Security Engineer (PCNSE)
    • Fortinet NSE 4, NSE 7