Network Security Engineer

ROLE PURPOSE

The L2 Network Security Engineer will be responsible for designing, implementing, and maintaining

network security solutions to protect the organization & data and systems. You will work closely with

other IT teams to ensure the security and integrity of the network infrastructure.

ROLES & RESPONSIBILITIES

o Design and implement Cisco-based network security architectures, including firewalls, intrusion

prevention systems, VPNs, and access control lists (ACLs).

o Configure and manage Cisco security products, such as PaloAlto, FortiGate, Cisco Firepower,

Cisco ASA, Cisco Umbrella, and Cisco ISE.

o Coordinate with vendors for product support, updates, and upgrades.

o Develop and implement network security policies, standards, and procedures.

o Configure, monitor, and maintain firewalls to control network access and protect against

unauthorized intrusion.

o Implement and manage intrusion detection and prevention systems (IDS / IPS) to identify and

mitigate security threats.

o Configure and manage virtual private networks (VPNs) to enable secure remote access.

o Investigate and respond to security incidents, including data breaches and unauthorized access.

o Handle escalated security incidents from L1 support and manage incident response processes.

o Perform in-depth analysis of security breaches and vulnerabilities.

o Coordinate with relevant teams for incident containment, eradication, and recovery.

o Manage, configure, and troubleshoot security appliances like firewalls, VPNs, intrusion

prevention systems (IPS), and web proxies.

o Apply firewall policies and rules to ensure compliance with organizational security policies.

o Work with other departments, such as network and systems engineers, to implement and

manage security solutions.

o Coordinate patch management activities, ensuring all security patches and updates are applied

across systems and network devices in a timely manner.

REQUIRED COMPETENCIES

o Industry certifications such as Cisco Certified Network Professional (CCNP Security).

o Experience : 10+ years of experience in network engineering or administration, with exposure to

complex troubleshooting and network security management.

o Technical Skills :

o CCNP Security or equivalent certification.

o Experience with Advanced Malware Protection (AMP) PaloAlto, FortiGate and Cisco Identity

Services Engine (ISE), FMC & FTD, ASA

o Security : Experience with VPNs, and network access control (NAC).

o Familiarity with tools like SolarWinds, Nagios, or PRTG for monitoring network performance.

o Familiarity with SD-WAN technologies.

o Experience working in cross-functional IT teams and with third-party vendors.

o Ability to communicate technical issues clearly with both technical and non-technical

stakeholders.

o Excellent problem-solving and analytical skills.

o Strong communication and interpersonal skills.

o Ability to work independently and as part of a team.

EXPERIENCE AND QUALIFICATION

o Bachelor degree in Computer Science, Information Technology, or a related field.