Network Security Engineer

GBM is hiring a experienced and highly motivated Mid-Career Network Security Engineer to join our information security team. The ideal candidate will be responsible for designing, implementing, maintaining, and troubleshooting our organization’s network security infrastructure. This role requires a strong understanding of network protocols, security principles, and a proven ability to protect sensitive data and systems from evolving cyber threats. This position demands a balance between technical expertise and strong client-facing skills, focusing on network security solutions. Key Responsibilities : Design, implement, and manage network security solutions, including firewalls (e.g., Palo Alto, Cisco ASA, Fortinet), intrusion detection / prevention systems (IDS / IPS), VPNs, web application firewalls (WAFs) and other security appliances. Monitor network security systems for anomalies, alerts and potential security breaches, and respond effectively to incidents. Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in the network infrastructure. Develop, implement, and enforce network security policies, standards, and procedures in alignment with industry best practices and compliance requirements. Perform reviews of network configurations to ensure compliance and identify areas for improvement. Administer and troubleshoot network devices such as routers, switches, and wireless access points, with a focus on their security configurations. Participate in the evaluation and selection of new security technologies and tools. Collaborate with IT operations, development teams, and other stakeholders to integrate security into all phases of the system development lifecycle. Develop and maintain comprehensive documentation for network security architecture, configurations, and procedures. Stay up-to-date with the latest security trends, threats, vulnerabilities and technologies. Provide technical guidance and mentorship to team members as needed. Requirements : Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or a related field. (Relevant experience may substitute for a degree). 5 to 8 years of progressive experience in network security engineering or a similar role. Strong expertise with various security technologies, including :

Next Generation Firewalls (e.g., Palo Alto Networks, Cisco ASA, Fortinet). IDS / IPS solutions. VPN technologies (IPsec, SSL VPN). Network Access Control (NAC) solutions. SIEM (Security Information and Event Management) platforms. Symantec (Broadcom) Web Proxy Endpoint security solutions (AV and EDR).

In-depth knowledge of networking protocols and services : TCP / IP, DNS, DHCP, HTTP / S, BGP, OSPF, VLANs, etc. Proven experience in incident response, forensics, and remediation. Excellent problem-solving, analytical, and communication skills. Ability to work independently and as part of a team in a fast-paced environment. Collaboration with pre-sales, project team, vendors and contractors. Strong attention to detail and commitment to security best practices. Sound experience in implementing multi-vendor security solutions. Preferred Skills and Certifications : Any of the below mentioned skills / certifications would be preferred. Professional level security certifications (e.g : CCNP Security, PCNSE, etc ..) — Must Certified experience with Cisco ISE — Must Certified Information Systems Security Professional (CISSP) — Preferred Certified Ethical Hacker (CEH) — Preferred CompTIA Security+ — Preferred Competitive salary and benefits. Opportunity to work on innovative projects. Collaborative and flexible work environment. Opportunities for professional development and learning. How