Network Security Engineer

Job Description: Our client is looking for a highly skilled and experienced Network Security Engineer to join their team. As a Network Security Engineer, you will be responsible for designing, implementing, and maintaining the security infrastructure and practices for our network environment. You will work closely with cross-functional teams to ensure the confidentiality, integrity, and availability of our network systems and data. Your expertise in network security best practices, vulnerability management, and incident response will be crucial in safeguarding our network infrastructure and protecting against cyber threats.

Responsibilities:

• Design, implement, and maintain network security solutions, including firewalls, intrusion detection/prevention systems (IDS/IPS), and virtual private networks (VPNs).
• Monitor network traffic and security logs for suspicious activities, and investigate and respond to security incidents and breaches.
• Conduct regular vulnerability assessments and penetration testing of network devices, systems, and applications.
• Collaborate with cross-functional teams to develop and enforce network security policies and procedures.
• Configure and maintain network security devices, ensuring optimal performance and adherence to security best practices.
• Analyze and troubleshoot network security issues, and provide timely resolution and mitigation.
• Stay up to date with the latest network security threats, vulnerabilities, and industry trends, and provide recommendations for risk mitigation.
• Perform network security audits and assessments to ensure compliance with relevant regulations and standards.
• Develop and maintain network security documentation, including diagrams, procedures, and standards.
• Participate in security incident response activities, including containment, eradication, and recovery.
• Provide technical guidance and mentorship to other team members on network security best practices.

Requirements:

• Bachelor's or Master's degree in Computer Science, Information Technology, or a related field.
• Proven experience as a Network Security Engineer or a similar role, with a strong background in securing network infrastructure.
• In-depth knowledge of network protocols, routing, switching, and network security technologies.
• Experience with network security devices, such as firewalls, IDS/IPS, VPNs, and web application firewalls (WAFs).
• Familiarity with network monitoring tools and log analysis for security event detection and response.
• Strong understanding of security principles, concepts, and best practices, including defense-in-depth and least privilege.
• Knowledge of common network security vulnerabilities, threats, and attack vectors.
• Experience with vulnerability management and patch management processes.
• Understanding of security compliance frameworks and regulations such as ISO 27001, NIST, GDPR, or HIPAA.
• Strong problem-solving and analytical skills, with the ability to analyze network security incidents and determine appropriate actions.
• Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Network Security Engineer (CNSE), or Certified Ethical Hacker (CEH) are highly desirable.
• Experience with scripting languages (e.g., Python, PowerShell) and security automation is a plus.
• Knowledge of cloud networking and experience in securing cloud-based environments (e.g., AWS, Azure) is an advantage.

Preferred Qualifications:

• Experience with network security assessment tools and methodologies.
• Familiarity with software-defined networking (SDN) and network virtualization technologies.
• Understanding of secure remote access technologies, such as multi-factor authentication (MFA) and secure socket layer virtual private networks (SSL VPNs).
• Knowledge of wireless network security principles and best practices.
• Experience with network security incident response and forensics.
• Understanding of network segmentation and network access control (NAC) technologies.
• Continuous learning and willingness to stay up to date with emerging network security trends and technologies.