Network & Network Security Engineer

We are looking for Network & Network Security Engineer for Saudi Arabia Location

Interview key stakeholders and conduct deep-dive workshops (up to 6) to ensure a shared understanding of architecture and design documents.

Understand Business/Technology objectives and requirements and assess current Network & security architecture based on that.

Perform a desktop review of the current architectural building blocks and logical network designs including switches, routers, Load balancers, WAN accelerators, SD-WAN nodes and management and monitoring platforms

Perform a desktop review of the current HLD, LLD and other documentation of the network architecture

Review existing physical and logical architecture, including High-Level and Low-Level network-security designs, with specific emphasis on inband devices and focal points (e.g.. Firewalls, WAFs, IPS/IDS, Email Gateway, Proxy, ..etc.)

Review Data Centers (ADC , KDC) topologies covering their layers and segments such as Internal-DC, Internet/ Extranet DMZs, Extranet and WAN

Assess the Data Center Interconnectivity (DCI) between the ADC/KDC and check the utilization, delay, latency and packet loss using Alinmas monitoring tools

Review and assess Data Centers (ADC , KDC) East-West & North-South traffic flows.

Assess the logical design and understand the traffic flow to evaluate overall architecture resiliency, efficiency, and performance.

Review and assess the network architecture in terms of High Availability at every segment and identify any single points of failure or inefficiencies in configuration

Analyze the network resiliency design and considerations at every layer and segments

Review the architecture and design scalability

Understand deployment models and modules/features utilized to evaluate the efficiency and resiliency of Firewalls, WAFs, IPS/IDS, Email Gateway, and Proxy against potential failures

High level and sample configuration/policies review for critical network-security devices against recognized security standards.

Review capacity utilization collected from monitoring systems for critical devices and interfaces and compare it with the maximum capacity according to vendor data sheets and pest practices

Perform devices aging analysis and identify End-Of-Life and End-of-Service components

Review and assess design of the Network architecture covering tiering, VLANs, IP addresses schema and L2&L3 protocols

Assess network critical communication links bandwidth and utilization using the current monitoring tools

Review and assess the WAN architecture including WAN accelerators, SD-WAN nodes

Assess the efficiency in monitoring and analyzing network traffic by understanding the nature and type of captured traffic.