Job Overview
We are looking for an experienced Network Security Engineer to design, implement, monitor, and support enterprise security infrastructure across on-premises, cloud, and hybrid environments. The ideal candidate should possess strong expertise in next-generation firewalls, SIEM platforms, cloud security, Zero Trust architecture, and modern cybersecurity operations.
The role requires hands-on experience with technologies such as Fortinet, SonicWall, Palo Alto Networks, SIEM solutions, SASE, SD-WAN, endpoint security, and threat detection platforms.
Key Responsibilities
- Design, deploy, and manage enterprise network security solutions
- Configure and administer Fortinet, SonicWall, and Palo Alto firewalls
- Implement and maintain VPNs, IPS/IDS, web filtering, NAT, ACLs, and segmentation policies
- Monitor security events using SIEM, XDR, and SOC monitoring platforms
- Investigate security incidents, perform threat analysis, and support incident response activities
- Manage firewall policies, security rules, and compliance controls
- Implement Zero Trust Network Access (ZTNA) and identity-based security controls
- Support cloud security initiatives across AWS, Azure, and hybrid infrastructure
- Configure and support SD-WAN and Secure Access Service Edge (SASE) solutions
- Conduct vulnerability assessments and remediation activities
- Collaborate with infrastructure, cloud, and application teams to secure enterprise environments
- Maintain security documentation, diagrams, SOPs, and audit records
- Participate in on-call rotations and critical incident handling
Required Skills & Technologies
Firewall & Network Security
- Fortinet FortiGate
- SonicWall
- Palo Alto Networks
- Check Point (preferred)
- Cisco Firepower / ASA
- VPN Technologies (IPSec / SSL VPN)
- IDS/IPS
- Web Application Firewall (WAF)
- NAC (Network Access Control)
Modern Security Technologies
- Zero Trust Architecture (ZTA)
- ZTNA (Zero Trust Network Access)
- SASE (Secure Access Service Edge)
- SD-WAN Security
- SSE (Security Service Edge)
- CASB (Cloud Access Security Broker)
- Micro-segmentation
- Secure Remote Access Solutions
SIEM, SOC & Threat Detection
Experience with one or more:
- Splunk
- QRadar
- Microsoft Sentinel
- LogRhythm
- ArcSight
- Elastic SIEM
Knowledge of:
- SOC operations
- Threat hunting
- Log correlation
- MITRE ATT&CK framework
- Incident response
- Threat intelligence integration
Cloud & Infrastructure Security