NETWORK SECURITY MANAGER

We are seeking a high-calibre Network Security Manager & Lead Engineer to serve as the primary architect and technical authority for our network security posture. This is a critical hybrid role designed for a professional who can balance strategic security planning with deep-tier technical execution. The successful candidate will not only identify risks but will engineer the solutions to eliminate them. We are looking for a leader who moves beyond administrative oversight or reactive troubleshooting to proactively build a resilient, Secure-by-Design network.

You will have the autonomy to define the security roadmap and the technical influence to ensure those standards are implemented effectively across our on-prem and cloud infrastructure.

Strategic Key Responsibilities

1. Security Architecture & Governance Network Architecture Reviews: Conduct comprehensive architectural assessments of on-premises, hybrid, and multi-cloud (GCP/Azure/AWS) networks to ensure alignment with global security frameworks. Application Architecture Reviews: Perform application architecture reviews from network security perspective (e.g., tiered approach, flow analysis, load balancing security, and component placement). Standards & Baselines: Establish and enforce Secure Configuration Baselines for all network assets, ensuring the Network Operations team adheres to hardened standards. Risk Lifecycle Management: Proactively perform vulnerability assessments on infrastructure; track and drive remediation efforts to successful closure.

2. Advanced Security Engineering Zero Trust Implementation: Lead the design and implementation of East-West traffic security using zero-trust principles. Access Control Authority: Serve as the L3 Subject Matter Expert (SME) for NAC (Forescout/ISE) and Secure Remote Access/SASE (Zscaler/VPN). PUBLIC Vulnerability Management: Perform targeted vulnerability assessments on network infrastructure, track findings, and drive the remediation lifecycle to closure. Firewall Rule Reviews: Conduct periodic policy reviews to eliminate redundant rules, reduce the attack surface, and enforce least-privilege access across all environments.

3. Cross-Functional Partnership Operational Alignment: Act as the strategic bridge between Information Security and IT Operations, translating complex security requirements into actionable engineering tasks. Incident Escalation: Provide expert-level support for complex security incidents and network-related anomalies.

Candidate Qualifications Experience: 1012+ years in Information Security with a specialization in network and infrastructure security; must demonstrate a clear career progression from hands-on engineering to architectural design and leadership responsibilities. Domain Expertise: Proven track record in deploying NAC, Micro-segmentation, and Zscaler/SASE at an enterprise scale. Network Mastery: Deep technical command of OSI layers, BGP, OSPF, and Cloud-native networking components. Education & Certifications: Bachelor's degree in a technical field. High-tier certifications such as CCIE/CCNP Security, CISSP, or CISM are strongly preferred. ISSAP is an advantage.