Primary Roles & Responsibilities:
Network Security Architecture & Design:
- Lead the design, implementation, and optimization of robust, scalable, and secure network architectures for enterprise and data center environments.
- Develop and maintain network security policies, standards, and procedures in alignment with industry best practices and compliance requirements.
- Conduct security assessments and vulnerability analyses of existing network infrastructure, recommending and implementing remediation strategies.
Operations & Troubleshooting:
- Provide expert-level operational support and troubleshooting for complex network security issues, ensuring minimal downtime and business continuity.
- Manage and maintain various network security devices and platforms including, but not limited to, Firewalls (Next-Gen and traditional), Intrusion Prevention Systems (IPS), Web Application Firewalls (WAF), VPN gateways, Load Balancers, and Network Access Control (NAC) solutions
- Monitor network security performance, health, and capacity, implementing proactive measures to prevent issues.
Customer Relationship Management:
- Serve as a primary technical point of contact for key customers, understanding their unique security needs and translating them into technical solutions.
Team Leadership & Mentorship:
- Lead and mentor a team of network engineers, fostering skill development, knowledge sharing, and adherence to best practices.
- Participate in the recruitment and training of new team members.
Project Management & Delivery:
- Lead and execute network security projects from inception to completion, ensuring timely delivery within scope and budget.
Innovation & Continuous Improvement:
- Stay abreast of the latest trends, threats, and advancements in network security technologies and methodologies.
- Drive continuous improvement initiativeswithin the network security domain.
Expected Experience and Expertise
- 12+ years of hands-on experiencein designing, implementing, and managing complex network security solutions in enterprise-level environments.
- Deep expertisein various firewall technologies (Palo Alto, Fortinet, Cisco, Check Point), including policy management, VPN configuration, advanced threat prevention features (IPS, URL Filtering, WildFire/Sandbox, AV).
- Strong understanding and experience withIntrusion Prevention Systems (IPS)and their deployment and tuning.
- Proficiency withVPN technologies(IPSec, SSL VPN) for site-to-site and remote access connectivity.
- Hands-on experience withLoad Balancers(e.g., F5 BIG-IP LTM/ASM, NetScaler) andWeb Application Firewalls (WAFs).
- Experience withNetwork Access Control (NAC)solutions (e.g., Cisco ISE, Aruba ClearPass).
- Solid understanding ofrouting and switching protocols(OSPF, BGP, EIGRP, VLANs, STP, etc.) and their security implications.
- Experience withDDoS mitigation techniques and solutions.
- Working knowledge ofcloud security principlesand experience with security controls in AWS, Azure, or GCP.
