Conduct comprehensive network security assessments, vulnerability scans, and risk assessments to identify potential threats, vulnerabilities, and compliance gaps within client infrastructures.
Utilize industry-standard tools and methodologies to perform discovery and mapping of network assets, identifying weak points in perimeter defenses, firewalls, and internal security controls.
Provide clear, actionable reports detailing findings, vulnerabilities, and risks along with remediation recommendations.
Remediation Strategy & Execution:
Work closely with clients and internal teams to prioritize and plan remediation activities based on the identified vulnerabilities and security risks.
Implement network security solutions and configurations, including patch management, firewall adjustments, and intrusion detection/prevention system (IDS/IPS) updates.
Collaborate with cross-functional teams to develop and deploy remediation plans and strategies that improve the overall security posture.
Security Monitoring & Incident Response:
Monitor network traffic and security logs to detect and respond to potential security breaches or unauthorized activities.
Provide support for security incident investigations, including root cause analysis (RCA) and assisting with the development of remediation steps.
Security Best Practices & Documentation:
Maintain and update security policies, standards, and guidelines for network security best practices.
Assist in the development and documentation of network security procedures and protocols for consistent implementation.
Provide training and knowledge transfer to clients and internal teams on network security principles, tools, and practices.
Collaboration & Stakeholder Management:
Act as the primary point of contact for clients regarding network security issues, ensuring effective communication and issue resolution.
Collaborate with IT teams, system administrators, and security teams to ensure network security best practices are implemented and followed.
Work with senior consultants and managers to provide strategic guidance on network security initiatives and improvement opportunities.
Required Skills & Technologies:
Network Security Expertise:
In-depth knowledge of network security technologies, protocols, and standards (e.g., firewalls, VPNs, IDS/IPS, NAT, DNS, etc.).
Familiarity with network segmentation, secure remote access, DDoS protection, and network traffic analysis tools.
Experience in conducting vulnerability assessments, penetration testing, and security audits on network infrastructures.
Experience with SIEM platforms (e.g., Splunk, LogRhythm, IBM QRadar).
Familiarity with security protocols like SSL/TLS, IPSec, and IPSec VPN configurations.
Incident Response & Remediation:
Strong skills in analyzing and responding to network security incidents, with knowledge of network forensics, packet analysis, and malware analysis.
Ability to execute network security patches and fixes in a timely manner to prevent exploitation of vulnerabilities.
Soft Skills:
Strong communication skills, both verbal and written, with the ability to explain technical details to non-technical stakeholders.
Detail-oriented, with a passion for problem-solving and proactive threat detection.
Excellent collaboration skills with the ability to work well in a team environment.
Qualifications:
Education:
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
Relevant certifications such as CISSP, CISM, CEH, CompTIA Security+, or specific network security certifications (e.g., Cisco CCNP Security, Palo Alto Networks Certified Network Security Engineer).
Experience:
3+ years of experience in network security, vulnerability management, or incident response roles, with hands-on experience in network security assessments, threat analysis, and remediation.
Experience with security controls, security monitoring, and hands-on implementation of network security measures.
Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST, GDPR, PCI-DSS).
