Role Overview
The Senior Network Security Engineer will be responsible for designing, implementing, and supporting secure network solutions for enterprise-level environments. This includes handling network design, architecture, and security configurations to safeguard organisational assets while ensuring scalability and optimal performance. The ideal candidate will lead the network security team, oversee large-scale projects, and provide expert-level client engagement while adhering to ISO 27001 standards.
Key Responsibilities
1. Network Design and Architecture
- Design, implement, and support network architectures for small to enterprise-level environments, including data centre networks.
- Develop scalable and redundant network solutions to meet the demands of modern businesses.
- Analyse and optimise network performance, reliability, and security.
2. Network Security Design and Implementation
- Design and deploy robust security measures for networks, including segmentation and zero-trust architectures.
- Configure, maintain, and troubleshoot firewalls, VPNs, and intrusion detection/prevention systems.
- Conduct vulnerability assessments and implement security patches and updates to protect against threats.
3. Firewall Design and Management
- Plan, configure, maintain, and support firewall solutions across a variety of environments, from small-scale to enterprise deployments.
- Work with Fortinet, Sophos, Palo Alto, and Checkpoint firewalls for advanced security configurations.
- Develop and enforce firewall policies and ensure alignment with organisational security objectives.
4. Project Planning and Execution
- Manage end-to-end network and security projects, ensuring timely delivery and adherence to budgets.
- Develop project scopes, technical documentation, and timelines while coordinating with stakeholders.
5. Team Leadership
- Act as the lead for the network security team, guiding junior engineers and fostering a collaborative team culture.
- Conduct training sessions and knowledge-sharing initiatives for team development.
- Allocate resources effectively and ensure the team meets operational and project goals.
6. Client Engagement
- Act as a trusted advisor to clients, understanding their requirements and delivering tailored network and security solutions.
- Provide technical guidance and presentations to clients, ensuring clarity and alignment with business needs.
7. ISO 27001 Compliance
- Ensure all network and security operations align with ISO 27001 standards.
- Participate in audits, develop documentation, and implement corrective actions as required.
8. Additional Duties
- Provide Level 3 support for complex network and security issues.
- Monitor and manage network security tools and platforms, ensuring consistent uptime.
- Stay updated on emerging technologies and security threats, recommending solutions to enhance the organisation’s posture.
Minimum Requirements:
Qualifications & Experience:
- Certifications (Highly Desirable):
- CompTIA Network+
- CompTIA Security+
- Certified Information Systems Security Professional (CISSP)
- Certified Cloud Security Professional (CCSP)
- MS-900: Microsoft 365 Fundamentals
- Fortinet NSE certifications (required)
- Other firewall vendor certifications would be advantageous.
- Experience:
- Minimum 5 years of hands-on experience in network design, security architecture, and firewall management.
- Proven track record of handling enterprise-level networks and security environments.
- Experience in leading teams and managing projects effectively.
Skills and Competencies
- Expertise in advanced network security technologies, protocols, and architectures. This includes in-depth experience with Fortinet, Sophos, Palo Alto, Checkpoint, and additional vendor-neutral security best practices.
- Strong knowledge of network protocols, routing, and switching (BGP, OSPF, MPLS, VLAN, etc.).
- Advanced skills in VPN configuration, SD-WAN, and secure remote access solutions.
- Expertise in handling advanced persistent threats (APTs), zero-day vulnerabilities, and threat hunting.
- Ability to design enterprise-level secure network infrastructures, including hybrid and multi-cloud integrations.
- Proficient in security frameworks such as ISO 27001 and CIS benchmarks.
- Excellent troubleshooting, analytical, and problem-solving skills.
- Strong communication and interpersonal skills for client interaction and team collaboration.
- Ability to manage multiple tasks and projects simultaneously in a dynamic environment.
Desired Skills:
- Fortinet
- Sophos
- Palo Alto
- CCSP
- Comptia S+
- Comptia N+
- CISSP