Senior Network Security Engineer

Job Overview:

As a Network Security Engineering team member, the Senior Network Security Engineer will specialise in firewalls and routing. The ideal candidate is a flexible, self-motivated individual who excels at multitasking and thrives in a fast-paced, challenging environment.

This self-starter will bring ingenuity and expertise to design, implement, and maintain secure, scalable, high-performing network solutions that connect on-premises and public cloud environments. The role emphasizes driving automation through Infrastructure-as-Code (IaC) and GitOps methodologies, ensuring optimal network performance, and integrating robust security measures.

Responsibilities:

Network Design and Implementation:

• Design and implement secure, scalable, and high-performing network solutions bridging on-premises and public cloud environments.
• Leverage routing and switching expertise (e.g., BGP, OSPF, MPLS) to ensure network performance and reliability across diverse environments.
• Analyze operational needs and proactively develop creative network solutions to address security challenges.

Security and Firewall Management:

• Manage firewall configurations for the CyberEnergianetwork based on operational requirements.
• Develop and implement network security tools, produce threat models, and assess risks around existing configurations.
• Provide subject matter expertise on network security, firewalls, and industry best practices.
• Document and formalize security processes.

Automation and Infrastructure Management:

• Drive automation initiatives using Infrastructure-as-Code (IaC) practices (e.g., Terraform, Ansible, Chef) and GitOps workflows to streamline network provisioning and enforce configuration consistency.
• Develop CI/CD pipelines tailored for IT infrastructure to enhance deployment efficiency and integrate network security measures.
• Build and maintain internal automation solutions (e.g., Slackbots and integrations) to streamline IT operations and business processes.

Monitoring and Maintenance:

• Manage and maintain network security systems through system patches and periodic maintenance tasks.
• Establish comprehensive observability and proactive issue-resolution strategies using tools like SNMP, Syslog, Netflow, Elasticsearch (ELK Stack), and Grafana.

Collaboration and Communication:

• Work with CyberEnergiateams to identify functional needs, develop secure architectures, and communicate security best practices and policies.
• Collaborate with security teams to align IT automation with Zero Trust principles and compliance frameworks.
• Clearly explain technical concepts to both technical and non-technical audiences, demonstrating excellent stakeholder management skills.

Basic Qualifications:

• 5+ years of experience in network security, IT infrastructure, applications, endpoints, and/or APIs.
• 2+ years of experience hardening Windows, MacOS, and/or Linux operating systems.

Required Skills and Experience:

Technical Expertise:

• Strong experience with enterprise network vendors (e.g., CheckPoint, Palo Alto).
• Proficiency in routing and switching, including protocols like BGP, OSPF, and MPLS.
• Deep understanding of network security principles (e.g., ACLs, firewalls, VPNs, 802.1x authentication, profiling, RBAC).
• Familiarity with network monitoring tools/protocols and logging pipelines (e.g., SNMP, Syslog, Netflow, ELK Stack, Grafana).
• Strong knowledge of cloud platforms (e.g., Azure, AWS, GCP) and infrastructure management.
• Experience with network security technologies, including firewalls (Palo Alto, CheckPoint), IDS/IPS, NDR, switch/router ACLs, NAC solutions, IPSec/TLS VPNs, WAFs, email security, and SIEM logging/alerting.

Programming and Automation:

• Proficiency in a modern programming language (e.g., Python).
• Experience with IaC practices, GitOps workflows, and cloud automation best practices.
• Proven ability to integrate corporate IT infrastructure with CI/CD pipelines and DevOps workflows.
• Familiarity with networking protocols and the OSI model.

General Skills:

• Strong Linux background and passion for open-source technology (a must).
• Excellent analytical, problem-solving, and time-management skills.
• Adept at learning new technologies and systems.
• Experience testing and implementing changes in a production environment.
• Exceptional communication skills (written and verbal) to work cross-functionally with IT, security, and business teams.

Preferred Attributes:

• Demonstrated track record of developing and maintaining internal tools to optimize IT operations.
• Ability to work independently as a self-starter with minimal supervision.