A Network Security Engineer is required by a leading technology organization to design, implement, and manage the security infrastructure that protects the network from vulnerabilities. You will utilize network security solutions, including Cisco, Fortinet, Sophos, F5, and Mikrotik, to ensure the safety and integrity of the company's network architecture. The role includes regular auditing of security setups, proactive threat management, and the configuration of security policies to mitigate potential risks. As part of the network security team, you will work closely with the IT and security operations teams to identify security gaps, respond to security incidents, and safeguard the organization’s network against unauthorized access and data breaches.
- Support the deployment and maintenance of network security devices (firewalls, VPNs, IDS/IPS systems) across the company's network.
- Collaborate with network administrators to manage network traffic flow and segment network resources.
- Implement network security policies and procedures to mitigate risk.
- Conduct vulnerability assessments and penetration tests to evaluate the strength of security defenses.
- Monitor and respond to network security events, including intrusion attempts and malware outbreaks.
- Expertise with network security solutions such as Cisco ASA, Fortinet FortiGate, Sophos XG Firewall, F5 Big-IP, and Mikrotik RouterOS.
- Strong knowledge of network protocols (TCP/IP, DNS, HTTP/S, BGP, etc.) and experience with securing these protocols.
- Proficiency in configuring and managing firewall rules, VPNs, SSL/TLS certificates, and IDS/IPS systems.
- Hands-on experience with next-generation firewall features like Application Control, Intrusion Prevention Systems (IPS), and Secure Web Gateways.
- Familiarity with network security monitoring tools such as Wireshark, Zeek (formerly Bro), and SolarWinds.
- Experience with Virtual Private Networks (VPNs) for secure remote access (SSL VPN, IPSec VPN).
- Understanding of security frameworks and standards like NIST, ISO 27001, and CIS benchmarks for network security.
- Ability to manage multiple security incidents and prioritize tasks in a high-pressure environment.
- Strong communication skills for collaborating with network and security teams, as well as explaining security issues to non-technical stakeholders.
- Keen attention to detail and a proactive approach to threat detection and mitigation.
- Continuous learning to stay updated on the latest network security threats and technology advancements.
- Bachelor's degree in Network Engineering, Information Technology, Cybersecurity, or a related field.
- Master's degree or additional experience is a plus.
- Cisco Certified Network Associate (CCNA) Security
- Fortinet NSE4/NSE7
- Sophos Certified Architect
- F5 Certified BIG-IP Administrator (F5-CA)
- Mikrotik Certified Network Associate (MTCNA)
$52K <= $61K <= $73K
$28K <= $35K <= $48K
$70K <= $125K <= $160K
$27K <= $42K <= $58K
£52,000 <= £59,000 <= £74,000
AU$65K <= AU$88,000 <= AU$120K
- What security protocols and solutions do you implement to protect a network?
- How do you handle a situation where there is a potential network intrusion?
- Can you describe your experience with firewall configuration and VPN deployment?
- How would you secure a network with both on-premises and cloud-based resources?
- Cisco Network Security: https://www.cisco.com/c/en/us/support/security/index.html
- Fortinet Training and Certification: https://training.fortinet.com/
- Sophos Training: https://training.sophos.com/
- F5 Networks Learning Center: https://f5.com/services/training