Network Security Engineer

Responsibilities:

• Provide tier-3 (expert level) operational support for Firewalls, Proxies, IDS/IPS, and NAC to resolve critical business issues.
• Independently own security infrastructure support, troubleshoot complex issues, and recommend design modifications.
• Perform performance analysis, proactive troubleshooting, capacity planning, and ensure SLAs are met.
• Conduct change controls, update process documentation, and maintain team portals.
• Participate in root cause analysis, capacity planning, and performance tuning.
• Monitor network security connectivity, refresh heat maps, and create improvement plans for application performance.
• Automate operational tasks to streamline processes and increase robustness.
• Develop and maintain global trending reports for capacity and performance justification.
• Oversee vendor SLAs and manage relationships with service providers.
• Serve as the senior escalation point for critical incidents and lead troubleshooting efforts.
• Maintain policies, procedures, and conduct monthly service review meetings with stakeholders.
• Provide technical direction and leadership to the network security operations team.
• Perform packet captures and analysis using Wireshark and related tools.
• Coordinate cross-team activities and lead incident resolution efforts.
• Create and maintain documentation based on lessons learned and new implementations.

Requirement/Must Have:

• Bachelor’s degree in a related field or equivalent qualification.
• Industry certifications required (Food and Beverage Client, CCNP Security, CCDP, CCIE Security).
• Minimum 12+ years of experience in Network/Telecommunications roles.
• Expert-level experience with Firewall Management, Proxy Management, IDS/IPS, NAC, SD-WAN, VPN, etc.
• Strong experience with Cisco, Juniper, Palo Alto, Aruba, Zscaler, Symantec Secure Web Gateways, Cisco Firepower, iXIA IPS/IDS, etc.
• Deep understanding of routing protocols (BGP, OSPF), MPLS VPN, Multicast, Logical Overlay, and IOS-XR.
• Strong TCP/IP, packet capture analysis, and troubleshooting skills.
• Experience with vendor management, incident resolution, and monitoring tools.
• Excellent communication skills and ability to lead cross-functional teams.

Should Have:

• Working experience with public or hybrid cloud environments (Azure, AWS, GCP, Oracle, etc.).
• Experience with cloud-native or third-party firewalls on cloud platforms.
• Experience with Azure and AWS networking components (NSG, UDR, VPC, VNET, Route53, etc.).

Experience:

• Multi-cultural, geographically distributed team collaboration.
• 24/7/365 mission-critical network security operations support.
• Leading troubleshooting bridges and providing RCA documentation.

Qualification and Education:

• Bachelor’s degree or equivalent technical education.
• Advanced certifications (Food and Beverage Client, CCNP Security, CCDP, CCIE Security).