Enable job alerts via email!
Network Security Engineer
The Bridge IT Recruitment
York and North Yorkshire
Remote
GBP 100,000 - 125,000
Full time
Job summary
A recruitment agency is seeking a skilled Network Security Engineer to lead the migration of data centre environments. This remote role requires extensive experience with Palo Alto firewalls and Cisco VXLAN EVPN. The ideal candidate should be available for out-of-hours work as necessary. Competitive compensation is offered for this contract position.
Qualifications
- 5+ years of hands-on experience with Palo Alto Networks firewalls.
- Proven experience in data centre migrations, especially involving VRF segmentation.
- Strong understanding of Cisco VXLAN EVPN, including multi-tenancy and BGP EVPN.
Responsibilities
- Lead the migration of legacy data centre environments into segmented VRFs.
- Design, deploy, and manage Palo Alto Next-Generation Firewalls.
- Collaborate with infrastructure, cloud, and application teams.
Skills
Education
Job Title: Network Security Engineer
Location: Full Remote / outside IR35
Contract Type: 6-Month Initial Term (with potential for extension)
We are seeking an experienced Network Security Engineer to support a strategic data centre migration project involving the transition to a segmented VRF architecture. The ideal candidate will have deep expertise in Palo Alto firewall technologies and knowledge with Cisco VXLAN EVPN, and will be instrumental in implementing secure, scalable network solutions during this transformation.
- Lead the migration of legacy data centre environments into segmented VRFs, ensuring secure and efficient traffic separation via Palo Alto Infrastrcuture.
- Design, deploy, and manage Palo Alto Next-Generation Firewalls (PA-Series, Panorama, GlobalProtect).
- Configure and troubleshoot Cisco VXLAN EVPN overlays, including BGP EVPN control plane and VTEP deployments.
- Implement network segmentation aligned with zero-trust principles.
- Collaborate with infrastructure, cloud, and application teams to ensure secure connectivity during migration.
- Perform firewall rule optimization, threat prevention tuning, and performance monitoring.
- Document migration plans, network designs, and operational procedures.
- Provide expert-level support for network and security incidents during the contract term.
- Participate in scheduled out-of-hours migration activities, including implementation, testing, and troubleshooting.
- 5+ years of hands-on experience with Palo Alto Networks firewalls.
- Proven experience in data centre migrations, especially involving VRF segmentation.
- Strong understanding of Cisco VXLAN EVPN, including multi-tenancy and BGP EVPN.
- Solid knowledge of routing protocols (BGP, OSPF) and Layer 2/3 switching.
- Familiarity with network automation tools (e.g. Ansible, Python, Terraform) is a plus.
- Relevant certifications such as PCNSE, CCNP/CCIE (Data Centre or Security) are highly desirable.
- Strong documentation and troubleshooting skills.
- Willingness and availability to work outside standard business hours as required by migration schedules.
- Experience in hybrid cloud environments (AWS, Azure, GCP, OCI).
- Knowledge of SD-WAN and SASE architectures.
- Exposure to NAC solutions (e.g., Cisco ISE).
If this sounds like you, please get in touch
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
