Enable job alerts via email!
Senior Network Security Engineer
CFP Energy (UK) Ltd
City Of London
On-site
GBP 60,000 - 80,000
Full time
Job summary
A leading energy company is seeking a Senior Network Security Engineer in London. You will focus on designing and maintaining secure network solutions while driving automation through Infrastructure-as-Code and GitOps methodologies. The ideal candidate has over 5 years of network security experience and is proficient in tools like Check Point and Palo Alto, as well as cloud platforms such as Azure and AWS.
Benefits
Qualifications
- 5+ years of experience in network security, IT infrastructure or applications.
- Proficiency in hardening Windows, MacOS, and/or Linux operating systems.
- Strong background in Linux and open-source technologies.
Responsibilities
- Design and implement secure and scalable network solutions.
- Manage firewall configurations based on operational requirements.
- Drive automation initiatives using Infrastructure-as-Code practices.
Skills
Tools
JobOverview:
AsaNetworkSecurityEngineeringteammember,theSeniorNetworkSecurityEngineerwillspecialiseinfirewallsandrouting.Theidealcandidateisaflexible,self-motivatedindividualwhoexcelsatmultitaskingandthrivesinafast-paced,challengingenvironment.
Thisself-starterwillbringingenuityandexpertisetodesign,implement,andmaintainsecure,scalable,high-performingnetworksolutionsthatconnecton-premisesandpubliccloudenvironments.TheroleemphasisesdrivingautomationthroughInfrastructure-as-Code(IaC)andGitOpsmethodologies,ensuringoptimalnetworkperformance,andintegratingrobustsecuritymeasures.
Responsibilities:
NetworkDesignandImplementation:
Designandimplementsecure,scalable,andhigh-performingnetworksolutionsbridgingon-premisesandpubliccloudenvironments.
Leverageroutingandswitchingexpertise(e.g.,BGP,OSPF,MPLS)toensurenetworkperformanceandreliabilityacrossdiverseenvironments.
Analyzeoperationalneedsandproactivelydevelopcreativenetworksolutionstoaddresssecuritychallenges.
SecurityandFirewallManagement:
ManagefirewallconfigurationsfortheCyberEnergianetworkbasedonoperationalrequirements.
Developandimplementnetworksecuritytools,producethreatmodels,andassessrisksaroundexistingconfigurations.
Providesubjectmatterexpertiseonnetworksecurity,firewalls,andindustrybestpractices.
Documentandformalizesecurityprocesses.
AutomationandInfrastructureManagement:
DriveautomationinitiativesusingInfrastructure-as-Code(IaC)practices(e.g.,Terraform,Ansible,Chef)andGitOpsworkflowstostreamlinenetworkprovisioningandenforceconfigurationconsistency.
DevelopCI/CDpipelinestailoredforITinfrastructuretoenhancedeploymentefficiencyandintegratenetworksecuritymeasures.
Buildandmaintaininternalautomationsolutions(e.g.,Slackbotsandintegrations)tostreamlineIToperationsandbusinessprocesses.
MonitoringandMaintenance:
Manageandmaintainnetworksecuritysystemsthroughsystempatchesandperiodicmaintenancetasks.
Establishcomprehensiveobservabilityandproactiveissue-resolutionstrategiesusingtoolslikeSNMP,Syslog,Netflow,Elasticsearch(ELKStack),andGrafana.
CollaborationandCommunication:
WorkwithCyberEnergiateamstoidentifyfunctionalneeds,developsecurearchitectures,andcommunicatesecuritybestpracticesandpolicies.
CollaboratewithsecurityteamstoalignITautomationwithZeroTrustprinciplesandcomplianceframeworks.
Clearlyexplaintechnicalconceptstobothtechnicalandnon-technicalaudiences,demonstratingexcellentstakeholdermanagementskills.
BasicQualifications:
5+yearsofexperienceinnetworksecurity,ITinfrastructure,applications,endpoints,and/orAPIs.
2+yearsofexperiencehardeningWindows,MacOS,and/orLinuxoperatingsystems.
RequiredSkillsandExperience:
TechnicalExpertise:
Strongexperiencewithenterprisenetworkvendors(e.g.,CheckPoint,PaloAlto).
Proficiencyinroutingandswitching,includingprotocolslikeBGP,OSPF,andMPLS.
Deepunderstandingofnetworksecurityprinciples(e.g.,ACLs,firewalls,VPNs,802.1xauthentication,profiling,RBAC).
Familiaritywithnetworkmonitoringtools/protocolsandloggingpipelines(e.g.,SNMP,Syslog,Netflow,ELKStack,Grafana).
Strongknowledgeofcloudplatforms(e.g.,Azure,AWS,GCP)andinfrastructuremanagement.
Experiencewithnetworksecuritytechnologies,includingfirewalls(PaloAlto,CheckPoint),IDS/IPS,NDR,switch/routerACLs,NACsolutions,IPSec/TLSVPNs,WAFs,emailsecurity,andSIEMlogging/alerting.
ProgrammingandAutomation:
Proficiencyinamodernprogramminglanguage(e.g.,Python).
ExperiencewithIaCpractices,GitOpsworkflows,andcloudautomationbestpractices.
ProvenabilitytointegratecorporateITinfrastructurewithCI/CDpipelinesandDevOpsworkflows.
FamiliaritywithnetworkingprotocolsandtheOSImodel.
GeneralSkills:
StrongLinuxbackgroundandpassionforopen-sourcetechnology(amust).
Excellentanalytical,problem-solving,andtime-managementskills.
Adeptatlearningnewtechnologiesandsystems.
Experiencetestingandimplementingchangesinaproductionenvironment.
Exceptionalcommunicationskills(writtenandverbal)toworkcross-functionallywithIT,security,andbusinessteams.
PreferredAttributes:
DemonstratedtrackrecordofdevelopingandmaintaininginternaltoolstooptimizeIToperations.
Abilitytoworkindependentlyasaself-starterwithminimalsupervision
The CFP Energy Group is committed to ensuring equal opportunities, fairness of treatment, dignity and respect, and the elimination of all forms of discrimination in the workplace for all employees/contractors and job applicants.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
