Network and Security Engineer

The Network and Security Engineer is responsible for designing, implementing, maintaining, and securing both cloud and on-premises network infrastructures. This role requires extensive expertise in managing complex WAN, LAN, and wireless networks, advanced knowledge of network protocols, and establishing secure VPN connections using GRE and IPSEC. The ideal candidate will be proficient in troubleshooting and resolving network issues, implementing robust security controls, and responding to security incidents while maintaining compliance with industry standards.

· Network Engineering:

o Troubleshoot, identify, and repair complex network issues for WAN, LAN, Wireless, Internet connections, and end-user issues.

o Design, implement, and maintain WAN, LAN, and wireless networks, including Cisco routers, switches, DC F5 Load balancers, and Cisco Wireless controllers.

o Establish and manage secure VPN connections using GRE (Generic Routing Encapsulation) and IPSEC for secure site-to-site and remote access connectivity.

o Provide expertise in network protocols such as BGP, OSPF, EIGRP, and MPLS to ensure optimal network performance and reliability.

o Manage and optimize network traffic using advanced routing protocols to ensure high availability and minimal latency.

o Provide expertise in DWDM, IPLC, and MPLS technologies and LAN encryption solutions.

o Prepare and maintain detailed documentation and diagrams of network standards, configurations, and procedures.

o Perform daily network monitoring to verify the integrity and availability of all network components, including routers, switches, and IP telephony systems.

o Perform scheduled backups and recovery tests for all network devices to ensure successful procedures and minimal downtime.

o Collaborate with vendors to handle hardware replacements, updates, and ensure equipment reliability.

o Supervise and report on network infrastructure projects, ensuring compliance with industry standards and best practices.

· Network Security:

o Design and implement security architectures for cloud and on-premises deployments, adhering to industry best practices and compliance frameworks.

o Conduct security assessments and penetration testing of network environments to identify vulnerabilities and ensure the security of network assets.

o Configure and manage security controls such as Identity and Access Management (IAM), encryption, logging, and monitoring.

o Respond to security incidents, perform root cause analysis, and implement remediation measures.

o Develop and implement security automation tools and scripts to enhance operational efficiency and effectiveness.

o Conduct risk assessments and gap analyses to identify potential security vulnerabilities within network environments.

o Stay updated on the latest security threats, trends, and technologies, and recommend proactive mitigation strategies.

o Provide training and awareness programs to internal teams on security best practices and procedures.

Qualifications:

· Bachelor’s degree in computer science, Information Technology, Information Security, or a related field.

· Minimum of 7+ years of experience in the Network and Security domain.

· Cisco Certified Network Professional (CCNP) and/or Cisco Certified Internetwork Expert (CCIE) certification required.

· Relevant certifications such as CCNP Security, CCDP, Palo Alto, FortiGate, CSA-CCSK, or CCSP are highly desirable.

· Proven experience in designing and implementing network and security controls in cloud environments (AWS, Azure, GCP).

Skills:

· Strong understanding of network infrastructure, security principles, and protocols.

· Expertise in establishing and managing VPNs using GRE and IPSEC for secure communication across distributed networks.

· Advanced knowledge of routing protocols such as BGP, OSPF, EIGRP, and MPLS, and deep knowledge of LAN and WAN technologies.

· Proficiency in configuring and troubleshooting Cisco network devices, including routers, switches, and wireless controllers.

· Advanced knowledge of cloud security tools and technologies, including container platforms like Docker and Kubernetes.

· Experience with cloud-based security services such as AWS Security Hub, Azure Sentinel, and GCP Cloud Security Command Center.

· Advanced knowledge of security assessment and penetration testing tools and methodologies.

· Strong documentation and communication skills, with the ability to explain technical concepts to diverse audiences.

Non-Technical/Soft Skills:

· Strong communication and presentation skills.

· Ability to handle crisis situations effectively and manage multiple priorities under pressure.

· Commitment to continuous learning and professional development.

· Strong team collaboration and leadership abilities, with a focus on fostering a collaborative work environment.

· Ability to articulate complex technical concepts to non-technical audiences and support sales activities as needed.

Additional Requirements:

· Willingness to travel as needed to support client engagements and project implementations.

· Ability to work independently and as part of a team in a dynamic and fast-paced environment.