SBS Global - Network Security Engineer - Vulnerability Assessment (10-12 yrs)

Responsibilities :

- Design and implement secure and scalable network architectures for our global IT infrastructure, considering performance, reliability, and security best practices.

- Implement and manage network security solutions, including firewalls (Palo Alto, Juniper, Checkpoint, Fortigate), Intrusion Prevention/Detection Systems (IPS/IDS), Security Information and Event Management (SIEM) systems, and vulnerability assessment tools.

- Configure and maintain routing and switching infrastructure using HP and Aruba hardware.

- Implement and manage Software-Defined Networking (SDN) and Software-Defined Wide Area Networking (SD-WAN) solutions.

- Deep understanding and hands-on experience with TCP/IP, DNS, DHCP, VPNs, IP routing protocols (RIP, BGP, OSPF), MPLS, IPv4 & IPv6, QoS, NetFlow, and other relevant network technologies.

- Develop and enforce network security policies, procedures, and standards.

- Stay up-to-date with the latest security threats and vulnerabilities.

- Provide expert-level troubleshooting and support for complex network and security issues.

- Plan, implement, and document changes to network services.

- Manage projects related to network upgrades, expansions, and security enhancements, including the design and deployment of forward and reverse proxies.

- Mentor and guide junior team members, fostering their technical growth and development.

- Work closely with other IT teams to ensure the security and integrity of the overall IT infrastructure.

- Maintain accurate and up-to-date documentation of network configurations, security policies, and procedures.

- Proactively identify and mitigate potential security risks.

- Conduct regular security assessments and penetration testing.

Required Skills and Experience :

- 10+ years of progressive experience in network architecture, design, engineering, and implementation in global IT networks and network security.

- Advanced knowledge of network protocols (TCP/IP, DNS, DHCP, VPNs, RIP, BGP, OSPF, MPLS, IPv4 & IPv6, QoS, NetFlow).

- Hands-on experience with firewall management (Palo Alto, Juniper, Checkpoint, Fortigate).

- Proven experience with HP and Aruba routing, switching, and wireless hardware.

- Experience with SDN, SD-WAN, and structured cabling systems.

- Strong background in network security, including firewall design, IPS/IDS, SIEM, vulnerability assessment, and intrusion detection.

- Experience with IP routing protocols (RIP, BGP, OSPF), MPLS, IPv4 & IPv6, QoS, NetFlow.

- Expertise in planning, implementing, and documenting changes to services, including designing and deploying forward and reverse proxies.

- Excellent troubleshooting and problem-solving skills.

- Strong communication and interpersonal skills.

- Ability to work independently and as part of a team.

- Relevant certifications (e.g , CCNP, CCSP, CISSP) are a plus