Responsibilities
- Design and implement comprehensive network security architectures including perimeter security, segmentation, and Zero Trust frameworks
- Deploy and manage security platforms such as SIEM, NAC, and Vulnerability Management systems
- Configure, maintain, and optimize network devices including routers, switches, firewalls, and centralized Network Management Systems (NMS)
- Monitor security events in real-time and coordinate incident response with SOC teams
- Conduct root cause analysis, malware containment, and incident resolution
- Implement and manage security protocols such as IPSec, VPN, AAA, and ACLs
- Perform security audits ensuring compliance with standards such as ISO 27001, NIST, and GDPR
- Manage patching lifecycle and vulnerability remediation
- Execute OD/ID RAN installation, integration, and troubleshooting
- Support both onsite and remote troubleshooting, including day/night operations
- Monitor and resolve alarms across network sites
- Manage spare module lifecycle including tracking, returns, and replacements
- Coordinate with subcontractors on TSSR submissions, review and approve reports, and ensure timely issue resolution
- Ensure materials readiness in line with weekly TI plans and coordinate work schedules with subcontractors
- Provide onsite support during implementation ensuring zero defects and adherence to quality standards
- Support quality audits, cable audits, site integration, Build Functionality Tests (BFT), and alarm troubleshooting
- Plan and execute technical support activities for both internal teams and external stakeholders
- Provide direct and indirect customer and project team support
- Troubleshoot complex, multidisciplinary technical issues
- Maintain detailed documentation including network diagrams, runbooks, and incident reports
Requirements:
- Bachelor's degree in information security, Computer Science, IT, Telecommunications, or a related field
- 4 - 7 years experience in network security engineering and telecom/RAN operations
- Proficient with protocols such as IPSec, SSL/TLS, 802.1X, DNSSEC
- Hands-on experience with firewalls and appliances including Palo Alto, Fortinet, Cisco ASA, IDS/IPS
- Familiarity with authentication protocols: RADIUS, TACACS+, MFA
- Knowledge of routing and switching security including OSPF/BGP hardening and Layer 2 protections
- Experience with SIEM and NMS platforms like Splunk, QRadar, ArcSight, SolarWinds, Elastic
- Proven expertise in 4G/5G RAN deployment, integration, and alarm monitoring/troubleshooting
- Experience with Telecom Implementation (TI) execution and site activities
- Understanding of ITIL processes and change management
- Strong vendor and subcontractor coordination skills
- Proficient in scripting and automation tools such as Python, Bash, PowerShell, and Ansible
LiangSyeh Wei (Shevy) - R:R22108807
