Operate and enhance enterprise security platforms including perimeter firewalls, secure proxies, intrusion systems, and load balancers across multi-site global environments.
Implement configuration changes, policy updates, and stability improvements across diverse security devices while ensuring minimal service disruption.
Maintain high-resilience connectivity and secure pathways for global users, applications, and inter-data-center environments.
Conduct deep investigation of suspicious traffic, analyze payloads, correlate events, and support security incident response teams with detailed findings.
Review threat intelligence and vulnerability outputs (including CVE-based analysis), translating risk data into actionable mitigation steps for internal stakeholders.
Validate alerts, tune detection controls, and maintain endpoint and gateway protection fidelity.
Administer secure web gateways and cloud proxy services, including rule creation, advanced policy logic, authentication flows, and troubleshooting of access anomalies.
Manage advanced traffic distribution platforms, performing upgrades, tuning performance settings, validating certificates, and supporting application teams with complex traffic flows.
Govern network authentication platforms including AAA services, device onboarding policies, and access enforcement controls.
Operate enterprise-grade DNS/DHCP platforms including zone configuration, record lifecycle management, and remediation of resolution failures.
Maintain secure naming standards and ensure high availability of core network services that underpin business-critical systems.
Implement and refine policy structures, segmentation rules, NAT constructs, and VPN configurations across multi-vendor firewall ecosystems.
Perform root-cause analysis for traffic failures, routing anomalies, and encrypted tunnel issues at packet and protocol level.
Drive adherence to ITIL-aligned processes including change governance, incident management, service reporting, and post-mortem reviews.
Engage directly with business, risk, and cyber security teams to refine policies, justify changes, and communicate high-impact technical decisions.
Maintain documentation, technical standards, and architectural guidance to ensure long-term consistency and maintainability of security platforms.
Requirements
At least 12-15 years of hands-on experience in enterprise network security engineering with hands-on experience in the following:
Multi-vendor enterprise firewalls and security gateways
Secure web gateway and cloud proxy technologies
Global load balancing and application delivery controllers
Enterprise-grade IDS/IPS systems
Email security gateways
DNS, DHCP, IPAM platforms
Log analysis using SIEM tools
Payload inspection, behavioral analysis, and packet-level diagnostics
Review of attack vectors, threat scoring, and remediation proposals
Incident response collaboration with SOC and cyber teams
Strong understanding of routing, network protocols, encrypted tunnels, NAT structures, and L3/L7 traffic behaviour
Proficiency in packet capture utilities and network debugging methodologies
Strong command of structured change control, incident management, and large-enterprise operational rigor
Ability to articulate findings to senior leaders and technical peers clearly and confidently
Exposure to vulnerability assessment practices or malware analysis workflows.
