Network Security Engineer

We are seeking a Network Security Engineer to support mission-critical network infrastructure within a highly secure defence/government environment.

This role focuses on operational stability, secure configuration management, incident response, and compliance adherence across on-premise infrastructure. The successful candidate will work within controlled environments subject to security audits, strict change governance, and regulatory requirements.

Key Responsibilities

• Provide L2-L2.5 support for secure enterprise LAN/WAN environments

• Troubleshoot routing, switching, firewall, and VPN issues in production systems

• Configure and maintain Cisco routers, switches, and core network devices

• Implement and manage security policies on:

  • Check Point Firewalls

  • Palo Alto Firewalls

• Support network segmentation, secure zone design, and access control enforcement

• Perform firewall rule reviews and compliance validation

• Support change implementation under strict CAB / change management processes

• Conduct log analysis and support incident investigations

• Work closely with cybersecurity and system engineering teams

• Maintain secure documentation aligned with audit requirements

• Support patching, firmware upgrades, and vulnerability remediation

• Participate in standby/on-call support when required

Technical Requirements

Core Networking

• Strong hands-on experience with Cisco IOS / NX-OS

• Solid understanding of:

  • TCP/IP fundamentals

  • VLAN / STP

  • OSPF / BGP

  • NAT / ACL

  • IPsec VPN

  • MPLS concepts

• Experience supporting high-availability network designs (HSRP / VRRP)

Security & Firewall

• Hands-on administration of:

  • Check Point

  • Palo Alto

• Firewall policy creation and rule lifecycle management

• Site-to-site VPN and remote access VPN configuration

• Experience with network segmentation and DMZ architectures

• Familiarity with IDS/IPS concepts

Monitoring & Operations

• Experience with network monitoring and SIEM tools

• Log analysis and incident triage

• Experience operating in restricted or air-gapped environments is preferred

Compliance & Environment Expectations

• Experience working in defence, public sector, or regulated environments

• Familiarity with:

  • Secure configuration baselines

  • Vulnerability management processes

  • Audit and compliance documentation

• Understanding of data classification and access control principles

• Must be eligible for required security clearance (e.g., Singapore Government clearance)

Qualifications

• Diploma / Degree in Computer Engineering, IT, or related discipline

• 5+ years of hands-on enterprise networking experience

• Preferred Certifications:

  • CCNA / CCNP

  • Check Point / Palo Alto certifications
    
    Next Step:

    If interested, you can click on Apply here or write an e-mail to [Confidential Information] with your updated resume.

    NOTE: - Only shortlisted candidates will be contacted back.

    Dimple Jain
    EA LIcence No.91C2918
    Personnel Registration No. R22107270