Responsibilities • Define, architect, and drive the organization's network security strategy across on-premises, cloud, and hybrid environments. • Design, implement, and manage enterprise network security solutions, including NGFW, IDS/IPS, VPN, Load Balancers, NAC, and cloud network security. • Develop, enforce, and maintain network security policies, standards, and best practices. • Serve as the L4 technical escalation point for complex network security incidents, conducting root cause analysis and driving permanent resolutions. • Lead network security architecture for cloud platforms (AWS, Azure) and support Zero Trust, SASE, and other modern security initiatives. • Develop, maintain, and validate network security components of Disaster Recovery (DR) and Business Continuity (BC) plans. • Evaluate, recommend, and implement emerging network security technologies to enhance the organization's security posture. • Produce and maintain high-quality technical documentation, including HLDs, LLDs, and operational procedures. • Manage incident, problem, and change activities, ensuring timely resolution, SLA compliance, accurate documentation, and stakeholder communication. • Proactively identify opportunities for automation, process optimization, and continuous service improvement. • Provide technical leadership, mentoring, and knowledge transfer to L1–L3 engineers, fostering operational excellence. • Collaborate with cross-functional teams, clients, and stakeholders to deliver secure, reliable, and scalable network services. Requirements • Bachelor's degree in Information Technology, Computer Science, or a related discipline, or equivalent practical experience. • Strong technical expertise in enterprise network security technologies, including NGFW (Cisco/Fortinet), IDS/IPS, WAF, VPN, NAC, Zero Trust (ZTA), SASE, network segmentation, and cloud network security (AWS, Azure, GCP). • Experience with F5, Cisco ISE, Splunk, Microsoft Sentinel, Wireshark, tcpdump, and security automation using Python and Ansible. • Knowledge of security products and platforms such as Fortinet, RSA, Tenable, Trend Micro, or equivalent solutions. • Proven experience in incident, change, and problem management, with strong risk assessment and change implementation capabilities. • Excellent analytical, troubleshooting, and root cause analysis skills in complex enterprise environments. • Strong communication, stakeholder management, and client service skills, with the ability to work effectively across cross-functional teams and diverse cultures. • Relevant industry certifications such as CCNP Security, CCIE Security, CISSP, PCNSE certifications are highly desirable. • Self-motivated, adaptable, and able to manage multiple priorities while delivering high-quality results in a fast-paced environment. • Demonstrated ability to mentor team members, share knowledge, and contribute to continuous service improvement. Licence no: 12C6060