Network Security Engineer
We are seeking a dedicated and innovative Network Security Engineer to join our Global Cybersecurity team as we enhance our cybersecurity capabilities in response to an evolving threat landscape. In this role, you will play a key part in engineering, implementing, and supporting robust network security solutions, contributing directly to our move towards a zero-trust network model.
As a Network Security Engineer, you will work with cutting-edge technologies to secure critical information systems, focusing on areas like Network Access Control, Web Application Firewalls, edge security, IPS, firewall policy optimization, micro-segmentation, and Cloud Security. This role offers extensive exposure to Enterprise Systems & Network Architecture and the opportunity to engage with industry-leading cybersecurity tools and practices.
You will be a crucial contributor to the development and implementation of standard operating procedures, ensuring our network security solutions are operational and secure 24/7. Your work will have a direct impact on our organization's overall security posture, enhancing the end-user experience while ensuring data protection.
Key Responsibilities
- Implement and manage web applications within the Web Application Firewall (Imperva).
- Oversee Network Access Control platforms, including profile and policy development, and integration with other security tools.
- Monitor and analyze network traffic, IPS logs, WAF logs, and security events, ensuring accurate threat classification and analysis.
- Investigate intrusion attempts and perform exploit analysis.
- Review and act on security alerts, maintaining network security solutions on supported baselines (e.g., Forescout, Firepower, FortiGate, Zscaler).
- Analyze network and host-based security logs to determine appropriate remediation and escalation for security incidents.
- Provide insights and reports on intrusion events and threat indicators to the Incident Response (IR) and related teams.
- Contribute to the enhancement of incident response procedures, improving response times and analysis efficiency.
- Share knowledge with the analyst team regarding investigation and response techniques.
- Collaborate with the IR team to enhance security capabilities and countermeasures.
- Maintain lifecycle and roadmap management for security tools.
Ideal Candidate Profile
We are looking for a passionate and knowledgeable information security professional who can communicate effectively with both business and technical leaders. You should be a driven problem-solver who excels in high-pressure situations, possesses strong interpersonal skills, and values transparency and collaboration.
Qualifications:
- Bachelor's degree in Computer Engineering, Cybersecurity, Computer Science, or a related field.
- Minimum of 4 years' experience in network engineering and cybersecurity, including configuring routers, switches, firewalls, IPS, and Web Application Firewalls.
- Expertise in log analysis, intrusion detection, firewall administration, and network operations.
- Strong understanding of network routing protocols, switching architectures, and network security methodologies.
- Proficient in security operations concepts like perimeter defense, BYOD management, data loss prevention, insider threats, risk assessment, and security metrics.
- In-depth knowledge of network security architecture, TCP/IP protocol, and remote access security techniques.
- Skilled in analyzing network packet captures to resolve cyber incidents and network issues.
- Experience conducting security and vulnerability assessments of network environments.
- Ability to generate and modify network and host-based Indicators of Compromise (IOC).
- Strong communication skills to document and share findings with technical and non-technical audiences at all levels.
- High level of discretion, integrity, and professionalism when handling confidential matters.
- Self-motivated with the ability to prioritize, multitask, and work effectively in a global team setting.
Preferred Certifications (Not required but beneficial):
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GIAC)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Certified Forensic Analyst (GCFA)
- Certified Ethical Hacker (CEH)
- Cisco Certified Network Associate Security (CCNA Security)
- Cisco Certified Network Associate (CCNA)
- Cisco Certified Network Professional Security (CCNP Security)
- Cisco Certified Network Professional (CCNP)
- Server Platform Certifications (Microsoft, Linux)
- Forensics Examiner Certification (EnCE, FTK)
This position is ideal for a cybersecurity professional who is eager to make a meaningful impact, stay ahead of evolving threats, and contribute to a culture of excellence and continuous improvement in cybersecurity. If you're ready to take on a challenging and rewarding role, we encourage you to apply!
This job description indicates the general nature and level of work expected of the incumbent. It is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities required of the incumbent. Incumbent may be required to perform other related duties.Nesco Resource offers a comprehensive benefits package for our associates, which includes a MEC (Minimum Essential Coverage) plan that encompasses Medical, Vision, Dental, 401K, and EAP (Employee Assistance Program) services.
Nesco Resource provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.