Dewislen

Network Security Engineer

Manylion swydd
Dyddiad hysbysebu: 28 Ebrill 2025
Oriau: Llawn Amser
Dyddiad cau: 28 Mai 2025
Lleoliad: Leicester, Leicestershire
Gweithio o bell: Yn gyfan gwbl o bell
Cwmni: Virgule International Limited
Math o swydd: Cytundeb
Cyfeirnod swydd: Vrg_2425_064

Gwneud cais am y swydd hon

Crynodeb

Reference: Vrg_2425_064

Job title: Network Security Engineer

We are looking for a skilled Network Security Engineer for a future role to join our cybersecurity team. The ideal candidate will have hands-on experience with a variety of security technologies, including firewalls, intrusion detection/prevention systems, SIEM, and network monitoring tools. You will be responsible for configuring, maintaining, and troubleshooting security devices, ensuring network performance, and actively monitoring and responding to potential security incidents.

Key Responsibilities:

Configure, manage, and troubleshoot next-gen firewalls (Cisco ASA, Palo Alto Networks, Fortinet FortiGate, Check Point Security Gateway, Juniper SRX) to protect the network perimeter.

Implement and maintain Intrusion Detection and Prevention Systems (IDS/IPS) to detect and mitigate potential threats within the network.

Utilize SIEM solutions to monitor network traffic and identify suspicious activities. Analyze data from tools like SolarWinds Network Performance Monitor, Nagios, Zabbix, and PRTG Network Monitor.

Implement Endpoint Detection and Response (EDR) solutions to protect endpoints and ensure they are securely configured and continuously monitored.

Deploy and manage Web Application Firewalls (WAF) such as Cloudflare WAF and Imperva WAF to protect web applications from attacks.

Use tools like Wireshark, Tcpdump, and NetFlow Analyzer to troubleshoot network issues, analyze traffic, and investigate potential threats.

Leverage threat intelligence platforms like MISP, ThreatConnect, and TheHive to identify emerging threats, and participate in incident response when required.

Manage secure communications with SSL/TLS protocols (OpenSSL), IPsec, and SSH (PuTTY, OpenSSH).

Implement and maintain IAM solutions to ensure proper access controls and authentication within the network environment.

Utilize tools like Aircrack-ng, Kismet, and Ekahau for wireless network security, planning, and monitoring.

Implement Data Loss Prevention (DLP) solutions and security automation tools like Fail2Ban, OSSEC, Tripwire, and Netcat to enhance the organization’s security posture.

Required Skills & Qualifications:

Hands-on experience with firewalls (Cisco ASA, Palo Alto Networks, Fortinet FortiGate, Check Point Security Gateway, Juniper SRX).

Proficiency in IDS/IPS systems and tools for network monitoring and security, including Wireshark, Tcpdump, and NetFlow Analyzer.

Experience with SIEM solutions and security monitoring tools (SolarWinds, Nagios, Zabbix, PRTG Network Monitor).

Expertise in endpoint protection with Endpoint Detection and Response (EDR) tools and Web Application Firewalls (WAF).

Knowledge of VPN, IPsec, SSL/TLS, SSH protocols, and secure network communication methods.

Familiarity with threat intelligence platforms like MISP, ThreatConnect, and TheHive for incident tracking and analysis.

Experience in wireless network security with tools like Aircrack-ng, Kismet, Ekahau, and Aruba Wireless Security Tools.

Working knowledge of Data Loss Prevention (DLP) systems, File Integrity Monitoring (Tripwire), and Host-Based Intrusion Detection (OSSEC).

Strong understanding of networking protocols and technologies (TCP/IP, DNS, HTTP, etc.).

Ability to troubleshoot network and security issues efficiently and effectively.

Knowledge of best practices for securing enterprise networks and systems.

Ability to collaborate with other IT and cybersecurity teams to resolve security issues and incidents.

Strong written and verbal communication skills for reporting security incidents and explaining technical details to non-technical stakeholders.

Gwneud cais am y swydd hon