Network & Endpoint Senior Engineer

 

Description:

We are seeking a highly skilled Network & Endpoint Senior Engineer.

 

Requirements:

Provide L3 operational support for network security and endpoint security incidents, service requests, and changes.

Monitor security-focused tools: firewalls, VPN gateways, web proxies, endpoint protection platforms, DDoS/WAF services, MFA systems.

Management of Akamai CDN.

Execute security patching, device health checks, and configuration updates for security platforms.

Assist in the deployment and onboarding of security appliances and endpoint agents, following security baselines and compliance standards.

Perform triage and troubleshooting of security, authentication, access, malware, and threat‑related incidents.

Support secure remote access operations, including VPN provisioning, ZTNA processes, MFA troubleshooting, and access reviews.

Assist in implementing and monitoring DDoS protection, web filtering, endpoint security policies, SSL inspection, and threat protection rules.

Follow procedures for secure file transfer, encryption, DLP controls, and audit‑compliant partner onboarding.

Participate in security-oriented maintenance such as firmware/security updates, rulebase reviews, and threat‑driven tuning.

Maintain documentation of security incidents, policy changes, security devices, and endpoint inventories.

Contribute to improving security operational processes, including recurring issue analysis and automation opportunities.

Collaborate closely with SOC, Cybersecurity, IAM, and other Infrastructure teams on cross-functional security issues.

Ensure compliance with security policies, audit requirements, vulnerability remediation schedules, and secure configuration standards.

Maintain up-to-date knowledge of security technologies, threat landscapes, and vendor best practices.

Participate in knowledge sharing, operational readiness, and security service reviews.

Support backup restoration tests and DR drills related to security platforms.

Escalate unresolved or high-impact security incidents according to the escalation matrix.

Lead the L2 Network Security analysts and organize an On-Call rota for this area.

 

 

Skills Required:

Advanced firewall expertise (Cisco, Palo Alto, Fortinet, Check Point, IBM Vyatta): policy design, HA, migrations, cleanup, and optimization.

DDoS, WAF and CDN expertise (e.g., Akamai): incident response, rule tuning, bot management.

Strong VPN gateway and secure remote access knowledge (Ivanti, Cisco AnyConnect, ZTNA concepts).

Proficiency in web proxy platforms (Zscaler ZIA): SSL inspection, DLP, traffic steering.

Deep experience in endpoint security (CrowdStrike, Trend Micro): threat hunting, incident response, containment.

Experience with MFA technologies (Cisco Duo): integration, policy structure, logs, reporting.

Secure file transfer solutions (MoveIT): encryption, DLP, auditing, partner onboarding.

Certificate lifecycle management for security endpoints (TLS, ciphers, certificate pinning).

SIEM integration for security telemetry across endpoints, firewalls, proxies, and identity systems.

Strong understanding of vulnerability management, patching, OS lifecycle risk, and compliance frameworks.

Excellent mentoring skills for L2 analysts in endpoint security, firewalls, VPN, and threat analysis.

People management for the Network Security L2 analysts.