Main Duties and Responsibilities:
- Design, implement, and manage Fortinet FortiGate and Cisco ASA/Firepower firewalls to ensure secure network perimeter protection.
- Configure firewall rules, NAT, VPN tunnels, and traffic inspection policies in line with security best practices.
- Monitor firewall logs, investigate anomalies, and proactively respond to threats.
- Manage and secure enterprise network infrastructure including routers, switches, VLANs, ACLs, and site-to-site VPNs.
- Implement and administer Cisco Identity Services Engine (ISE) for network access control, posture assessment, and user/device authentication.
- Lead efforts in securing wired and wireless networks via 802.1X, RADIUS/TACACS+, and certificate-based authentication.
- Deploy and manage Microsoft Defender for Endpoint to ensure advanced threat protection on workstations and servers.
- Configure and enforce device compliance policies via Microsoft Intune, integrating mobile device management (MDM) and mobile application management (MAM).
- Oversee secure device provisioning using Windows Autopilot, maintaining a streamlined zero-touch deployment process.
- Monitor enterprise environments using SIEM and EDR platforms, correlating alerts and logs to detect and respond to threats.
- Lead security incident response efforts including triage, containment, root cause analysis, and post-incident reporting.
- Conduct periodic risk assessments, vulnerability scans, and penetration testing coordination.
- Ensure compliance with regulatory frameworks (e.g., ISO 27001, NIST, GDPR) and internal security policies.
- Utilize a range of standard cybersecurity tools (SIEM, DLP, IDS/IPS, vulnerability scanners).
- Maintain accurate documentation for network security architecture, policies, procedures, and incident response playbooks.
- Train and support IT staff on secure practicesand collaborate on internal securityawareness programs.
Requirements:
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
- Minimum of 3–5 years of hands-on experience in network security and cybersecurity engineering roles.
- Strong hands-on experience with:
- Fortinet FortiGate firewalls
- Cisco ASA / Firepower firewalls
- Cisco networking (switching, routing, VLANs, ACLs, VPN)
- Cisco ISE (802.1X, posture, profiling, NAC policies)
- Microsoft Defender for Endpoint
- Microsoft Intune & Windows Autopilot
- Security tools such as SIEM, EDR, vulnerability scanners, DLP systems
- Excellent analytical and troubleshooting skills.
- Strong written and verbal communication.
- Ability to work independently and in a team environment.
- Preferred Certifications:
- Cisco Certified Internetwork Expert (CCIE) – Security (Highly preferred)
- Fortinet NSE 4 or higher
- Cisco CCNP Security or CCNA Security
- Microsoft Certified: Security Operations Analyst or Endpoint Administrator
- CompTIA Security+, CySA+, or equivalent
Working Conditions:
Equal Rotation Office and Field Base.
This role requires extended periods of working in field operations locations.
This role requires an individual to work in a 30-days rotation.
Only qualified candidates will be contacted.