Job Title: Network Security EngineerPosition Overview:We are in search of a highly proficient Network Security Engineer, responsible for the comprehensive administration and enhancement of our dual infrastructure: network and security systems. This role encompasses the full lifecycle of network security, including detailed design, robust implementation, rigorous monitoring, and methodical troubleshooting of both data center and client environments. The ideal candidate will serve as a critical technical resource for our sales organization, offering in-depth expertise on our security products and associated services throughout all phases of the sales cycle—from pre-sales engagements through post-sale support.Key Responsibilities:

• Network and Security Architecture: Architect, configure, deploy, and rigorously maintain an array of security solutions, including but not limited to hardware (routers, switches) and software (firewalls, IDS/IPS, anti-virus, anti-SPAM). Ensure the alignment of security architecture with industry standards and best practices to enhance data integrity, availability, and confidentiality.
• Fortinet Transition: Strategically plan and execute the migration of current security systems to the Fortinet Virtual Appliance (VA), ensuring operational continuity and minimal service disruption during the transition.
• Network Monitoring and Incident Reporting: Develop and maintain sophisticated network surveillance systems employing automated alerting protocols to monitor performance and security incidents. Utilize ConnectWise RMM tools for real-time alerts configuration across various network devices and servers.
• Security Compliance Audit: Conduct routine audits of router, switch, and firewall configurations to validate adherence to security policies and compliance mandates. Implement a change control protocol to manage and document configuration changes effectively.
• Policies and Framework Development: Design, critically assess, and iteratively refine policies governing firewall configurations, intrusion detection/intrusion prevention systems (IDPS), IPSEC and SSL VPNs, and application control mechanisms, ensuring that these policies remain current with evolving threats and regulatory requirements.
• Comprehensive Documentation: Develop and maintain exhaustive documentation of the network topology, including IP address schematics, security protocols, and configuration archives to facilitate operational integrity and troubleshooting efficiency.
• Operational Support and Incident Management: Provide expert-level operational support for LAN/WAN incidents, involving detailed investigations of network element and link failures, routing issues, performance bottlenecks, and security breaches.
• Vulnerability Assessment: Conduct systematic vulnerability assessments, leveraging automated tools to identify and mitigate potential risks. Lead remediation initiatives tailored to strengthen our overall security posture.
• Network Performance Analysis: Gather, analyze, and report on Network Infrastructure capacity and performance metrics, informing both strategic planning and operational requirements to ensure scalability.
• Third-Line Support Leadership: Take charge of incident and request management functions for third-line support, ensuring rapid resolution of complex technical issues while maintaining high levels of service availability.
• Client Technical Engagement: Act as the technical go-to for the sales organization, addressing a broad range of queries regarding product specifications, integration methodologies, and operational functionalities. Maintain proactive communication with clients regarding the status of support requests.
• Log and Event Management: Oversee log analysis and event management for managed services, ensuring compliance with customer security policies and requirements through meticulous monitoring and reporting.
• Best Practices Promotion: Advocate for and exemplify best practices in network documentation and operational processes across the organization.
• Additional Duties: Undertake other responsibilities as outlined by management, contributing to the continuous improvement of processes and the overall security posture.

Core Competencies:

• Extensive expertise in navigating and managing security networking devices (firewalls, switches, anti-virus—and equivalent security hardware and software tools).
• Proficient with Fortinet solutions (FortiGate for security policy administration, FortiManager for centralized oversight, and FortiAnalyzer for analytics and incident support).
• Proficiency in Palo Alto security technologies is mandatory.
• Familiarity with ConnectWise Manage or equivalent RMM tools for efficient service management is advantageous.
• Deep understanding of LAN/WAN environments, covering network design, routing, management, and underlying protocols (TCP/IP, subnetting, NAT, ACLs) is essential.
• Strong analytical skills geared towards identifying issues, diagnosing root causes, and implementing effective solutions.
• Hands-on experience with Windows and Linux systems, including server administration and security hardening techniques.
• Advanced experience in network architecture design, including middleware components and server configurations.

Qualifications:

• Professional certifications are highly preferred, including Fortinet NSE4, NSE5, CCNA, CCNP, and Security+.
• A Bachelor's Degree in Information Systems, Computer Science, or a closely related discipline is preferred.
• A minimum of five years' experience in the field of information technology, with a strong focus on network security operations.
• Excellent communication and collaboration competencies, fostering effective teamwork and stakeholder engagement.