Network Security Engineer

Key Responsibilities

Shift Leadership & Incident Response Lead network security operations during assigned shifts; manage escalations and ensure SLA compliance. Investigate and respond to network-based threats (DDoS, lateral movement, unauthorized access). Execute network security playbooks and document RCA for incidents. Network Security Operations Configure, monitor, and maintain

firewalls

(Palo Alto, Fortinet, Check Point) and

VPN solutions . Manage

IDS/IPS

systems and ensure detection fidelity. Implement and enforce

network segmentation

and zero-trust principles. Zscaler Administration Operate and troubleshoot

Zscaler ZIA/ZPA

policies for secure web and application access. Monitor logs and alerts for anomalies; collaborate with network teams for policy optimization. Threat Detection & Hunting Perform network-based threat hunting using flow analysis, packet captures, and threat intel. Tune IDS/IPS signatures and Zscaler policies to reduce false positives and improve detection coverage. Reporting & Compliance Prepare and present network security posture reports, including firewall rule audits, VPN usage, and threat trends. Ensure compliance with frameworks (ISO 27001, NIST CSF) and support audit readiness. Required Qualifications

5–8 years

in Network Security / SOC / Incident Response. Hands-on experience with

firewalls ,

VPN ,

IDS/IPS , and

Zscaler ZIA/ZPA . Proven

Shift Lead

experience in a 24×7 environment. Strong understanding of TCP/IP, routing, switching, and network protocols. Excellent communication and reporting skills. Nice-to-Have

Experience with

cloud networking security

(Azure/AWS/GCP). Familiarity with

DDoS mitigation ,

proxy/DLP , and

network forensics . Certifications:

CCNP Security ,

PCNSE ,

Zscaler Certified Professional ,

Security+ ,

CySA+ . Tools & Technologies

Firewalls:

Palo Alto, Fortinet, Check Point IDS/IPS:

Snort, Suricata, Cisco Firepower Zero Trust:

Zscaler ZIA/ZPA VPN:

IPsec, SSL VPN solutions Monitoring:

Wireshark, NetFlow, Zeek KPIs

Network incident MTTD/MTTR Firewall rule audit compliance VPN uptime and secure access SLA Threat detection accuracy and false positive reduction