Job Title

We are seeking a high-calibre Network Security Manager & Lead Engineer to serve as the primary architect and technical authority for our network security posture. This is a critical hybrid role designed for a professional who can balance strategic security planning with deep-tier technical execution. The successful candidate will not only identify risks but will engineer the solutions to eliminate them. We are looking for a leader who moves beyond administrative oversight or reactive troubleshooting to proactively build a resilient, "Secure-by-Design" network.You will have the autonomy to define the security roadmap and the technical influence to ensure those standards are implemented effectively across our on-prem and cloud infrastructure.Strategic Key Responsibilities1. Security Architecture & Governance • Network Architecture Reviews: Conduct comprehensive architectural assessments of on-premises, hybrid, and multi-cloud (GCP/Azure/AWS) networks to ensure alignment with global security frameworks. • Application Architecture Reviews: Perform application architecture reviews from network security perspective (e.g., tiered approach, flow analysis, load balancing security, and component placement). • Standards & Baselines: Establish and enforce "Secure Configuration Baselines" for all network assets, ensuring the Network Operations team adheres to hardened standards. • Risk Lifecycle Management: Proactively perform vulnerability assessments on infrastructure; track and drive remediation efforts to successful closure.2. Advanced Security Engineering • Zero Trust Implementation: Lead the design and implementation of East-West traffic security using zero-trust principles. • Access Control Authority: Serve as the L3 Subject Matter Expert (SME) for NAC (Forescout/ISE) and Secure Remote Access/SASE (Zscaler/VPN). PUBLIC • Vulnerability Management: Perform targeted vulnerability assessments on network infrastructure, track findings, and drive the remediation lifecycle to closure. • Firewall Rule Reviews: Conduct periodic policy reviews to eliminate redundant rules, reduce the attack surface, and enforce 'least-privilege' access across all environments.3. Cross-Functional Partnership • Operational Alignment: Act as the strategic bridge between Information Security and IT Operations, translating complex security requirements into actionable engineering tasks. • Incident Escalation: Provide expert-level support for complex security incidents and network-related anomalies.Candidate Qualifications • Experience: 10–12+ years in Information Security with a specialization in network and infrastructure security; must demonstrate a clear career progression from hands-on engineering to architectural design and leadership responsibilities. • Domain Expertise: Proven track record in deploying NAC, Micro-segmentation, and Zscaler/SASE at an enterprise scale. • Network Mastery: Deep technical command of OSI layers, BGP, OSPF, and Cloud-native networking components. • Education & Certifications: Bachelor’s degree in a technical field. High-tier certifications such as CCIE/CCNP Security, CISSP, or CISM are strongly preferred. ISSAP is an advantage.