Job Purpose
The Senior Network Security Engineer will be responsible for the delivery and support of network security services across the infrastructure. The role will be working with various ITC teams and vendors to deliver security operations and projects to agreed costs and timescales, maintaining quality and ensuring compliance with relevant governance, regulations, standards and policies. The role requires an individual who can work in a fast-changing environment, develop and implement modern solutions, and provide high-quality support levels.
Key Responsibilities
- Design, configure, and support secure LAN/WAN infrastructure, including routers, switches, firewalls, VPNs, and load balancers
- Implement and maintain network security solutions such as firewalls, UTM’s, NAC, and endpoint protection systems
- Monitor network performance, troubleshoot issues, and optimize security and connectivity
- Develop and enforce network security policies, standards, and procedures
- Conduct vulnerability assessments and implement remediation plans
- Collaborate with various ITC teams, such as back office, field communications, and cybersecurity, on incident response and recovery
- Manage and maintain security tools and platforms, such as next-gen firewalls (e.g. Palo Alto, Fortinet, Cisco FTD), DLP, endpoint protection, and access control systems
- Manage and maintain secure remote access technologies (e.g. IPsec, SSL VPNs)
- Ensure high availability and redundancy in network architecture
- Document network configurations, diagrams, and processes
- Stay current with emerging network technologies and security trends
- Assist in developing and providing training to junior staff
- Expertise with firewall and NAC platforms (e.g. Palo Alto, Cisco FTD, Fortinet, Cisco ISE)
- In-depth knowledge of TCP/IP, DNS, DHCP, VPN, VLANs, wireless security and routing protocols
- Hands-on approach with competency in performing low-level configuration changes via CLI or GUI
- Solid understanding of TACACS+, Radius, MAB, 802.1x, Web AUTH, RBAC, EAP-TLS, PEAP
- Experience with network monitoring and analysis tools (e.g. SolarWinds, Wireshark, Catalyst Centre)
- Familiarity with cloud networking and security (AWS, Azure, GCP)
Requirements
Essential Qualifications:
- University-level education, preferably in Computer Engineering, Computer Science, or an IT-related discipline
- ITIL Foundations experienced/trained
- CCNP/CCIE Security experienced/trained
- Experience in designing and deploying security solutions
- Scripting/Programming Experience
- Ability to work within a multicultural environment
- Experience in a similar role in an oil/gas company
- CCNP/CCIE Security certification or equivalent preferred
- Excellent communication skills (verbal and written)
- Strong analytical and interpersonal skills, and able to work with staff at all levels in the organization
- Proactive thinking and problem-solving skills to come up with options and solutions to complex technical issues
- Delivery-focused with good attention to detail
- Willing to challenge and be challenged
- Self-motivated, positive attitude, energetic, collaborative, and leads by example
- Demonstrates strong customer empathy and business understanding
Rotation
21/21
*Only applicants meeting the strict criteria outlined above will be contacted as part of the shortlisting process.