Network Security Manager

Position: NETWORK SECURITY MANAGER
We are seeking a high-calibre Network Security Manager & Lead Engineer to serve as the primary architect and technical authority for our network security posture. This is a critical hybrid role designed for a professional who can balance strategic security planning with deep-tier technical execution. The successful candidate will not only identify risks but will engineer the solutions to eliminate them.

We are looking for a leader who moves beyond administrative oversight or reactive troubleshooting to proactively build a resilient, "Secure-by-Design" network.

You will have the autonomy to define the security roadmap and the technical influence to ensure those standards are implemented effectively across our on-prem and cloud infrastructure.

Strategic

Key Responsibilities
1. Security Architecture & Governance
• Network Architecture Reviews:
Conduct comprehensive architectural assessments of on-premises, hybrid, and multi-cloud (GCP/Azure/AWS) networks to ensure alignment with global security frameworks.
• Application Architecture Reviews:
Perform application architecture reviews from network security perspective (e.g., tiered approach, flow analysis, load balancing security, and component placement).
• Standards & Baselines:
Establish and enforce "Secure Configuration Baselines" for all network assets, ensuring the Network Operations team adheres to hardened standards.
• Risk Lifecycle Management:
Proactively perform vulnerability assessments on infrastructure; track and drive remediation efforts to successful closure.
2. Advanced Security Engineering
• Zero Trust Implementation:
Lead the design and implementation of East-West traffic security using zero-trust principles.
• Access Control Authority:
Serve as the L3 Subject Matter Expert (SME) for NAC (Forescout/ISE) and Secure Remote Access/SASE (Zscaler/VPN). PUBLIC
• Vulnerability Management:
Perform targeted vulnerability assessments on network infrastructure, track findings, and drive the remediation lifecycle to closure.
• Firewall Rule Reviews:
Conduct periodic policy reviews to eliminate redundant rules, reduce the attack surface, and enforce 'least-privilege' access across all environments.
3. Cross-Functional Partnership
• Operational Alignment:
Act as the strategic bridge between Information Security and IT Operations, translating complex security requirements into actionable engineering tasks.
• Incident Escalation:
Provide expert-level support for complex security incidents and network-related anomalies.
Candidate Qualifications
•

Experience:

10–12+ years in Information Security with a specialization in network and infrastructure security; must demonstrate a clear career progression from hands-on engineering to architectural design and leadership responsibilities.
• Domain Expertise:
Proven track record in deploying NAC, Micro-segmentation, and Zscaler/SASE at an enterprise scale.
• Network Mastery:
Deep technical command of OSI layers, BGP, OSPF, and Cloud-native networking components.
• Education &

Certifications:

Bachelor’s degree in a technical field. High-tier certifications such as CCIE/CCNP Security, CISSP, or CISM are strongly preferred. ISSAP is an advantage.