Job Purpose

The Network Security Engineer is responsible for implementing, configuring, monitoring, and maintaining network security solutions across the organization's infrastructure and client environments. The role supports the delivery of Managed Security Services (MSS) by ensuring the security, availability, and integrity of networks, systems, and security devices. The Network Security Engineer works closely with clients, network teams, SOC analysts, and other technical teams to detect, investigate, and respond to security threats while maintaining compliance with organizational and regulatory requirements

WHAT YOU WILL DO

1. Network Security Implementation and Management

• Deploy, configure, and maintain network security solutions including firewalls, IDS/IPS, VPNs, web filtering solutions, and network access control systems.
• Implement and support secure LAN, WAN, WLAN, VLAN, and SD-WAN deployments.
• Configure and manage firewall policies, NAT rules, VPN tunnels, routing, and network segmentation.
• Perform regular security reviews of network infrastructure and recommend improvements.

2. Security Monitoring and Threat Detection

• Monitor security events and alerts generated from firewalls, IDS/IPS, SIEM platforms, and other security tools.
• Investigate suspicious network activities and security incidents.
• Perform log analysis and correlate events to identify potential threats.
• Escalate critical incidents and support containment and remediation activities.

3. Managed Security Services (MSS) Operations

• Provide day-to-day operational support for client security environments.
• Manage firewall configurations, security policies, VPN connectivity, and security device health monitoring.
• Conduct security configuration reviews and implement approved changes.
• Support onboarding of new MSS clients and deployment of security solutions

4. Vulnerability Assessment and Security Hardening

• Conduct vulnerability assessments of internal and client environments.
• Analyze vulnerability scan results and coordinate remediation efforts.
• Perform security hardening of network devices and systems based on industry best practices.
• Support penetration testing exercises and remediation activities.

5. Incident Response Support

• Participate in cybersecurity incident response activities.
• Investigate security breaches, malware infections, unauthorized access attempts, and network attacks.
• Assist with forensic data collection and analysis.
• Document incidents, findings, corrective actions, and lessons learned.

6. Security Documentation and Compliance

• Maintain accurate network diagrams, security configurations, standard operating procedures, and technical documentation.
• Support compliance initiatives related to ISO/IEC 27001, ISO/IEC 27701, NCSA, RURA, and other regulatory requirements.
• Participate in internal and external audits by providing required technical evidence.

7. Continuous Improvement and Innovation

• Stay informed about emerging cybersecurity threats, vulnerabilities, and security technologies.
• Recommend improvements to security controls, monitoring capabilities, and operational processes.
• Participate in security awareness and technical training initiatives.

QUALIFICATIONS AND REQUIREMENTS

Education

• Bachelor’s degree in information technology, Computer Science, Cybersecurity, Network Engineering, or a related field.

Experience

• Minimum of 3 years of experience in network security, cybersecurity, or network engineering.
• Experience working with enterprise security solutions in ISP, telecom, cloud, or managed service environments.
• Experience supporting security monitoring and incident response activities.

Technical Skills

• Strong knowledge of TCP/IP, routing, switching, VLANs, NAT, VPNs, DNS, and network troubleshooting.
• Hands-on experience with firewall technologies such as Fortinet, Check Point, Cisco, Palo Alto, or similar solutions.
• Experience with IDS/IPS, SIEM platforms, endpoint security solutions, and web security technologies.
• Familiarity with SD-WAN technologies and multi-site network deployments.
• Experience using security monitoring and management platforms such as Forti Manager, Forti Analyzer, Splunk, Wazuh, QRadar, or similar tools.
• Knowledge of vulnerability assessment tools such as Nessus, Qualys, OpenVAS, or similar.
• Understanding of cybersecurity frameworks and standards including ISO/IEC 27001, NIST, CIS Controls, and OWASP Top 10.

Certifications

One or more of the following certifications is a must:

• Fortinet NSE 4 or higher
• CEH (Certified Ethical Hacker)
• CCNA Security / CCNP Security
• CompTIA Security+
• Fortinet Certified Professional (FCP)
• Palo Alto Networks Certified Network Security Engineer (PCNSE)

Soft Skills

• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.
• Ability to work independently and within a team environment.
• Strong customer service and client engagement skills.
• Ability to work under pressure and manage multiple priorities.

WORKING CONDITIONS

• Participation in on-call support and incident response activities.
• Occasional after-hours maintenance and emergency support.
• Travel to client sites and BSC facilities as required.

BENEFITS:

• Professional growth and training
• Medical Insurance covering you and your dependents
• Tools of trade & connectivity
• Communication allowance
• Home Internet
• Fitness club subscription
• Savings and pension funds
• An exceptional workplace offering growth prospects, continuous learning opportunities, and a dynamic, inclusive, and innovative team.

We aim to provide a great recruitment experience for our candidates while fostering a dynamic and welcoming workplace. Applicants are encouraged to submit application promptly as application are evaluated on a rolling basis. Qualified candidates will be contacted with further communication regarding next stages.