CCDS is looking for a seasoned Senior Network Security Engineer with comprehensive expertise across Switching, Routing, Wireless, Firewalls, NAC, WAF, Email Security, and SIEM technologies.
In this impactful role, you will architect and operate secure, scalable network environments that incorporate advanced security controls and monitoring.
You will be responsible for designing robust network infrastructure, implementing security policies, optimizing security devices, and overseeing threat detection and incident response.
This role demands deep technical knowledge, strategic thinking, and hands-on experience working with diverse security solutions to protect enterprise assets.
Role summary Lead the design, deployment, and maintenance of enterprise networks and security systems focusing on switching, routing, wireless, firewalls, NAC, WAF, email security gateways, and SIEM.
Manage configurations, monitor security telemetry, and investigate network security incidents to strengthen our defense posture.
Key responsibilities Network Infrastructure & Security Design Design Layer 2/3 networks with switching, routing protocols (OSPF, BGP), and wireless technologies ensuring high availability and segmentation.
Develop architecture and configuration documents aligning with security best practices for firewalls, NAC, and WAF.
Implement secure guest and BYOD wireless access using 802.
1X and NAC solutions.
Security Systems Implementation & Management Deploy and manage firewall policies, VPNs, and next-generation security appliances.
Configure and maintain NAC for device access control and posture assessment.
Operate Web Application Firewalls and Email Security gateways to protect web and email infrastructure.
Monitoring, Incident Detection & Response Integrate and tune SIEM platforms for log collection, threat detection, and alerting.
Conduct analysis of security events originating from network devices and security appliances.
Coordinate incident response activities and recommend remediation actions.
Medical Insurance Paid Time Off Working Remotely Training & Development Performance Bonus Required skills & experience Minimum 5 years enterprise network security experience with strong capabilities in: Switching & Routing: VLANs, STP, OSPF/BGP, QoS, HA protocols (VRRP, HSRP).
Wireless: Controllers/APs management, WPA2/3 security standards, enterprise 802.
1X authentication.
Firewalls: Policy creation, NAT, VPN (SSL/IPsec), logging, HA.
NAC: 802.1X/MAB authentication, device posture assessment, guest/BYOD onboarding.
Web Application Firewall (WAF) deployment and management.
Email Security: Deployment and operation of secure email gateways and anti-phishing controls.
SIEM platforms: Log integration, detection tuning, alerting and dashboard creation.
Proven troubleshooting skills using packet captures, network flow analysis, and strong documentation and change management practices are essential.
Preferred qualifications Experience with firewall management platforms such as Panorama or FortiManager.
Knowledge of Zero Trust Network Access (ZTNA) solutions.
Familiarity with sandboxing/file detonation technologies.
Experience with DNS Security and Load Balancing.
Hands-on with cloud security services and native controls (AWS, Azure, GCP).
Certifications: CCNP/CCIE Security or Enterprise, PCNSE, Fortinet NSE, Check Point CCSA/CCSE, F5 CTS, Zscaler, GIAC.
