Sr. Operations Engineer (Network Security)

” The Job Description”

1. Manage network security infrastructure, ensuring stability and availability on a 24/7 basis.
2. Provide on-call coverage to handle security-related incidents and issues outside regular working hours.
3. Plan, schedule, and execute system upgrades as per the patch management review process.
4. Maintain and monitor all installed certificates in F5 and proactively communicate certificate expiry to stakeholders.
5. Monitor security client coverage across all workstations, laptops, servers, etc., and take proactive measures for full coverage.
6. Enhance the process for firewall policies (service request and implementation) and conduct periodic firewall policy clean-up exercises.
7. Enable and roll out Two-Factor Authentication on supported systems, devices, and applications.
8. Coordinate with vendors TAC and professional services to maintain network stability.
9. Mentor other engineers on new technologies, troubleshooting techniques, and building MOPs (Method of Procedures).
10. Validate technical design documentation (HLD/LLD/NIP) for complex network changes and ensure smooth deployment on the core IP infrastructure.
11. Evaluate PSIRT (Product Security Incident Response Team) and Field Notices on infrastructure devices and take necessary mitigation actions.
12. Supervise network optimization changes, including vendor best practices rollouts, syslog, and security audits.
13. Execute the assigned load of CRQs (Change Request), SRs (Service Requests), and WOs (Work Orders) on a daily basis.
14. Utilize automation tools and scripting languages (such as Python, Perl, or Shell) to streamline network operations and tasks.
15. Serve as the subject matter expert (SME) for collaboration and voice technologies as part of the network Operations team.
16. Handle Incident and Configuration management.
17. Collaborate with cross-functional teams, including network engineers, system administrators, and security professionals, to resolve complex technical issues related to collaboration and voice systems.
18. Perform regular system maintenance activities, including patching, upgrades, and capacity planning, ensuring minimal disruption to ongoing operations.
19. Implement and enforce security policies for Security systems, ensuring compliance with industry standards and regulations.
20. Conduct vulnerability remediation, keeping the systems secure and protected.
21. Develop and maintain Operational documentation “SOPs,” including system configurations, procedures, and troubleshooting guides, to facilitate knowledge sharing and operational efficiency.
22. Participate in an on-call rotation schedule to provide 24/7 support for critical incidents, ensuring prompt resolution and minimal downtime.
23. Being available during scheduled maintenance and downtimes, leads or assists in new implementations, upgrades, or problem resolution.
24. Provide technical guidance and mentorship to junior team members, sharing knowledge and best practices related to collaboration and voice technologies.

Requirements:

• Bachelor’s Degree in Telecom/Computer Engineering or equivalent.
• ITIL.
• CCIE SEC, PCNSE, NSE-7 & F5-401 or equivalent certifications.
• 10 to 12+ years of experience in an enterprise environment.
• Solid experience and extensive hands-on with various security appliances and technologies.
• Strong experience with multi-vendor networks and familiarity with network management systems (NMS).
• Excellent IP networking fundamentals and extensive experience in VPN protocols (IPSec, GRE, SSL, Remote Access).
• Strong experience with ISE/NAC administration and AAA/TACACS/RADIUS technologies.
• Proficiency in scripting or programming languages such as Python, Perl, or Shell for automation.

Tagged as: ccie sec, crqs, GRE, HLD, ipsec, ISE, itil, LLD, mops, NAC, NIP, nse-7, pcnse, perl, python, shell, SSL, TAC