L3 Network Security Engineer - Network Security Device Management (m/f/d)
- Riyadh
- Permanent
- Full-time
- SSL Inspection (Gigamon)
- Virtual Private Network (Palo Alto, F5)
- Web Proxy (ForcePoint)
- Firewalls (Palo Alto, Cisco, Fortinet)
- DDoS Protection (Arbor)
- Advanced Threat Protection (FireEye NX)
- Intrusion Prevention Systems (Cisco, Trilex)
- Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail)
- Advanced Support & Escalation Management:
- Act as the final escalation point for complex incidents affecting all network security technologies.
- Conduct comprehensive troubleshooting and root cause analysis, implementing corrective actions and enhancements.
- Configuration, Optimization & Maintenance:
- Oversee the configuration, tuning, and maintenance of SSL Inspection, VPN, Web Proxy, Firewall, DDoS, Advanced Threat Protection, Intrusion Prevention, and Email Security solutions.
- Develop and enforce best practices and security policies for device configurations.
- Incident Response & Reporting:
- Lead incident response during critical security events and coordinate with relevant teams for rapid resolution.
- Prepare detailed post-incident reports and contribute to continuous improvement initiatives.
- Technical Leadership & Mentorship:
- Mentor L2 engineers and junior staff, providing guidance and developing best practice documentation.
- Participate in technology reviews, risk assessments, and security audits.
- Collaboration & Strategy:
- Work closely with network, IT, and security teams to design and implement robust security architectures.
- Recommend and implement technology upgrades and process improvements to strengthen the overall security posture.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 7 years of experience in network security engineering with a focus on managing diverse security technologies.
- Demonstrated expertise in managing SSL Inspection (Gigamon), VPN (Palo Alto, F5), Web Proxy (ForcePoint), Firewalls (Palo Alto, Cisco, Fortinet), DDoS Protection (Arbor), Advanced Threat Protection (FireEye NX), Intrusion Prevention Systems (Cisco, Trilex), and Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail).
- Excellent analytical, problem-solving, and communication skills.
- Advanced certifications such as CISSP, CISM, or equivalent.
- Vendor-specific certifications (e.g., Palo Alto, F5, Cisco, Fortinet, Arbor, FireEye, ForcePoint) are highly desirable.
- Experience with ITIL processes, incident management, and change management.
- Full-time role with standard 9x5 hours and potential on-call responsibilities.
- Fast-paced, high-pressure environment with global collaboration.
- Occasional extended hours during critical incidents or planned maintenance windows.