Network Security Engineer

About the Role:

We are seeking a skilled Network Security Engineer to join our team in Middlesex. You will play a critical role in identifying, prioritizing, and remediating vulnerabilities across hybrid network environments—spanning on-premises, cloud, and SD-WAN infrastructures. This role demands a proactive, hands-on professional with a strong security mindset and deep technical expertise in securing enterprise network architectures.

Key Responsibilities:

• Analyze and respond to network vulnerability reports from tools such as Tenable, Qualys, AWS Inspector, etc.
• Remediate network vulnerabilities including IP spoofing, open ports, unencrypted protocols, default credentials, and outdated firmware.
• Enforce secure alternatives to legacy protocols (e.g., replacing Telnet/SNMPv1 with SSH/SNMPv3).
• Apply hardening standards using CIS Benchmarks, NIST guidelines, and industry best practices to secure routers, switches, and firewalls.
• Configure and maintain key network security controls such as ACLs, VLANs, DMZs, and micro-segmentation strategies.
• Secure network equipment management interfaces through least-privilege access and strong encryption (e.g., TLS 1.2/1.3).
• Design secure cloud networking using AWS VPCs, Azure NSGs, and GCP firewall rules.
• Implement cloud and hybrid segmentation and egress controls to reduce lateral movement risks.
• Support incident response efforts by investigating and mitigating network-level threats and anomalies.
• Collaborate with penetration testers and vulnerability management teams to validate findings and ensure resolution.
• Partner with GRC and compliance teams to align network controls with standards such as PCI-DSS, ISO 27001, etc.

Requirements:

Technical Skills & Experience:

• 5+ years of experience in network security engineering roles.
• Strong hands-on expertise with hybrid networks, including on-prem, cloud, and SD-WAN environments.
• Solid understanding of network protocols, firewalls, IDS/IPS, routing, switching, and encryption technologies.
• Proficiency in securing cloud infrastructure (AWS, Azure, GCP).
• Experience with vulnerability management and hardening techniques.

Preferred Certifications:

• CCNP Security
• CISSP
• AWS Security Specialty
• OSCP or CEH

Bonus:

• Scripting or automation experience (Python, Bash, etc.) is a plus.