Network Security Engineer

Network Security Engineer - £550 per day - Inside IR35 - Remote - 6 months initial contract.

We are seeking an experienced Network Security Engineer Contractor to join a high-performing Security Engineering team supporting enterprise-scale security infrastructure and transformation initiatives. This role is ideal for a hands-on engineer with strong expertise across next-generation Firewalls, SASE technologies, network security operations, and infrastructure security within complex regulated environments.

The successful candidate will operate within a SAFe-aligned Agile delivery environment and contribute to the engineering, administration, and continuous improvement of critical security platforms and services.

Key Responsibilities -

• Operate as part of the Security Engineering team delivering enterprise security capabilities.
• Work within SAFe Agile practices, participating in daily stand-ups, sprint planning, retrospectives, and other delivery ceremonies.
• Maintain accurate workload management, delivery tracking, and time logging within Jira.
• Engineer, support, and maintain Next Generation Firewall (NGFW) and Secure Access Service Edge (SASE) solutions.
• Translate customer and operational requirements into actionable engineering tasks and technical solutions.
• Provide technical escalation support to junior engineers and operational teams.
• Produce and maintain high-quality technical documentation, including knowledge base articles and operational procedures.
• Deliver technical knowledge transfer sessions and support capability uplift across the wider team.
• Participate in occasional out-of-hours support activities for priority changes or incident response.

Technical Skills & Experience -

Network & Security Technologies -

The ideal candidate will demonstrate experience across as many of the following technologies as possible:

• Enterprise-grade Next Generation Firewalls, particularly:
  • Palo Alto Networks
  • Fortinet
  • Firewall policy administration, security profile configuration, and life cycle management.
• Management platforms such as:
  • Panorama
  • FortiManager
  • FortiAnalyzer
• Strong Routing & Switching fundamentals.
• Secure Access Service Edge (SASE) platforms and architectures.
• Load balancing and application delivery technologies, primarily F5.
• Email security gateways and email hygiene solutions such as Mimecast.
• Network monitoring and troubleshooting tooling.
• Laptop build and endpoint configuration processes aligned to organisational standards.
• Pre-logon authentication and Host Integrity Profile implementation and support.
• Certificate services administration and secure VPN configuration.

Security & Exposure Management -

• Experience with Exposure and Vulnerability Management platforms such as Tenable One.
• Strong analytical troubleshooting and problem-solving capability.
• Understanding of security architecture principles and secure design practices.
• Experience supporting or contributing to Security Risk Assessments.

Ability to produce and maintain:

• Network diagrams
• High-Level Designs (HLDs)
• Low-Level Designs (LLDs)
• Security designs
• Risk assessment documentation

Cloud & Infrastructure

• Working knowledge of AWS and Azure infrastructure and cloud security services.

Soft Skills & Attributes -

• Strong stakeholder engagement and customer-facing communication skills.
• Ability to work independently while collaborating effectively within multidisciplinary teams.
• Experience working within SAFe, Scrum, or similar Agile delivery frameworks.

Proven collaboration with:

• IT Operations
• Security Operations
• Governance, Risk & Compliance teams
• Architecture and Engineering teams

Previous experience within an MSSP or highly regulated environment (such as nuclear, utilities, defence, or critical infrastructure) would be advantageous.