Responsive Navbar

Network Security Engineer

Job Description

Roles & Responsibilities

Job Description: Director/VP - Network Security Engineer

Job Summary

The Director/VP of Network Security Engineer is a senior leadership position responsible for overseeing and ensuring the integrity, confidentiality, and availability of an organization’s network security infrastructure. This role involves leading a team of network security professionals to develop, implement, and maintain robust security strategies, frameworks, and policies. The Director/VP will act as a liaison between IT and upper management to ensure alignment with organizational goals while driving security initiatives forward. This individual will manage a diverse range of complex tasks related to network security operations, including threat assessment, risk management, incident response, and regulatory compliance.

Key Responsibilities

  1. Leadership and Strategy Development:

    • Lead and mentor a high-performing team of network security engineers, architects, and analysts.
    • Develop long-term strategies and tactical plans for securing the organization’s network infrastructure.
    • Ensure alignment of network security policies with overall business goals and industry regulations.
    • Collaborate with cross-functional teams (e.g., IT, operations, compliance) to integrate security practices into all business processes.

  2. Network Security Architecture:

    • Design, implement, and maintain a comprehensive network security architecture that protects the organization’s network and data.
    • Conduct network security assessments and vulnerability testing to identify potential threats.
    • Implement and manage next-generation firewalls, intrusion detection/prevention systems (IDS/IPS), and other key security technologies.
    • Create and enforce security policies for networks, endpoints, and communications.

  3. Incident Response and Risk Management:

    • Lead incident response efforts to quickly identify and mitigate network security threats and breaches.
    • Develop and maintain disaster recovery and business continuity plans specifically related to network security.
    • Perform risk assessments, vulnerability assessments, and penetration testing to identify risks and provide mitigation strategies.
    • Oversee the identification, documentation, and resolution of security incidents.

  4. Compliance and Regulatory Management:

    • Ensure the organization’s network security practices comply with all relevant industry standards, laws, and regulations (e.g., GDPR, HIPAA, PCI-DSS).
    • Collaborate with compliance teams to prepare for and support audits and regulatory assessments.
    • Ensure proper documentation and reporting of security incidents in line with organizational policies.

  5. Training and Development:

    • Provide ongoing training to security engineers and broader IT staff on emerging threats, security trends, and technologies.
    • Establish security awareness programs for employees to promote safe network practices.

  6. Vendor and Technology Management:

    • Manage relationships with external security vendors and service providers.
    • Evaluate, select, and integrate new security technologies into the existing network security infrastructure.

  7. Budgeting and Resource Management:

    • Oversee budget and resources for the network security department, ensuring cost-effective solutions.
    • Ensure appropriate allocation of resources for ongoing security projects and operations.

  8. Reporting and Communication:

    • Provide regular updates and reports on network security performance to the executive leadership team.
    • Communicate security risks and incident responses clearly and effectively to both technical and non-technical stakeholders.

Skills and Knowledge Required

  1. Technical Expertise:

    • Deep knowledge of network security protocols, tools, and technologies (e.g., firewalls, IDS/IPS, VPNs, SSL/TLS, DLP).
    • Expertise in security tools and platforms (e.g., SIEM, vulnerability scanners, endpoint protection, and data encryption).
    • Understanding of enterprise network architecture and technologies such as SD-WAN, cloud security, and multi-cloud environments.

  2. Leadership and Management:

    • Proven ability to lead and manage large teams of technical professionals in a fast-paced environment.
    • Experience in cross-department collaboration and alignment of security goals with business priorities.

  3. Incident Response and Forensics:

    • Advanced knowledge of network forensics, security monitoring, and incident response strategies.
    • Expertise in handling complex security incidents, data breaches, and coordinated attack response.

  4. Risk Management and Compliance:

    • Strong understanding of risk management frameworks (e.g., NIST, ISO 27001).
    • In-depth knowledge of industry regulations and standards such as GDPR, PCI-DSS, HIPAA, SOX, etc.

  5. Strategic Thinking:

    • Ability to develop long-term security strategies that align with the business objectives of the organization.
    • Proficiency in identifying emerging threats and devising proactive countermeasures.

  6. Analytical Skills:

    • Strong analytical skills to assess and evaluate security risks and the effectiveness of security measures.
    • Ability to prioritize issues based on potential business impact.

Educational Qualifications

  • Minimum: Bachelor’s degree in Computer Science, Information Technology, Network Engineering, or a related field.
  • Preferred: Master’s degree in Cybersecurity, Information Assurance, or Business Administration (MBA).
Certifications:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Ethical Hacker (CEH)
  • Cisco Certified Network Associate Security (CCNA Security) or Professional (CCNP Security)
  • GIAC Security Expert (GSE)

Key Focus Areas

  • Network Security Architecture: Design, implement, and ensure security of the organization's network infrastructure.
  • Cybersecurity Leadership: Lead security teams and programs, driving organizational security initiatives.
  • Incident Response and Risk Management: Lead efforts in identifying, mitigating, and responding to security breaches.
  • Compliance and Standards: Ensure adherence to security regulations, standards, and internal policies.

Experience

  • Required:

    • 10+ years of experience in network security, including at least 5 years in a leadership role such as Network Security Manager, Lead Security Engineer, or Security Architect.
    • Proven experience in implementing network security infrastructure for large organizations.
    • Experience in handling large-scale security incidents and leading incident response efforts.

  • Preferred:

    • Experience working in industries with high regulatory requirements, such as financial services, healthcare, or government sectors.
    • Experience in managing a multi-location or global network security operation.

Tools and Equipment

  • Security Tools: SIEM (e.g., Splunk, SolarWinds), IDS/IPS (e.g., Snort, Suricata), firewall appliances (e.g., Palo Alto, Fortinet), VPN solutions (e.g., Cisco AnyConnect), endpoint protection platforms (e.g., CrowdStrike, Carbon Black).
  • Operating Systems: Linux, Windows, MacOS, and network devices (routers, switches, firewalls).
  • Monitoring and Management Tools: Nagios, SolarWinds, ManageEngine, Wireshark, and other network monitoring platforms.
  • Risk and Compliance Tools: RSA Archer, Qualys, and other risk management platforms.
  • Communication Tools: Slack, Microsoft Teams, Confluence for team collaboration and incident management.

Other Requirements

  • Communication: Ability to communicate complex security concepts to non-technical stakeholders.
  • Problem-Solving: Strong problem-solving capabilities, with a focus on resolving complex security challenges under pressure.
  • Continuous Learning: Willingness to keep up with emerging threats, technologies, and security trends through continuous learning and certification.
  • Availability: Willingness to participate in on-call rotations or respond to security incidents outside of business hours, when necessary.
  • Travel: Occasional travel for meetings with stakeholders or vendors, conferences, or training.

Job Detail
  • Work Type: Full Time
  • Languages to be known :
  • Country: United Arab Emirates
  • City: Dubai
  • Job Category : Information Technology