Senior Network Security Engineer

Role Summary

Senior Network Security Engineer responsible for designing, implementing, and maintaining security solutions across enterprise and cloud environments to protect critical infrastructure and data, with compliance to industry best practices including GxP where applicable.

Responsibilities

• Network Security Architecture & Operations
• Design, implement, and manage a comprehensive network security framework, including firewalls, VPNs, network access control (NAC), and secure access solutions (CASB).
• Research, evaluate, and recommend cutting-edge security technologies including SIEM systems, threat intelligence platforms, and security monitoring tools to proactively mitigate risks.
• Define, implement, and enforce network security policies and standards, ensuring alignment with industry best practices and regulatory requirements.
• Oversee the deployment, configuration, and maintenance of security HW & SW from industry-leading vendors such as Cisco, Palo Alto Networks, Infoblox, etc.
• Continuously monitor security logs, network activity, and performance metrics to identify vulnerabilities and implement corrective actions.
• Incident Response & Risk Mitigation
• Collaborate with internal security, IT, and operations teams to investigate and respond to security incidents, ensuring rapid mitigation with minimal operational impact.
• Conduct root cause analysis (RCA) and post-incident reviews to strengthen security posture and prevent recurrence.
• Develop and maintain incident response protocols, security playbooks, and operational procedures.
• Security Automation & Compliance
• Implement and manage security automation frameworks.
• Work with compliance and audit teams to ensure adherence to regulatory requirements such as GxP, NIST, and ISO 27001.
• Participate in internal and external security audits, ensuring security configurations meet compliance standards.
• Collaboration & Knowledge Sharing
• Work cross-functionally with network engineering, security operations, and IT teams to integrate security best practices into infrastructure and application architectures.
• Provide mentorship and training to internal teams on security best practices, emerging threats, and risk mitigation strategies.
• Maintain and update technical documentation, including security architecture diagrams and standard operating procedures (SOPs).
• Global Support & On-Call Readiness
• Participate in a defined on-call rotation to provide global security incident support and serve as a Level 3 escalation point.
• Support security lifecycle management initiatives, including threat modeling, penetration testing coordination, and vulnerability assessments.

Qualifications

• 8+ years of experience in network security architecture, implementation, and operations within large-scale enterprise environments.
• Deep expertise in firewalls, IPS/IDS, VPN, Secure Access (CASB), SIEM, DNS Security, and Network Access Control (NAC).
• Extensive technical knowledge of industry-leading security platforms such as Cisco, Palo Alto Networks, Infoblox, and other.
• Strong problem-solving skills with the ability to analyze and respond to emerging security threats effectively.
• A customer-first mindset with a commitment to protecting organizational assets and data integrity.

Skills

• Security architecture and engineering
• Threat detection and incident response
• Security automation and scripting (e.g., Python, Ansible)
• Infrastructure as Code (IaC) principles
• Regulatory frameworks (GxP, NIST, ISO 27001)
• Vendor and tool proficiency (Cisco, Palo Alto Networks, Infoblox, SIEM, NAC, CASB)
• Documentation and communication

Education

• Relevant bachelor's degree or higher in computer science, information security, or a related field (not always required if equivalent experience is demonstrated).

Additional Requirements

• Experience in GxP-regulated environments is a plus; ability to quickly learn GxP requirements if not prior experience.
• Experience in biotech, pharmaceutical, or healthcare settings is preferred.
• Project management skills to independently lead small to medium security initiatives.
• Executive-level communication and clear documentation skills.