Role Overview
We are seeking an experienced Senior Network Security Design Engineer to join a global IT Infrastructure and Security team. This role will serve as a key technical authority responsible for enterprise network architecture, security design standards, and complex implementations across on-premises, cloud, and operational technology (OT) environments.
The successful candidate will play a strategic role in driving network modernization, improving security posture, and ensuring scalable, resilient, and high-performing infrastructure services across regional and global operations. The role will collaborate closely with infrastructure, cybersecurity, cloud, and operations teams to deliver secure and business-aligned solutions.
Key Responsibilities
Network Operations & Governance
- Support governance and operational management of enterprise network environments including LAN, WAN, WLAN, VPN, cloud networking, and OT infrastructure.
- Administer and support network security platforms and technologies including SD-WAN, firewalls, secure access solutions, and endpoint security tools.
- Monitor network performance, availability, and overall infrastructure health.
- Perform troubleshooting for network-related incidents and escalate complex issues where necessary.
- Support incident, service request, and change management activities in accordance with established ITSM and SLA processes.
- Ensure operational stability and timely resolution of critical network issues.
Network Design & Architecture
- Lead enterprise network design and architecture initiatives for offices, data centers, cloud environments, and hybrid infrastructure.
- Develop scalable, secure, and resilient network solutions aligned with business and security requirements.
- Drive optimization initiatives to improve network performance, resiliency, convergence, and latency.
- Participate in architecture and technical review discussions.
- Collaborate with vendors, technology partners, and internal stakeholders on infrastructure initiatives.
- Translate business requirements into practical infrastructure and security solutions.
- Act as Subject Matter Expert (SME) for network and security technologies.
Documentation & Standards
- Maintain and update network diagrams, technical configurations, high-level and low-level design documentation, and architecture and implementation records.
- Support asset lifecycle management and technology refresh planning.
- Assist with solution sizing, bill of materials (BOM), and license tracking activities.
- Ensure documentation remains audit-ready and aligned with compliance requirements.
- Promote standardization, automation, and infrastructure-as-code (IaC) practices.
Support & Continuous Improvement
- Provide high-priority operational support and troubleshooting for critical network incidents.
- Work closely with vendors and internal teams to resolve infrastructure issues.
- Contribute to continuous improvement initiatives and technology modernization efforts.
Requirements & Technical Skills
- Proven experience mentoring or guiding technical teams across networking, security, and cloud infrastructure domains.
- Minimum 3 years of experience in solution architecture, technical consulting, or infrastructure design roles.
- Minimum 5 years of hands-on operational support experience in enterprise network environments.
- Experience supporting large-scale enterprise or multinational infrastructure environments preferred.
Technical Expertise
- Strong hands-on experience in enterprise networking technologies including switching, routing, VPN, WiFi, VLANs, resiliency, HSRP/VRRP, NAT, IPsec, and dynamic routing.
- Strong experience in network security technologies such as firewalls, SIEM, WAF, IDS/IPS, Zero Trust, segmentation frameworks, and cloud network security.
- Experience with Microsoft Azure networking and security.
- Knowledge of infrastructure automation, APIs, and Infrastructure-as-Code (IaC).
- Experience with endpoint security and hybrid Microsoft/Linux environments.
- Experience with secure remote access and secure web gateway technologies.
Security & Framework Knowledge
- Familiarity with cybersecurity frameworks such as NIST Cybersecurity Framework (CSF), MITRE ATT&CK, and Zero Trust Architecture.
Certifications (Preferred)
- CCNP / CCIE
- Fortinet certifications
- Azure networking/security certifications
- GIAC / SANS
- ITIL
