IT Network Security Engineer

Role Summary:

Experienced IT Network Security Engineer is to design, implement, operate, and continuously improve security controls across the university’s campus network, infrastructure, and endpoints. The role focuses on network security operations, identity and access control (Cisco ISE), next-generation firewalls (Forcepoint and Cisco Firepower), WAF administration, monitoring, vulnerability management, and incident response, ensuring alignment with institutional security policies and business needs.

Apply through the form below. 
Key Responsibilities:

 

1) Network Security Architecture

  • Design and deploy security controls across campus infrastructure, data center, and endpoints.
  • Translate business requirements into secure network and security designs aligned with policies and standards.
  • Maintain and enhance security policies, baselines, procedures, and technical standards.

2) Identity & Access Control (Cisco ISE)

  • Implement, configure, and operate Cisco ISE (NAC): profiling, posture, authentication and authorization (802.1X/MAB), guest/BYOD, and policy enforcement.
  • Manage access control roles and privileges and integrate with directory services where applicable.

3) Firewalls & Perimeter Security (Forcepoint & Cisco Firepower)

  • Install, configure, upgrade, administer, and troubleshoot Forcepoint and Cisco Firepower firewalls.
  • Manage rule bases, NAT, VPN, IPS/IDS policies, URL filtering, and threat prevention capabilities.
  • Ensure secure segmentation, change control, documentation, and operational continuity.

4) Web Application & Edge Security

  • Implement and administer the university Web Application Firewall (WAF).
  • Support secure remote access and edge security initiatives as required.

5) Monitoring, Detection & Incident Response

  • Monitor networks and systems for security events, breaches, and anomalies; investigate and contain incidents.
  • Improve visibility and monitoring capabilities; produce regular reports on events, vulnerabilities, and trends.
  • Coordinate incident response activities and communications with relevant stakeholders when required.

6) Vulnerability & Risk Management

  • Conduct and coordinate vulnerability assessments and remediation tracking.
  • Perform risk and compliance self-assessments and recommend mitigations and best-practice controls.

7) Documentation & Operational Excellence

  • Maintain accurate documentation for security assets, configurations, and operational procedures.
  • Collaborate with systems administrators and IT teams to ensure stable, secure operations and successful project delivery.
  • Contribute to security tools and services planning inputs (CAPEX/OPEX) when required.

Required Qualifications

  • Bachelor’s degree in computer/communications engineering, Computer Science, or a related field.
  • 1–3 years of hands-on experience in network security and infrastructure security.
  • Strong routing/switching fundamentals; CCNP (R&S) or equivalent expertise is preferred.
  • Hands-on experience with Cisco ISE, Cisco Firepower, and Forcepoint firewall administration.
  • Experience administering a Web Application Firewall (WAF).
  • Solid understanding of TCP/IP and enterprise network architectures.

Preferred / Advantage

  • ITIL certification or ITIL-oriented operational experience.
  • Exposure to Cisco Wireless Controllers and Access Points.
  • Experience with SIEM/log analysis and security reporting.
  • Knowledge of segmentation and secure access designs (e.g., 802.1X and policy-based access).

Key Skills & Competencies

  • Strong troubleshooting, analytical thinking, and root-cause analysis.
  • Ability to work under pressure and manage incidents calmly and effectively.
  • Strong communication skills in English (written and spoken).
  • Team-oriented, proactive, and service-focused mindset.
Application Instructions:
  • Applications will be reviewed until the position is filled. 

Apply Now