Network Engineer

Reporting to the Global Security department, this role contributes to the company's internal digital transformation, evolving the adoption of Zero Trust Strategy. The ideal candidate will have experience driving and implementing at scale across various products and platforms. Responsibilities: • Configure and manage enterprise-wide network DLP (Data Loss Protection) solutions to prevent unauthorized data exfiltration. • Fine-tune network DLP policies and rules based on data classification, sensitivity, and regulatory requirements. • Integrate Network DLP solutions with SIEM (Security Information and Event Management) systems for centralized security event monitoring and incident response. • Define and enforce network DLP policies and procedures in alignment with industry best practices and regulatory requirements. • Conduct regular network DLP audits and assessments to ensure compliance with data protection standards. • Configuration and deployment of ZTNA (Zero Trust Network Access) platforms in on-premises and cloud environments. • Development and implementation of network security strategies, aligning them with ZTNA principles and best practices. • Define and enforce access control policies based on user identity, device posture, and context. • Integration of ZTNA with existing security technologies like ICAM (Identity, Credentialing and Access Management), MFA (Multi Factor Authentication), and endpoint security solutions. • Perform regular network vulnerability assessments and penetration testing to identify weaknesses in ZTNA controls. • Experience configuring, deploying, and managing micro-segmentation solutions • Understanding of micro-segmentation integration with other security tools like SIEM and SOAR (Security Orchestration, Automation & Response). • Ensure compliance with industry standards and regulations. • Investigate complex security cases and propose response procedures. Work with senior Security Management Specialists to resolve/close security cases. • Support operational teams maintaining security infrastructure (intrusion detection, re?mote access security, email & web security, anti-malware, WAF)

Qualifications: • Bachelor's degree in Computer Science, Information Security, or a related field. • 5+ years of experience in network security with a strong focus on Network Security Engineering. • Deep understanding of TCP/IP, network protocols, routing, switching, firewalls, and network security technologies. • Extensive experience with DLP solutions • Expert knowledge of SASE, CASB, ZTNA, SWG technologies. • Extensive experience in WAF, OWASP Top10 • Familiarity with ICAM, MFA, endpoint security, and SIEM solutions. • Experience conducting security assessments, risk analyses, and developing security concepts. • Experience working with distributed teams. • Excellent communication skills, written and verbal. • Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls. • Relevant certifications like CISSP, CCNP Security, or GIAC certifications are highly desirable. • Excellent communication skills, written and verbally. • Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls.

Skills: Cloud Security Yes Yes / No Cloud Technology Yes Yes / No Data Leakage Prevention Senior (6-9) (6,00 years) Micro-Segmentation Senior (6-9) (6,00 years) Web application Firewall Senior (6-9) (6,00 years) Zero Trust Senior (6-9) (6,00 years) Excellent communication skills Yes Yes / No Team Work Yes Yes / No Understanding of Security Metrics Yes Yes / No Computer coding (Python) Senior (6-9) (6,00 years) Network Monitoring Yes Yes / No Network Security Tools Senior (6-9) (6,00 years) Security Architecture Design Senior (6-9) (6,00 years)