Network Security Engineer (L2) - Dubai

Job Summary

Network Security Engineer (L2)

Security Operations

• Monitor and manage network security infrastructure to ensure optimal performance and security.
• Investigate, analyze, and resolve Level 2 (L2) network security incidents.
• Review security logs and identify suspicious or malicious network activities.
• Escalate critical security incidents to Level 3 (L3) support or engineering teams when required.
• Participate in incident response and remediation activities.

Firewall Management

• Configure, implement, and maintain firewall policies across enterprise environments.
• Conduct firewall rule reviews and optimize configurations to enhance security and performance.
• Implement and manage NAT, Access Control Lists (ACLs), and security zones.
• Perform periodic firewall health checks and compliance reviews.
• Troubleshoot firewall-related connectivity and security issues.

VPN Administration

• Configure, maintain, and troubleshoot Site-to-Site and Remote Access VPNs.
• Support IPsec and SSL VPN technologies.
• Manage VPN user access, authentication, and connectivity issues.
• Monitor VPN performance and security compliance.

IDS/IPS Management

• Monitor and investigate IDS/IPS alerts and security events.
• Tune IDS/IPS signatures and policies to minimize false positives.
• Analyze intrusion attempts and recommend appropriate mitigation measures.
• Coordinate with security teams to strengthen threat detection capabilities.

Web and Email Security

• Manage secure web gateways, URL filtering, and web security policies.
• Support and administer email security solutions.
• Investigate phishing attempts, malware incidents, and email-borne threats.
• Implement security controls to enhance web and email protection.

Network Security Monitoring

• Analyze network traffic patterns and investigate anomalies.
• Monitor and respond to DDoS attacks and emerging network threats.
• Support threat intelligence integration and security monitoring initiatives.
• Assist in identifying indicators of compromise (IOCs) within network environments.

Vulnerability Management

• Assist in conducting vulnerability assessments and security scans.
• Coordinate remediation activities with infrastructure and application teams.
• Validate implemented security fixes, patches, and remediation actions.
• Track and report vulnerability remediation status.

Change Management

• Implement approved network security changes following organizational procedures.
• Conduct impact assessments and develop rollback plans before implementation.
• Ensure proper documentation and adherence to change management processes.
• Participate in maintenance windows and planned security upgrades.

Documentation & Reporting

• Create, maintain, and update Standard Operating Procedures (SOPs) and operational runbooks.
• Prepare incident reports, Root Cause Analysis (RCA) documents, and post-incident reviews.
• Maintain accurate network and security architecture diagrams.
• Document configuration changes, troubleshooting activities, and operational procedures.

Required Skills & Qualifications

• Bachelor's degree in Computer Science, Information Security,Information Technology, or a related field.
• 3–6 years of experience in Network Security Operations or Security Engineering.
• Hands-on experience with enterprise firewall platforms such as Palo Alto, Fortinet, Check Point, Cisco Firepower, or similar.
• Strong knowledge of TCP/IP, routing, switching, NAT, VPNs, ACLs, and network protocols.
• Experience with IDS/IPS, SIEM, web security, and email security solutions.
• Familiarity with vulnerability management and security assessment tools.
• Strong troubleshooting and analytical skills.
• Excellent communication and documentation abilities.

Preferred Certifications

• PCNSE (Palo Alto Networks Certified Network Security Engineer)

• NSE 4/5/7 (Fortinet)

• CCNP Security
• CCNA Security
• CEH
• CompTIA Security+
• CISSP (Preferred)

Skills