Network Security Engineer
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Manage complex network security incidents, optimize firewall configurations, lead incident response, and mentor engineers while ensuring compliance with cybersecurity frameworks.
Key Skills for This Role
Full Job Posting
1. Advanced Support and Escalation Management
- Act as the final escalation point for complex incidents affecting firewalls, VPN, proxy, IPS, SSL inspection, DDoS, and network ATP.
- Perform deep troubleshooting, packet analysis, and protocol level investigations for critical issues.
- Own root cause analysis for recurring or high impact incidents and define corrective and preventive actions.
2. Configuration, Optimization and Maintenance
- Design, implement, and tune policies on Palo Alto, Cisco ASA or FTD, and Fortinet firewalls. Including segmentation, zero trust style rules, NAT, and security policies.
- Manage VPN services for remote access and site to site connectivity. Including authentication, MFA integration, and high availability.
- Administer Forcepoint Web proxy and SSL decryption policies. including safe bypass lists, categories, and exception handling.
- Operate Gigamon SSL inspection, Arbor DDoS, and network IPS or ATP solutions. ensuring signatures, profiles, and protections are updated and tuned.
- Own backup, restore, and lifecycle tasks for all network security devices. including upgrades, certificate rotations, and HA testing.
3. Architecture and Design
- Contribute to low level designs, network security architectures, and change plans for new services and projects.
- Recommend improvements in zoning, traffic flows, and control placement to align with SAMA CSF and NCA ECC requirements for network and perimeter security.
4. Incident Response and Reporting
- Lead network security incident response during major events. coordinate with SOC, infrastructure, and application owners.
- Produce detailed RCAs, including packet captures, logs, timeline, business impact. and hardening recommendations.
- Provide dashboards and reports on policy changes, rule usage, blocked traffic trends, and attack statistics.
5. Technical Leadership and Mentoring
- Mentor L2 Network Security Engineers on troubleshooting methods, tooling usage, and SOPs.
- Review and approve L2 changes for complex or high-risk activities.
- Contribute to our own runbooks, hardening guides, and standard templates for network security changes.
6. Governance, Compliance and ITIL
- Ensure all work is executed under formal Change and Incident Management with CAB ready plans, test cases, and rollback procedures.
- Map device configurations and monitoring to SAMA Cybersecurity Framework and NCA ECC technical controls for network security, perimeter defense, and secure remote access.
- Maintain audit ready evidence. approvals, logs, configuration exports, and RCAs.
7. Collaboration and Stakeholder Engagement
- Work closely with
- F5 Application Security tower for traffic flows, VIPs, and DDoS or WAF interactions
- L3 Email Security Engineer for handoffs where issues are clearly network or clearly mail gateway
- SOC and SIEM teams for rule tuning and log quality
- Infrastructure and application teams to ensure secure and stable deployments
Tooling Scope
- Must have strong hands-on expertise in most of
- Palo Alto NGFW and GlobalProtect
- Cisco ASA or FTD and Cisco IPS
- Fortinet FortiGate
- Forcepoint Web Security and SSL interception
- Gigamon SSL inspection
- Arbor DDoS
- Trellix or FireEye NX or equivalent network ATP
- Good to have
- Experience with automation or scripting around these tools, plus strong packet analysis using tools such as Wireshark or vendor built in captures.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at IT-Security C&T
SOC Analyst L1
Saudi Arabia, KSA
The Security Analyst will participate and be part of information security monitoring and incident handling team in order to monitor and manage all information security incidents...
SOC Analyst L1
Eastern Province, KSA
The Security Analyst will participate and be part of information security monitoring and incident handling team in order to monitor and manage all information security incidents...
SOC Analyst L1
Saudi Arabia, KSA
Monitor security incidents, perform forensic analysis, and provide security recommendations; requires IT degree, certifications, and knowledge of security operations.
IAM/PAM PKI Engineer
Saudi Arabia, KSA
Operate and improve enterprise Identity security capabilities with focus on Cerebra mPass (MFA) and CyberArk (PAM). You will stabilize day to day operations, drive onboarding an...
Sr. Splunk Engineer
Saudi Arabia, KSA
Design and implement Splunk solutions, develop custom alerts and dashboards, and support threat detection with strong Splunk and scripting skills.
L3 Data Classification Engineer
Saudi Arabia, KSA
Responsible for data classification architecture, integration with Forcepoint DLP, and compliance audits; requires expertise in Fortra Titus and data protection.
Sr. Splunk Engineer
Saudi Arabia, KSA
The role involves designing, implementing, and optimizing Splunk solutions, focusing on security operations, log onboarding, and automation using scripting languages.
IAM/PAM PKI Engineer
Riyadh, KSA
Operate and enhance identity security using MFA and PAM tools, ensuring compliance, automation, and strong troubleshooting skills are essential.
SOC Analyst L1
Saudi Arabia, KSA
SOC Analyst L1
Eastern Province, KSA
SOC Analyst L1
Saudi Arabia, KSA
IAM/PAM PKI Engineer
Saudi Arabia, KSA
Sr. Splunk Engineer
Saudi Arabia, KSA
L3 Data Classification Engineer
Saudi Arabia, KSA
Sr. Splunk Engineer
Saudi Arabia, KSA
IAM/PAM PKI Engineer
Riyadh, KSA