Network Security Engineer
Working on a project for an Asian bank. Our development team is participating in a new phase of the fintech market development.
Important: willingness for possible business trips or relocation.
Responsibilities:
- Administering firewalls (NGFW and classic FW), as well as related services: VPN, IPS/IDS, WAF.
- Configuring, optimizing, and maintaining security policies, filtering rules, and data center network segmentation.
- Ensuring the protection of the internet perimeter and critical infrastructure.
- Integrating Firewall with SIEM and monitoring systems.
- Analyzing network incidents, identifying vulnerabilities and bottlenecks.
- Development and operation of Cisco ISE (NAC, AAA, 802.1X, posture, profiling)
- Integrating Cisco ISE with NGFW, AnyConnect, and network infrastructure
- Interacting with infrastructure and product teams when launching new services.
Requirements:
- At least 3 years of experience in firewall administration.
- Good understanding of network protocols and architectures: TCP/IP, NAT, VPN, VLAN, routing.
- Practical experience with NGFW (Cisco ASA / Firepower / WAF and equivalents).
- Skills in analyzing network traffic and logs (tcpdump, Wireshark).
- Ability to document architecture, policies, and processes.
Will be a plus:
- Experience in automation and working with APIs (Ansible, Terraform, Python).
- Security certifications (CCNP Security, CCSE, etc.).
- Implementation of Zero Trust, microsegmentation, TrustSec.
- Experience with hybrid infrastructures (on-prem + cloud).
