Required Skills and Qualifications:

· Bachelor's degree in Computer Engineering, Cybersecurity, Information Systems, or related field.

· 10+ years of experience in network and infrastructure security within large-scale enterprise IT or OT environments.

Proven expertise in:

o Routing and switching (Cisco, Juniper, or equivalent)

o Enterprise firewalls (Palo Alto, Fortinet, Cisco ASA)

o Load balancers (F5, Azure Application Gateway, NGINX Plus)

o Web Application Firewalls (WAF) and reverse proxy systems

o VPN, IPsec, SSL/TLS, and Zero Trust network architectures

o Cloud networking and security (Azure, GCP)

o Network automation (Terraform, Ansible, ARM templates)

· Experience with SIEM, SOAR, and threat intelligence platforms (e.g., Azure Sentinel, Chronicle, Splunk).

· Excellent problem-solving skills and ability to lead incident response efforts under pressure.

Technical Proficiencies

· Enterprise Firewalls & Security Appliances: Palo Alto, Fortinet, Cisco ASA

· Load Balancers & WAF: F5, Azure Application Gateway, Cloudflare, GCP equivalents

· Routing & Switching: Cisco, Juniper, Layer 3 segmentation, BGP/OSPF

· Cloud Security Tools: Azure Security Center, Microsoft Defender for Cloud, GCP Security Command Center

· IAM & Access Control: Azure AD Conditional Access, GCP IAM, MFA, SSO

· Automation & IaC: Terraform, Ansible, ARM templates

Preferred Qualifications

· Professional certifications such as CISSP, CCSP, Cybersecurity Architect Expert (SC-100) or AZ-500 (Azure Security Engineer) or Google Cloud Security Engineer

· Experience in oil & gas, energy, utilities, or critical infrastructure sectors

· Familiarity with OT (Operational Technology) environments and ICS/SCADA systems

· Exposure to multi-cloud security strategy and cloud-native DevSecOps practices