Senior Network Security Engineer

Shory is the soft revolution in the Insurtech market. Welcome to a new age where insurance actually empowers its customers. We use technology to serve our customers and create ease of mind and trustworthiness around insurance needs. With Shory, a new time has begun.

Role Purpose

The Network & Security Infrastructure Engineer is responsible for designing, implementing, and maintaining enterprise-wide network and security platforms across on-premises and cloud environments. This role ensures high availability, scalability, compliance, and resilience while proactively improving performance and mitigating risks.

Key Responsibilities

Network Architecture, Design & Operations

• Configure, maintain, and support enterprise network infrastructure (LAN, WAN, SD-WAN, VPN, and wireless).
• Design and implement scalable, secure, and resilient architectures, including network segmentation, high availability, and disaster recovery.
• Evaluate, recommend, and implement emerging network technologies to meet business needs.
• Develop and maintain network standards, policies, and technical documentation.
• Administer and support:
• Disaster recovery solutions (RTO/RPO).
• Server room hardware (switches, routers, racks, UPS, etc.).
• Cloud networking in AWS, Azure, and GCP (EC2, S3, load balancing, VPC, IAM, availability zones, and Marketplace components).
• Collaboration platforms including Google Workspace and Slack.
• Monitor and manage network performance, capacity, and availability.
• Troubleshoot and resolve complex network issues with minimal downtime.
• Perform upgrades, patching, and lifecycle management of networking devices.
• Implement proactive monitoring, alerting, and performance tuning for reliability.
• Provide Tier III support and Level 3 IT technical support for escalated incidents.

Security Architecture & Operations

• Plan, schedule, and implement firmware and security patches across infrastructure equipment.
• Administer and manage:
• Endpoint Protection (EPP), Endpoint Detection & Response (EDR).
• Anti-SPAM, IPS/IDS, firewalls (Palo Alto, Fortinet, Check Point), WAF, and DDoS protection.
• Data encryption, DLP, MFA, MDM, SIEM, and cryptographic systems.
• Develop and enforce enterprise security frameworks, including Zero Trust, SASE, and identity-driven access controls.
• Design and implement security controls for hybrid and multi-cloud environments (AWS, Azure, GCP).
• Perform periodic penetration testing, vulnerability assessments, and coordinate remediation.
• Manage day-to-day security operations and respond to incidents with root cause analysis and corrective actions.
• Maintain and improve incident response and disaster recovery playbooks.
• Support compliance initiatives (ISO 27001, NIST, GDPR, PCI DSS) and prepare for internal/external security audits.

Governance & Compliance

• Ensure full adherence to IT security policies, regulatory requirements, and industry best practices.
• Conduct risk assessments and compliance audits.
• Maintain thorough documentation of network and security configurations, policies, and procedures.

Collaboration & Leadership

• Partner with IT, cloud, and application teams to ensure secure integration of new technologies.
• Mentor junior engineers, providing technical guidance and knowledge transfer.
• Lead cross-functional projects to enhance infrastructure resilience.
• Stay current on emerging threats, tools, and trends; proactively recommend improvements.

Stakeholder & Vendor Management

• Manage relationships with vendors, suppliers, and external service providers.
• Negotiate and oversee contracts, service level agreements (SLAs), and performance benchmarks.
• Ensure customer service requirements are met and satisfaction levels are measured.
• Collaborate with teams and vendors to research and deploy innovative solutions.

Qualifications

• 7+ years of experience in enterprise networking and security engineering.

Advanced expertise with:

• Cisco, Juniper, or equivalent enterprise network solutions.
• Firewalls (Palo Alto, Fortinet, Check Point, etc.).
• Network monitoring and SIEM tools (SolarWinds, Splunk, etc.).
• Security frameworks and protocols (TLS, IPsec, SASE, Zero Trust).
• Strong understanding of cloud networking and security (AWS, Azure, GCP).
• Proven experience in incident response and disaster recovery planning.
• Professional certifications preferred: CCNP/CCIE, CISSP, CISM, CEH, or equivalent.