Network Security Engineer(7+ years) - Qatar (Local Candidates Only)

Job Summary

The Network Security Engineer is responsible for designing, implementing, operating, and supporting enterprise network security infrastructure in multi-client and multi-datacenter environments. The role focuses on firewall security, VPNs, load balancing, DDoS protection, proxy solutions, and cloud security platforms while ensuring high availability, compliance, and SLA adherence. The position involves 24x7 operational support, incident/change management, security hardening, and close collaboration with SOC, server, and infrastructure teams.

Key Responsibilities

Network & Security Operations

• Provide 24x7 operational support for enterprise network and security infrastructure in multi-client, multi-datacenter environments.
• 
  
• Manage and support firewalls, proxies, load balancers, and DDoS protection systems to ensure secure and reliable service delivery.
• 
  
• Execute day-to-day activities related to incidents, service requests, and change management in alignment with defined SLAs.
• 
  
• Perform proactive monitoring of network devices and security appliances to minimize downtime.

Firewall & VPN Management

• Configure, manage, and troubleshoot next-generation firewalls including:
• 
  
• FortiGate
• 
  
• Check Point (R80+)
• 
  
• Cisco ASA / Cisco FTD
• 
  
• Palo Alto Firewalls
• Implement and maintain security policies, NAT/PAT, ACLs, and routing configurations.
• 
  
• Configure and support VPN solutions:
• 
  
• Site-to-Site IPsec VPN
• 
  
• Remote Access VPN (IPsec & SSL)
• 
  
• SSL VPN portals with role-based access and 2FA
• Perform firewall hardening and firmware upgrades as per security and SOC recommendations.

Load Balancing & Traffic Management

• Configure, deploy, and maintain F5 BIG-IP LTM solutions.
• 
  
• Manage traffic distribution, SSL offloading, health monitoring, and backend server enable/disable activities.
• 
  
• Monitor CPU, memory utilization, active connections, and overall load balancer health.
• 
  
• Support Citrix NetScaler and Radware Alteon at operational levels.

Security Monitoring & Incident Response

• Investigate unauthorized or suspicious traffic using logs from:
• 
  
• FortiAnalyzer
• 
  
• Check Point Logs
• 
  
• Palo Alto Panorama
• 
  
• Bluecoat Reporter
• Coordinate with SOC teams to identify, analyze, and mitigate security incidents.
• 
  
• Block malicious IPs and remediate threats as per security guidelines.
• 
  
• Perform root cause analysis (RCA) and prepare incident reports, audit reports, and SOPs.

Proxy, Cloud & DDoS Security

• Manage and support Bluecoat Proxy solutions.
• 
  
• Administer Cloudflare CDN & security services, including:
• 
  
• DNS management
• 
  
• WAF
• 
  
• Caching and page rules
• 
  
• IP whitelisting/blacklisting
• 
  
• SSL certificate management
• Monitor and analyze DDoS attacks using Arbor Pravail APS systems.

Vulnerability & Compliance

• Perform vulnerability assessments and scanning using tools such as Acunetix and Patrowl Manager.
• 
  
• Analyze security logs via Wazuh SIEM and syslog servers.
• 
  
• Support compliance and security audit activities.

Collaboration & Documentation

• Coordinate with server, SOC, and vendor TAC teams (Fortinet, Cisco, Palo Alto, Cloudflare).
• 
  
• Maintain accurate documentation, IPAM records, MIS reports, and operational checklists.
• 
  
• Provide guidance and technical support to junior engineers and new joiners.

Tools & Technologies

• Firewalls: FortiGate, Check Point, Cisco ASA/FTD, Palo Alto
• 
  
• Load Balancers: F5 BIG-IP LTM, Citrix NetScaler, Radware Alteon
• 
  
• Proxy & CDN: Bluecoat Proxy, Cloudflare
• 
  
• DDoS Protection: Arbor Pravail APS
• 
  
• Monitoring & Tools: ServiceNow, IPAM, Nagios, Wazuh, HPSM, WhatsUp Gold
• 
  
• Networking: Cisco Switches, SecureCRT, ASDM, Cisco AnyConnect

Required Qualifications

• Bachelor’s degree in Engineering (Electronics, Telecom, IT, or related field).
• 
  
• 7+ years of hands-on experience in network and security operations.
• 
  
• Strong expertise in firewall administration, VPNs, load balancing, and security monitoring.
• 
  
• Experience working in 24x7 enterprise or managed services environments.

Certifications (Preferred)

• Fortinet NSE 1 / 2 / 3
• 
  
• PCNSE / PCNSA
• 
  
• CCNA Security (or equivalent training)

Soft Skills

• Strong troubleshooting and analytical skills
• 
  
• Ability to work under pressure in critical environments
• 
  
• Team-oriented with mentoring capabilities
• 
  
• Excellent communication and documentation skills