We are looking for a Senior Network & Security Engineer with deep expertise in Cisco networking, Palo Alto security solutions, SD-WAN, and cloud-managed network services to design, deploy, and secure enterprise-scale IT and OT networks. This role is hands-on and highly technical, focused on building resilient, zero-trust networks, integrating advanced security policies, and ensuring seamless operations across critical business systems.

As part of the Network & Security Engineering team, you will drive the evolution of our secure enterprise environment, improving network performance, security posture, and operational efficiency.

Key Responsibilities:

• Design, deploy, and manage Palo Alto PA-440 firewalls in Active/Passive HA configurations.
• Configure and validate HA, core security subscriptions, and IoT Security for device discovery, profiling, and risk visibility.
• Implement security zoning for R&D, Lab/Test, IoT/OT, Shared Services, and Internet following least-privilege principles.
• Implement Cisco ISE Trust Sec for SGT-based micro-segmentation (Inline Tagging or SXP).
• Onboard and manage firewalls via Panorama and Palo Alto Strata Cloud Manager.
• Integrate firewall logs with Splunk SIEM for monitoring and alerting.
• Perform end-to-end testing including HA, security policies, Trust Sec enforcement, and logging.
• Provide as-built documentation, operational runbooks, and knowledge transfer to operations teams.
• Configure and manage dot1x/MAB authentication on switches and implement related policies in ISE.
• Deploy and configure Cisco Catalyst 9000 switches, routing protocols (OSPF/BGP), VLANs, LACP, QoS, and HA designs.
• Configure and optimize Cisco Wireless APs/WLC, including RF parameters, SSIDs, and Flex Connect.
• Plan and execute network implementations including analysis, pre-works, cutover, and validation.
• Troubleshoot complex networking and security issues across the stack.

Requirements:

• 7 years of experience in network and security engineering or related roles.
• Hands-on experience with Cisco DNAC, SD-Access, Cisco Wireless, WLC, Routing & Switching, and Catalyst switching.
• Strong expertise with Palo Alto Firewalls including deployment, management, and security policy design.
• Experience with SASE, ZTNA, IT/OT network integration, and zero-trust frameworks.
• Strong understanding of Strata Cloud Manager and Cisco ISE, including SGT and Trust Sec frameworks, dot1x, and MAB.
• Experience with Silver Peak SD-WAN deployments and management.
• Familiarity with network automation, monitoring, and logging solutions (Splunk, SIEM).
• Excellent troubleshooting, planning, and analytical skills.

Preferred Skills:

• Exposure to network security micro-segmentation and advanced firewall policy design.
• Hands-on experience with IoT/OT network security and segmentation strategies.
• Experience in creating operational runbooks and supporting enterprise network operations.
• Knowledge of modern network architectures and cloud-managed network platforms.

Benefits:

• Opportunity to work with cutting-edge network and security technologies at scale.
• Collaborative engineering culture focused on excellence, innovation, and continuous improvement.
• Competitive compensation and flexible working environment.