Network & Security Engineer (Level 3)
Location: Pune / Mohali
Department: InfoSec
Type: Full-time
Role Summary
We are looking for a senior-level Network and Security Engineer (L3) with strong hands-on experience in enterprise network and security operation and architecture. The role is responsible for designing, implementing, operating, and continuously improving secure network infrastructure and security controls across the organization.
Key Responsibilities
Information Security, Cyber Security & GRC Responsibilities
-
Support and operate the organization’s Information Security Management System (ISMS) aligned to ISO/IEC 27001, SOC2, GDPR, HIPPA
-
Participate in risk assessments, threat modelling, and maintenance of the security risk profiles,
- Translate security policies, standards, and audit findings into technical controls across network, firewall, endpoint, and server environments.
-
Implement and monitor cyber security controls including:
-
Network segmentation and access control
-
Secure remote access and VPN policies
-
Endpoint protection and EDR controls
-
Log retention and monitoring standards
-
Vulnerability scanning and patching requirements
-
Support third‑party / vendor security assessments from a technical perspective (network access, firewall rules, data flow validation).
-
Maintain documentation for network and security controls, SOPs, and architecture diagrams as part of compliance requirements.
-
Work with stakeholders to continuously improve cyber security posture and reduce operational risk.
Incident Response & Operations
-
Act as L3 escalation point for network and security incident response governance including severity classification, evidence collection, and post‑incident reviews, RCA and Reporting
-
Lead investigation of network breaches, malware infections, and firewall-related incidents.
Endpoint Security
- Manage Antivirus / Intercept X policies and deployments via Sophos Central.
-
Monitor endpoint health, threats, malware investigations and incidents and remediation.
-
Configure and maintain centralized log management using FortiAnalyzer or other tools
-
Integrate logs from firewalls, switches, servers, and endpoints into monitoring tools / SIEM (if applicable).
-
Develop alerts and dashboards for security events and operational issues.
-
Perform log analysis and threat hunting.
Security Policy Implementation
-
Implement and enforce network and security policies
- Review firewall and network rules periodically and optimize for least privilege.
Firewall & Perimeter Security (Fortinet)
-
Configure and manage FortiGate and other firewalls including:
-
Firewall policies, NAT (SNAT/DNAT, VIPs)
-
VPN (site-to-site and remote access), IPS, SSL inspection, and HA
-
UTM / NGFW profiles (IPS, AV, web filtering, application control)
-
Implement high availability (HA) and perform firmware upgrades.
Network Engineering & Administration
-
Design, implement, configure and maintain enterprise network architecture using L3 switches and VLAN-based segmentation.
-
Troubleshoot complex network issues across LAN, WAN, VPN, and data center environments.
-
Support and secure Linux servers (Ubuntu / RHEL / CentOS or similar).
Experience & Qualifications
-
6–10 years of experience in network and security engineering
-
3+ years in a senior / L3 role
-
Proven hands-on SOC/NOC experience in enterprise environments
Preferred Certifications (nice to have):
-
CEH / Security+ , CISSP, CCNA / CCNP
