Network and Network Security Engineer at Ha-Shem Limited

Ha-Shem Limited was founded in 2004, we set out to redefine the meaning of IT support, and consulting, and to create a better IT experience from small and mid-sized to enterprise businesses.

Job Overview:

• Network Infrastructure Design and Implementation
• Network Security Design and Implementation
• Network Monitoring, Troubleshooting and Optimization
• Collaboration, Documentation and Reporting
• OEM/Product/Solution workloads
• Stay Current with Industry Trends
• Conduct Training and Workshops on the Technologies you work with.

Key responsibilities of the Network & Network Security Engineer include:

Network Infrastructure Design and Implementation:

• Design, deploy, and maintain the organization and its customers’ network infrastructure, including networking protocols, architecture, and LAN, WAN technologies (TCP/IP, VLANs, VRFs, BGP, OSPF, MPLS, etc.) and Wireless networks to ensure high availability, scalability, and performance.
• Design on-premises/cloud data center architectures and technologies
• Evaluate and recommend network hardware, software, and protocols to support business requirements.
• Configure and optimize network devices, such as routers, switches, firewalls, load balancers, and VPN concentrators, based on industry best practices and ensure adherence to security policies.
• Configure Network devices in Virtualization environments (CML, VMware, VirtualBox, PNET, Hyper-V, etc.)

Network Security Infrastructure Design and Implementation:

• Configure and manage network security appliances, such as Firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and identity management engines (ISE).
• Configure Zero Trust Network Architecture (ZTNA), VPN technologies (IPsec, SSL/TLS, etc.) and Remote Access solutions.
• Configure Integration of Network Security solutions with IDP (Identity Provider) Authentication.
• Develop and implement network security policies, procedures, and standards to safeguard the organization and its customers’ network infrastructure from unauthorized access, intrusions, and other security threats.
• Conduct periodic security audits, vulnerability assessments, and penetration testing to identify potential vulnerabilities and recommend appropriate remediation measures.
• Monitor network traffic for suspicious activities and promptly respond to security incidents, intrusions, and anomalies.

Network Monitoring, Troubleshooting and Optimization:

• Deploy and manage network monitoring tools to proactively monitor network performance, analyze network traffic, and identify areas for improvement.
• Identify network performance bottlenecks, analyze network traffic patterns, and implement necessary optimizations and capacity planning.
• Troubleshoot network issues, perform root cause analysis, and implement solutions to minimize downtime and enhance network reliability.
• Optimize network performance by fine-tuning configurations, implementing Quality of Service (QoS) policies, and utilizing network monitoring tools.
• Ability to work during weekends and evenings, and travel may be required.

.Collaboration, Documentation and Reporting:

• Collaborate with cross-functional teams to gather requirements, generate the bill of materials, provide technical guidance, and support project initiatives.
• Maintain accurate and up-to-date network diagrams, configuration files, procedures, documentation and troubleshooting steps for knowledge sharing and future reference.
• Prepare regular reports on network and security status, incidents, and trends for management and stakeholders.
• Assist the sales and marketing team in speaking to the customers via email and phone for initial requirement capture.
• Liaise regularly with project management teams, third line and service desk engineers.

Stay Current with Industry Trends, Training and Workshops:

• Continuously research and evaluate emerging network and security technologies, industry standards, and best practices.
• Stay current with security threats and vulnerabilities and proactively implement necessary countermeasures.
• Mentor and train junior network and security engineers, sharing expertise and best practices.
• Train customers on solutions deployed and deliver user onboarding training and workshops.
• Keep up to date with the latest Certification path to prove skills & expertise in service delivery.

Skills for Success:

Required Experience & Expertise

• 2 – 3+ years in Network Infrastructure and Security Technologies
• Deep hands?on experience with Networking, and Security Technologies and Solutions from different OEMs.
• Experience with hybrid environments.
• Familiarity with Networking and Security products and solutions.
• Knowledge of internet security and data privacy principles relating to networking and security technologies.
• In-depth knowledge of Cisco solutions:
• Routers
• Switches
• Wireless Access Points
• Security: Cisco Firepower, Cisco ASA, Cisco ISE, Duo Security, etc.
• Good understanding of Sophos, Palo Alto, & Fortinet Solutions:
• Firewalls,
• Central Endpoint & Server Protection, XDR, Device Encryption
• Wireless,
• Switches
• Azure Networking Experience
• Virtual Networks and Security Groups
• VPN and Express Route
• Azure DNS and Traffic Manager
• Load Balancing and Availability Sets
• In-depth understanding of network monitoring and management tools, like:
• SolarWinds Products
• Cisco ThousandEyes, Cisco DNA Center, Cisco Prime
• WhatsUp Gold from Progress Software
• Wireshark, etc.
• Excellent analytical troubleshooting skills, ability to explain technical problems in everyday English, and willingness to learn new technologies.
• Teamwork skills and the ability to feel comfortable working with different teams, clients, and groups of staff across an organization.

Core Certifications

• Automation solutions’ integration for Network & Network Security products deployment will be an added advantage.
• Relevant Networking & Security certifications (e.g., CompTIA N+, CompTIA Security+, CCNA, CCNP, CCIE, CISSP, SCP, SCA, SCE, etc. or equivalent). However, you must obtain compulsory technology certifications to fulfil specific OEM partnership competency requirements, where applicable when employed.

Method of Application