Security Infrastructure Engineer (Fortinet & Zero Trust)

Overview:We are seeking an experienced Security Infrastructure Engineer to design, implement, and operate the security stack of a large-scale private cloud platform serving over 200 subsidiaries. The role focuses on network and application security, Zero Trust access, and secure multi-tenant environments. This role is critical in ensuring the security posture and protection of a national-scale private cloud platform.Key Responsibilities:Design and operate Fortinet security platforms (NGFW, WAF, ADC, NAC, FortiAuthenticator, Sandbox).Implement and manage tenant-level security segmentation and firewall policies.Integrate Zero Trust access solutions (e.g., AppGate or equivalent).Manage north-south and east-west traffic inspection and security policies.Support secure application publishing and WAF protection.Collaborate with SOC teams for incident response and threat mitigation.Ensure compliance with security policies and regulatory requirements.Support DR and high availability for security infrastructure. Experience Requirements:6–10 years of experience in network and infrastructure security.Hands-on experience with enterprise security platforms and large-scale environments is required.Technical Expertise:Fortinet ecosystem (FortiGate, FortiWeb, FortiADC, FortiNAC, FortiAuthenticator, FortiSandbox).Firewall policy design and network segmentation.Zero Trust architecture and secure remote access.DDoS protection and traffic filtering.Application security and WAF management.Integration with SIEM/SOC platforms.Strong understanding of TCP/IP, routing, and network security principles.Preferred Certifications:Fortinet NSE4 / NSE7 / NSE8.CISSP or equivalent security certification.CCNP Security or equivalent.This role is critical in ensuring the security posture and protection of a national-scale private cloud platform.