CCDS is looking for a seasoned Senior Network Security Engineer with comprehensive expertise across Switching, Routing, Wireless, Firewalls, NAC, WAF, Email Security, and SIEM technologies. In this impactful role, you will architect and operate secure, scalable network environments that incorporate advanced security controls and monitoring. You will be responsible for designing robust network infrastructure, implementing security policies, optimizing security devices, and overseeing threat detection and incident response. This role demands deep technical knowledge, strategic thinking, and hands-on experience working with diverse security solutions to protect enterprise assets.Role SummaryLead the design, deployment, and maintenance of enterprise networks and security systems focusing on switching, routing, wireless, firewalls, NAC, WAF, email security gateways, and SIEM. Manage configurations, monitor security telemetry, and investigate network security incidents to strengthen our defense posture.Key ResponsibilitiesNetwork Infrastructure & Security DesignDesign Layer 2/3 networks with switching, routing protocols (OSPF, BGP), and wireless technologies ensuring high availability and segmentationDevelop architecture and configuration documents aligning with security best practices for firewalls, NAC, and WAFImplement secure guest and BYOD wireless access using 802.1X and NAC solutionsSecurity Systems Implementation & ManagementDeploy and manage firewall policies, VPNs, and next-generation security appliancesConfigure and maintain NAC for device access control and posture assessmentOperate Web Application Firewalls and Email Security gateways to protect web and email infrastructureMonitoring, Incident Detection & ResponseIntegrate and tune SIEM platforms for log collection, threat detection, and alertingConduct analysis of security events originating from network devices and security appliancesCoordinate incident response activities and recommend remediation actionsRequirementsRequired skills & experienceMinimum 5 years enterprise network security experience with strong capabilities in:Switching & Routing: VLANs, STP, OSPF/BGP, QoS, HA protocols (VRRP, HSRP)Wireless: Controllers/APs management, WPA2/3 security standards, enterprise 802.1X authenticationFirewalls: Policy creation, NAT, VPN (SSL/IPsec), logging, HANAC: 802.1X/MAB authentication, device posture assessment, guest/BYOD onboardingWeb Application Firewall (WAF) deployment and managementEmail Security: Deployment and operation of secure email gateways and anti-phishing controlsSIEM platforms: Log integration, detection tuning, alerting and dashboard creationProven troubleshooting skills using packet captures, network flow analysis, and strong documentation and change management practices are essential.Preferred QualificationsExperience with firewall management platforms such as Panorama or FortiManagerKnowledge of Zero Trust Network Access (ZTNA) solutionsFamiliarity with sandboxing/file detonation technologiesExperience with DNS Security and Load BalancingHands-on with cloud security services and native controls (AWS, Azure, GCP)Certifications: CCNP/CCIE Security or Enterprise, PCNSE, Fortinet NSE, Check Point CCSA/CCSE, F5 CTS, Zscaler, GIACBenefitsMedical InsurancePaid Time OffWorking Remotely Training & DevelopmentPerformance Bonus