L2 Network Security Engineer

Role and Responsibilities:

• Implement, configure, operate and troubleshoot various Network Security solutions including NGFW, Dedicated IPS, SD-WAN, MDM, Secure Mail Gateways, Endpoint Management, Application Delivery Controllers, SWG (Web Proxy Solutions) and Global Traffic Managers

•Deploy and manage Web Application Firewall (WAF) solutions to protect web applications from security threats and vulnerabilities.

•Implement and support DNS Security solutions to safeguard DNS infrastructure and prevent malicious activity. • Analyze and troubleshoot technical issues for clients, customers, and internal teams. • Demonstrate strong understanding of core networking concepts including TCP/IP, SSL/TLS, VLANs, routing, switching, NAT, DNS, and DHCP.

• Demonstrate clear in depth understanding in security technologies including SSL/TLS encryption, IPsec, HTTPS, SSH, PKI, firewall policies, IDS/IPS, WAF, endpoint security, anti-malware, threat detection, and network defense mechanisms. • Understand customer technical requirements, business objectives, and security strategy. • Work proactively and collaboratively with customers to assess needs and recommend secure solutions. • Develop High-Level Design (HLD) and Low-Level Design (LLD) documentation. • Provide L2 support for operational network security issues and coordinate with L3 Network security engineers for advanced and escalated issues.

• Ensure daily , weekly and monthly operational tasks are scheduled and executed as per defined processes. • Analyze, diagnose, and resolve incidents and service requests within defined SLA timelines. • Act as a primary point of contact for monitoring, owning, and resolving security-related incidents. • Log, categorize, prioritize, and assign security incidents and service requests appropriately. • Translate customer requirements into practical, secure technical solutions. • Configure and manage IP routing protocols and automatic failover mechanisms between connections. • Provide onsite and remote support as required. • Implement and troubleshoot various VPN technologies (IPSec, SSL VPN, Site-to-Site, Remote Access). • Collaborate with team members and share hands-on expertise across network security platforms. • Demonstrate understanding of MSP processes including SLAs, ticket handling, escalation, and engineering-to-operations handoff. • Perform migration of network security systems while maintaining service continuity. • Maintain accurate and complete documentation including topology diagrams and configuration records. • Analyze logs and security data to provide detailed reports and root cause analysis (RCA). • Manage multiple customers and projects simultaneously in a dynamic environment. • Participate in rotational on-call support as per company policy.

• 4+ years of experience in Network Security. • Strong analytical and troubleshooting mindset. • Clear communication and strong documentation skills. • Team-oriented, proactive, and detail-focused. • Ability to work under pressure in 24×7 environments. • Open to travel abroad when required. • Experience working in an MSP environment is preferred. • Bachelor’s degree in IT, Computer Science, or Engineering. • Professional certification in Network Security domain (CCNP Security, PCNSE/PNSE, NSE, JNCIP-Sec, F5 Certified, or equivalent). • Experience working in large enterprise and dynamic environments. • Self-motivated, adaptable, and approachable with excellent written and verbal English communication skills.