Description
VACANCY / : SENIOR NETWORK & SECURITY ENGINEER
The principal function of a Senior Network & Security Engineer is to oversee the architecture, design, implementation and security of Telecom Fiji’s IT networks, while proactively identifying and mitigating cybersecurity threats. Their contribution ensures the seamless and secure operation of digital infrastructure, directly supporting organizational productivity and safeguarding sensitive information, pivotal to upholding the company's reputation and stakeholder trust.
Key Accountabilities:
• Network Design, Implementation and Maintenance: Architect, implement, and oversee the organization's complex software-defined IT network infrastructure, ensuring optimal performance and availability.
• Cybersecurity Oversight: Identify, evaluate, and mitigate vulnerabilities, ensuring that the organization's digital assets are secure from threats.
• Incident Response: Lead the response to any cybersecurity breaches or incidents, ensuring minimal impact and swiftly restoring operations.
• Security Policy Development: Create, update, and enforce cybersecurity policies and procedures in alignment with industry standards and organizational requirements.
• Security Tools Management: Evaluate, deploy, and manage cybersecurity tools and solutions, like firewalls, intrusion detection systems, and anti-virus software.
• Continuous Monitoring: Conduct continuous monitoring of the network and security infrastructure to detect anomalies and potential threats.
• Training and Awareness: Spearhead cybersecurity awareness campaigns and training sessions for employees, ensuring they understand and adhere to security protocols.
• Stakeholder Communication: Collaborate with executive leadership and IT teams, providing updates on network health and security status, as well as recommendations for improvements.
• Compliance and Audits: Ensure that the organization is compliant with regulatory requirements and industry standards related to IT and cybersecurity. Facilitate external and internal audits as needed.
• Capacity Planning: Predict future network needs and plan for network changes, expansions, or upgrades to accommodate organizational growth or shifts in technology.
• Vendor Management: Liaise with vendors and third-party providers to ensure that their products and services meet the organization's security standards.
• Research and Development: Stay updated with the latest advancements in network technologies and cybersecurity threats, ensuring the organization remains at the forefront of security best practices.
• Disaster Recovery and Business Continuity: Develop and test disaster recovery plans to ensure the organization can quickly recover its IT functions in the event of a major incident or disaster.
• Performance Metrics: Establish and monitor key performance indicators (KPIs) to measure the efficiency and effectiveness of the network and cybersecurity initiatives.
• Budgeting: Provide input on budget requirements for network and security tools, personnel, and training, ensuring adequate resources are allocated to maintain robust infrastructure and defense mechanisms.
Practical and Technical Knowledge:
• Networking Technologies and Protocols: Comprehensive understanding of Cisco ACI, NX-OS, IOS-XR, IOS-XE, IOS, TCP/IP, subnetting, routing protocols, and other advanced networking concepts.
• Security Technologies, Protocols and Practices: Knowledge of Fortinet technologies, Cisco Firepower, Cisco ASA, encryption protocols, VPNs, IDS/IPS, firewall management, Zero Trust, Secure Services Edge, and other security mechanisms.
• Operating Systems: Proficiency in multiple OS platforms like Windows, Linux, macOS, and their respective security features and vulnerabilities.
• Cloud Platforms: Understanding of cloud services (e.g., AWS, Azure, Oracle, Google Cloud) and their specific security concerns and best practices.
• Penetration Testing: Knowledge of ethical hacking tools and techniques to identify vulnerabilities.
• Incident Response: Understanding of techniques and procedures for effectively responding to security breaches or vulnerabilities.
• Secure Network Design: Ability to design networks with security as a priority, considering aspects like segmentation, DMZs, and access controls.
• Regulatory and Compliance Knowledge: Familiar with standards and regulations and how they impact network and security practices.
Skills:
• Analytical Skills: Ability to assess large amounts of data and logs to identify patterns, anomalies, or potential threats.
• Problem Solving: Quickly and effectively address unforeseen issues or breaches.
• Project Management: Managing multiple projects, often with tight timelines, ensuring that security initiatives are completed on schedule.
• Scripting and Automation: Skills in scripting languages like Python, Bash, or PowerShell for automation, analysis, and task simplification.
• Soft Skills: Including communication (both written and verbal), leadership, teamwork, and stakeholder management.
• Digital Forensics: Skill in digital forensics to investigate breaches, understand their origins, and provide evidence if needed.
Qualification and Experience:
• Education: Postgraduate or Masters in Information Technology, Cybersecurity, Computing Science, Applied Computing, Information Systems.
• Prior Roles: Experience between to years in roles such as Senior Network Engineer, IT Administrator, or Senior Cybersecurity Analyst and related practical experience.
• Incident Management: Hands-on experience in managing security incidents, from detection to resolution and post-incident analysis.
• Implementing Network and Security Solutions: Experience in deploying and managing software defined datacentre network infrastructure, security tools, such as XDR’s, SIEMs, firewalls, endpoint protection solutions, etc.
• Collaboration: Past experience in working with cross-functional teams, especially under crisis situations, can be invaluable.
• Certifications: CCNP, NSE , CISSP, CEH, CISM, CompTIA Security+.
Remuneration:
This position will be on contract; an attractive package will be discussed with the successful candidate.
Application Conditions:
Electronic applications only will be accepted through ours www.telecom.com.fj .
Applications close th October, .