{bc}
indeed

Network Security Engineer

Qode
Abu Dhabi, UAE
Full Time
Senior
Onsite
1 weeks ago
Palo Alto NetworksFortinet FortiGateCisco FTD/ASAVPN TechnologiesNetwork Security ArchitectureFirewall Policy Review
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Palo Alto NetworksFortinet FortiGateCisco FTD/ASA
Smart Apply

Full Job Posting

Role Overview

  • We are looking for an experienced Network Security Engineer to join our technical delivery team.
  • This is a hands on role spanning the full project lifecycle — from pre sales Proof of Concept (PoC) environments and solution design through to deployment, integration, and post go live support across enterprise customer environments.
  • You will be the technical authority on network security engagements, working directly with customers onsite and remotely to deliver firewall deployments, policy migrations, network segmentation programmes, and secure access solutions.
  • You will also contribute to our managed network security service, where ongoing policy management, health monitoring, and incident escalation are part of the scope.
  • The role requires deep expertise in at least one major firewall vendor ecosystem, strong networking fundamentals, and the confidence to lead technical conversations and produce customer ready documentation independently.

Key Responsibilities

  • Design, deploy, and configure next generation firewalls (NGFW) across enterprise customer environments — including Palo Alto Networks, Fortinet FortiGate, and Cisco platforms.
  • Design, build, and execute PoC environments for prospective customers during the pre sales stage — defining success criteria, standing up the solution, running demonstrations, and producing outcome reports to support deal progression.
  • Develop key project deliverables: High Level Designs (HLDs), Low Level Designs (LLDs), project plans, firewall ruleset documentation, and network security policy frameworks.
  • Perform firewall policy reviews, rule base optimisations, and security posture assessments — identifying unnecessary exposure, rule bloat, and misconfigurations in existing customer environments.
  • Configure and manage site to site and remote access VPN solutions — IPSec, SSL/TLS, and zero trust network access integrations.
  • Implement network segmentation and micro segmentation strategies — designing zone based architectures, DMZ configurations, and east west traffic controls.
  • Deploy and tune Intrusion Prevention Systems (IPS), URL filtering, application control, SSL inspection, and threat prevention profiles.
  • Integrate network security platforms with SIEM, SOAR, and log management infrastructure — ensuring relevant telemetry flows to the SOC for monitoring and alerting.
  • Configure and support SD WAN solutions and their integration with cloud delivered security services where applicable.
  • Support integration of SASE/SSE platforms (Zscaler, Netskope, or similar) alongside or in place of traditional perimeter controls where customer architecture demands it.
  • Conduct technical workshops, customer onboarding sessions, and knowledge transfer with customer network teams post deployment.
  • Produce thorough as built documentation and operational runbooks suitable for customer sign off and ongoing managed service handover.

Required Qualifications (Must Have)

  • 4–8 years of hands on experience in network security or network engineering roles, with a strong delivery track record in enterprise environments.
  • Deep practical expertise with at least one major NGFW platform — Palo Alto Networks (PAN OS), Fortinet (FortiOS), or Cisco (FTD/ASA) — including design, deployment, and advanced feature configuration.
  • Strong networking fundamentals: routing (BGP, OSPF, static), switching, VLANs, NAT, QoS, spanning tree, and packet level troubleshooting.
  • Hands on experience with VPN technologies — IPSec IKEv1/v2, SSL VPN, and remote access architectures.
  • Practical knowledge of network security architecture principles — zone design, least privilege, defence in depth, and perimeter versus zero trust models.
  • Experience performing firewall policy reviews and rule optimisation in live customer environments.
  • Ability to develop HLDs, LLDs, and customer facing documentation to a professional standard independently.
  • Comfortable working onsite with enterprise customers, leading technical workshops, and managing stakeholder expectations.
  • At least one of the mandatory certifications listed below must be held at the time of application.

Certifications

  • Palo Alto Networks Certified Network Security Engineer (PCNSE) Mandatory (one required)
  • Cisco CCNP Security Mandatory (one required)
  • Fortinet NSE 7 / FCSS – Secure Networking Mandatory (one required)
  • Zscaler Certified Administrator (ZCCA IA / ZCCA PA / ZCP) Good to Have
  • Netskope Administrator / Integrator Accreditation Good to Have
  • Palo Alto PCNSA Good to Have
  • Fortinet NSE 4 / NSE 5 Good to Have
  • Cisco CCNA / CCNA Security Good to Have
  • Check Point CCSA / CCSE Good to Have

Preferred Qualifications (Nice to Have)

  • Hands on experience with Zscaler (ZIA/ZPA) or Netskope as part of a SASE/SSE architecture.
  • Experience with Check Point firewalls, SmartConsole, policy management, and R8x administration.
  • Familiarity with network access control solutions such as Forescout, Cisco ISE, or Aruba ClearPass.
  • Experience with SD WAN platforms including Fortinet Secure SD WAN, Palo Alto Prisma SD WAN, Cisco Meraki, or similar technologies.
  • Exposure to cloud networking and security including Azure Virtual WAN, AWS Transit Gateway, cloud native security groups, and cloud firewall deployments.
  • Familiarity with packet capture and traffic analysis tools such as Wireshark and tcpdump.
  • Scripting or automation experience using Python, Ansible, or REST APIs.
  • Prior delivery experience in the UAE or broader Middle East region.

Soft Skills & Professional Attributes

  • Technically rigorous with a strong focus on secure architecture and attention to detail.
  • Customer confident and comfortable leading workshops, presentations, and design discussions.
  • Methodical under pressure with structured troubleshooting capabilities.
  • Clear communicator able to explain technical concepts to business stakeholders.
  • Collaborative and delivery focused, working effectively with project managers, pre sales teams, and operations groups.

What We Offer

  • Competitive Compensation — Strong base salary with incentives linked to delivery quality and project outcomes.
  • Training & Certification Budget — Dedicated annual budget for certifications, vendor training, and lab environments.
  • Multi vendor Exposure — Work across Palo Alto, Fortinet, Cisco, SASE, and cloud security platforms.
  • Regional Delivery — Exposure to projects across the UAE and wider Middle East region.
  • Growth Path — Clear progression into Senior Network Security Engineer, Solutions Architect, or Practice Lead roles.
  • Culture — A collaborative technology focused team that values technical excellence, ownership, customer success, and execution.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Qode