SENIOR NETWORK & SECURITY ENGINEER
Darwinbox
Description
Job Description Key Responsibilities
-
Design, implement, and manage multi-vendor NGFW solutions (e.g., Fortinet, Cisco, Palo Alto, Check Point).
-
Develop and enforce security policies including IPS, application control, URL filtering, and VPN configurations.
-
Perform firewall audits, rule optimization, and performance tuning.
-
Support high-availability (HA), SD-WAN, and hybrid cloud security architectures.
-
Lead DLP solution design and deployment across enterprise environments.
-
Hands-on experience with:
- Microsoft Purview DLP (M365, Endpoint, Cloud Apps)
- Forcepoint DLP (Network, Endpoint, Email)
-
Define and implement DLP policies aligned with regulatory and business requirements.
-
Conduct incident tuning, false-positive reduction, and user awareness alignment.
-
Provide data classification consultancy aligned with industry standards and regulatory frameworks.
-
Implement and manage classification frameworks using:
- Microsoft Information Protection (MIP)
- Forcepoint Data Classification
-
Develop classification schemas (Public, Internal, Confidential, Restricted).
-
Conduct workshops with business stakeholders to define data handling policies.
-
Perform security assessments, gap analysis, and architecture reviews.
-
Align solutions with frameworks such as ISO 27001, NIST, and CIS benchmarks.
-
Support pre-sales activities including solution design, BoQ preparation, and technical presentations.
-
Provide recommendations for improving overall security posture.
-
Provide L3 escalation support for complex security issues.
-
Develop high-quality HLD/LLD, SOPs, and runbooks.
-
Maintain documentation for configurations, policies, and changes.
-
Ensure compliance with internal standards and customer requirements.
Required Qualifications & Certifications
- Cisco CCIE,CISSP and industry certification is a advantage
- Strong hands-on experience with multi-vendor NGFW platforms
- Proven experience in DLP deployment (Microsoft & Forcepoint)
- Certifications in Data Classification / Information Protection (e.g., Microsoft Purview, ISO 27001 Lead Implementer/Auditor preferred)
- Bachelor’s degree in Computer Science, Information Security, or related field
Experience Requirements
- 8–12 years of experience in cybersecurity and network security
- At least 3–5 years in DLP and Data Classification projects
- Experience in enterprise-scale deployments and consulting engagements
- Exposure to UAE regulatory frameworks (DESC, ADHICS, etc.) is an advantage
Key Skills
- Strong analytical and troubleshooting skills
- Excellent stakeholder communication and consulting ability
- Ability to work across multi-technology environments
- Experience in customer-facing roles and solution presentations
Preferred Skills (Good to Have)
- Knowledge of SASE, CASB, and Zero Trust architectures
- Cloud security experience (Azure/AWS)
- Scripting/automation (PowerShell, Python)