Sr Network And Security Engineer

Role Overview

We are seeking a highly skilled and experienced Senior Security Engineer to lead the design, deployment, and optimization of enterprise security solutions across multi-vendor environments. The ideal candidate will bring deep expertise in Next-Generation Firewalls (NGFW), Data Loss Prevention (DLP), and Data Classification frameworks, along with strong consulting capabilities and industry certifications.

Key Responsibilities

• Design, implement, and manage multi-vendor NGFW solutions (e.g., Fortinet, Cisco, Palo Alto, Check Point).
• Develop and enforce security policies including IPS, application control, URL filtering, and VPN configurations.
• Perform firewall audits, rule optimization, and performance tuning.
• Support high-availability (HA), SD-WAN, and hybrid cloud security architectures.

• Lead DLP solution design and deployment across enterprise environments.
• Hands-on experience with:
• Microsoft Purview DLP (M365, Endpoint, Cloud Apps)
• Forcepoint DLP (Network, Endpoint, Email)
• Define and implement DLP policies aligned with regulatory and business requirements.
• Conduct incident tuning, false-positive reduction, and user awareness alignment.

• Provide data classification consultancy aligned with industry standards and regulatory frameworks.
• Implement and manage classification frameworks using:
• Microsoft Information Protection (MIP)
• Forcepoint Data Classification
• Develop classification schemas (Public, Internal, Confidential, Restricted).
• Conduct workshops with business stakeholders to define data handling policies.
• Perform security assessments, gap analysis, and architecture reviews.
• Align solutions with frameworks such as ISO 27001, NIST, and CIS benchmarks.
• Support pre-sales activities including solution design, BoQ preparation, and technical presentations.
• Provide recommendations for improving overall security posture.
• Provide L3 escalation support for complex security issues.
• Develop high-quality HLD/LLD, SOPs, and runbooks.
• Maintain documentation for configurations, policies, and changes.
• Ensure compliance with internal standards and customer requirements.
  

• Cisco CCIE,CISSP and industry certification is a advantage
• Strong hands-on experience with multi-vendor NGFW platforms
• Proven experience in DLP deployment (Microsoft & Forcepoint)
• Certifications in Data Classification / Information Protection (e.g., Microsoft Purview, ISO 27001 Lead Implementer/Auditor preferred)
• Bachelor’s degree in Computer Science, Information Security, or related field
  
  

• 8–12 years of experience in cybersecurity and network security
• At least 3–5 years in DLP and Data Classification projects
• Experience in enterprise-scale deployments and consulting engagements
• Exposure to UAE regulatory frameworks (DESC, ADHICS, etc.) is an advantage
  
  

• Strong analytical and troubleshooting skills
• Excellent stakeholder communication and consulting ability
• Ability to work across multi-technology environments
• Experience in customer-facing roles and solution presentations
  
  

• Knowledge of SASE, CASB, and Zero Trust architectures
• Cloud security experience (Azure/AWS)
• Scripting/automation (PowerShell, Python)