Network Security Engineer

Network & Data Security

Location: Plano, TX (2-3 days onsite per week)

Hybrid onsite : : Hybrid working

Must have : Network Security, Data Security, Resilient Architecture, and Recovery Operations

Preferred Certifications

• CISSP
• CISM
• CCSP
• CCNP Security / CCIE Security
• AWS Security Specialty
• Azure Security Engineer Associate
• Certified Ethical Hacker (CEH)
• ISO 27001 Lead Implementer / Lead Auditor

Key Responsibilities

Security Architecture & Resilient Design

• Design and implement secure and resilient enterprise network and infrastructure architectures.
• Develop cybersecurity strategies supporting high availability, business continuity, disaster recovery, and cyber recovery objectives.
• Integrate security controls into hybrid infrastructure environments spanning:
• On-premise data centers
• Private cloud
• Public cloud platforms (AWS, Azure, Google Cloud Platform)
• Define secure segmentation, isolation, and containment strategies for critical systems and sensitive workloads.
• Support Zero Trust and defense-in-depth architecture initiatives.

Network Security Engineering

• Design, deploy, and optimize network security technologies including:
• Next-generation firewalls
• IDS/IPS
• Secure web gateways
• Network access control (NAC)
• VPN and remote access solutions
• DDoS protection
• Micro-segmentation technologies
• Support secure connectivity between enterprise, cloud, and third-party environments.
• Review and enhance network security posture and compliance alignment.

Data Security & Protection

• Design and implement enterprise data protection and data resilience strategies.
• Support technologies and controls related to:
• Data encryption
• Key management
• Data loss prevention (DLP)
• Immutable backups
• Secure backup architectures
• Ransomware protection
• Data classification and retention
• Ensure secure recovery processes for critical applications and data assets.

Recovery Operations & Cyber Resilience

• Develop and support disaster recovery (DR), business continuity (BC), and cyber recovery frameworks.
• Conduct recovery planning, tabletop exercises, and resilience testing.
• Support incident response and post-incident recovery activities.
• Define recovery point objectives (RPO) and recovery time objectives (RTO) aligned with business requirements.
• Assist organizations in building operational resilience against ransomware and cyber attacks.

Risk, Compliance & Governance

• Conduct security assessments, risk analysis, and gap remediation planning.
• Support compliance initiatives related to:
• ISO 27001
• NIST Cybersecurity Framework
• CIS Controls
• GDPR
• PCI-DSS
• SOC 2
• Develop security policies, standards, and operational procedures.

Thanks & Regards,