Key Responsibilities:

• Lead network security advisory efforts, including LAN/WAN segmentation, firewall posture reviews, and NAC deployments.
• Provide assurance on secure network configurations and collaborate on optimization of core protocols (TCP/IP, DNS, DHCP).
• Guide secure systems design across Windows, Linux, and hybrid cloud environments, ensuring alignment with security standards.
• Advise on infrastructure changes, identity platforms, and PKI environments to reduce risk and improve resilience.
• Support vulnerability remediation, configuration reviews, and automation strategies for compliance and hardening.
• Engage with stakeholders to align infrastructure initiatives with cybersecurity strategy and mentor teams on secure practices.

Qualifications and Experience:

• 8+ years in enterprise cybersecurity, with a strong emphasis on network engineering and infrastructure security.
• Proven expertise in network architecture, including secure design of LAN/WAN, wireless (802.1X, WPA3), and segmentation strategies.
• Hands-on experience with firewall platforms (Fortinet, Cisco, Palo Alto) and Network Access Control (NAC) solutions (FortiNAC, Cisco ISE, Aruba ClearPass).
• Deep understanding of network protocols and services: TCP/IP, DNS, DHCP, VLANs, routing, switching, VPN, and remote access.
• Strong advisory capability across Microsoft environments (Windows Server, Active Directory, Exchange, PKI) and Linux systems (RHEL/Ubuntu).
• Familiarity with cloud platforms (Azure, AWS, GCP), especially hybrid identity and infrastructure deployments.
• Experience with automation and compliance tooling (PowerShell, Ansible, Terraform) for system hardening and monitoring.
• Solid grasp of Data Loss Prevention (DLP) principles and implementation strategies.