Job Description:

• Reporting to the Global Security department, this role contributes to the company's internal digital transformation, evolving the adoption of Zero Trust Strategy.
• The ideal candidate will have experience driving and implementing at scale across various products and platforms.

Responsibilities:

• Configure and manage enterprise-wide network DLP (Data Loss Protection) solutions to prevent unauthorized data exfiltration.
• Fine-tune network DLP policies and rules based on data classification, sensitivity, and regulatory requirements.
• Integrate Network DLP solutions with SIEM (Security Information and Event Management) systems for centralized security event monitoring and incident response.
• Define and enforce network DLP policies and procedures in alignment with industry best practices and regulatory requirements.
• Conduct regular network DLP audits and assessments to ensure compliance with data protection standards.
• Configuration and deployment of ZTNA (Zero Trust Network Access) platforms in on-premises and cloud environments.
• Development and implementation of network security strategies, aligning them with ZTNA principles and best practices.
• Define and enforce access control policies based on user identity, device posture, and context.
• Integration of ZTNA with existing security technologies like ICAM (Identity, Credentialing and Access Management), MFA (Multi Factor Authentication), and endpoint security solutions.
• Perform regular network vulnerability assessments and penetration testing to identify weaknesses in ZTNA controls.
• Experience configuring, deploying, and managing micro-segmentation solutions
• Understanding of micro-segmentation integration with other security tools like SIEM and SOAR (Security Orchestration, Automation & Response).
• Ensure compliance with industry standards and regulations.
• Investigate complex security cases and propose response procedures. Work with senior Security Management Specialists to resolve/close security cases.
• Support operational teams maintaining security infrastructure (intrusion detection, remote access security, email & web security, anti-malware, WAF)

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 8+ years of experience in network security with a strong focus on Network Security Engineering.
• Deep understanding of TCP/IP, network protocols, routing, switching, firewalls, and network security technologies.
• Extensive experience with DLP solutions
• Expert knowledge of SASE, CASB, ZTNA, SWG technologies.
• Extensive experience in WAF, OWASP Top10
• Familiarity with ICAM, MFA, endpoint security, and SIEM solutions.
• Experience conducting security assessments, risk analyses, and developing security concepts.
• Experience working with distributed teams.
• Excellent communication skills, written and verbal.
• Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls.
• Relevant certifications like CISSP, CCNP Security, or GIAC certifications are highly desirable.
• Excellent communication skills, written and verbally.
• Demonstrated ability to weigh business needs with security priorities and make sound risk-based judgment calls

Specific Skills:

• Cloud Security
• Cloud Technology
• Data Leakage Prevention
• Micro-Segmentation
• Web application Firewall
• Zero Trust
• Computer coding (Python)
• Network Security Tools
• Security Architecture Design
• Network Monitoring