Network Security Engineer

We are searching for an experienced IT Network Engineer to be responsible for ensuring IT networks and communications are well designed, secure, optimal and function consistently across all internal and external operations.

The role is offered on a hybrid basis, 3-days in the office and 2-days from home, once probation has been successfully passed. You will therefore need to live within a commutable distance of Exeter Airport to be considered for the role.

Our client is committed to building and maintaining stable, secure and efficient IT networks and application systems to promote the use of technology throughout the business.

In this role you will be responsible for the following:

Designing and deploying network services in line with design and security policies.
Monitoring and administering the installation and integration of corporate network communications, including routers, switches, firewalls, DMZ, servers, telephony and LAN/WAN communication services.
Managing the IP space across the organisation ensuring VLANs, IP Subnet, DNS, DHCP, VPNs, and VoIP traffic is well designed, secure and optimised.
Ensuring best practices are used for protecting network security.
Planning lifecycle renewals, "hotswap" procedures and emergency hardware failure protocols.
Providing regular service status updates to line management and agree and monitor service availability targets.
Ensuring the active/active WAN bandwidth and connectivity services are sufficient, balanced and perform efficiently. Planning and testing failover of critical operational services.
Researching latest networking developments and recommend any actions that will improve network performance and security.
Work closely with NIBE SOC Teams and internal Security Engineers to ensure all preventative security measures are implemented.
Ensuring all network hardware assets are identifiable and updated in the asset management system.
Providing technical support to the maintenance of the hardware infrastructure systems and services.
Making sure data backup design and integrity processes and practices are in place and verifiable.
Maintaining technical documentation, including network schematics, of all relevant systems.
Assisting with the build, deployment and administration of desktop, mobile and peripheral hardware equipment.
Administration of MS Windows Active Directory including profiles, Security Groups and Group Policies.
Assist with the management of multiple firewall hardware and security policies. Person Specification

A computer related degree or relevant professional certification and accreditation is preferred.
Experience in a Technical IT role maintaining secure networks in a MS Windows environment in a multi-disciplined organisation.
Expert knowledge of and experience in LAN/WAN/VLAN communications, VPN configuration and enterprise wireless networking. Experience of Dell switches with fibre is preferable.
CCNA/CCNP accreditation is a bonus but is NOT essential.
Experience of and working knowledge of GNS3 (or similar) is beneficial.
Firewall configuration, management and monitoring experience are essential. Experience of FortiGate products is a bonus/preferable.
TCP/IP networking, DNS, DHCP, Active Directory, SSL, 2FA and OT skills are required for this position.
Knowledge of Windows Server and desktop operating systems configuration & troubleshooting and SCCM/MECM skills would be advantageous.
Knowledge of information security standards such as ISO 17799/27002/27001/PCI DSS/SIEM/FERPA/HIPAA etc.
Knowledge of and experience in virtual network technologies, specifically ESXi and VMware configuration and administration is preferred.
Knowledge of and experience in Veaam, CrowdStrike and Cortex XDR configuration and administration would be advantageous.
Knowledge of IP telephony systems would be advantageous.
Experience of Office 365, Teams, OneDrive, SharePoint - any MS E3 subscription services.
Excellent troubleshooting, diagnostic, problem-solving and communication skills.
Flexibility to work on planned, out of hours systems projects if required.
A full, clean driving licence will be advantageous but is not essential.Benefits Package:

Competitive Salary.
24 days holiday (rising to 27 days) plus bank holidays.
Hybrid homeworking arrangements.
Pension Scheme.
Life Assurance.
Ongoing professional development and training.To be considered for this role you MUST have the Right to Work in the UK without company sponsorship.

Keywords
Network Security Engineer, IT Network Security Engineer, LAN, WAN, VLAN, MS Windows, VPN Configuration, Enterprise Wireless Networking, Dell Switches, Fibre, CCNA, CCNP, Firewalls, FortiGate, Cat6, TCP/IP, DNS, DHCP, Active Directory, SSL, 2FA, Windows Server, SCCM, MECM, ESXi, VMware, Veaam, CrowdStrike, Cortex XDR, IP Telephony Systems, Office 365, Teams, OneDrive, SharePoint, Driving Licence.

Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position.

No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010.

Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy