The Level 2 Network Security Engineer plays a key operational role in safeguarding the organization’s network infrastructure. This position focuses on the configuration, monitoring, and maintenance of network security systems such as firewalls, VPNs, IPS/IDS, and secure gateways. The engineer is responsible for identifying and responding to security incidents, managing rule changes, and supporting secure network design in coordination with Level 3 engineers and security architects.
Ready to apply for roles like this?
Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.
Unlock employer & apply directly
Key Responsibilities & Duties
- Security Operations & Monitoring: Monitor firewalls, VPNs, intrusion prevention/detection systems, and other network security appliances for threats or anomalies. Respond to alerts and incidents based on threat intelligence and internal SOC escalations.
- Firewall Management: Perform firewall rule reviews, changes, and optimization under established policies. Work with vendors and Level 3 engineers for troubleshooting and rule impact analysis.
- Access Control & VPNs: Manage remote access and site-to-site VPNs, including configurations, troubleshooting, and usage auditing. Support NAC and segmentation policies within LAN/WAN environments.
- Incident Response & Escalation: Participate in the response to security events and vulnerability findings. Document root cause analysis and corrective actions.
- Change Implementation & Documentation: Implement security-related configuration changes in coordination with change management processes. Maintain records of firewall policies, security incidents, and access controls.
- Compliance & Best Practices: Ensure alignment with internal security policies and regulatory standards (e.g., ISO 27001, SAMA, NCA). Assist in compliance reporting and periodic audits.
Skills & Qualifications
- Experience with firewalls (Palo Alto, Fortinet, Cisco ASA/FTD), IPS/IDS, and secure web gateways.
- Solid understanding of network protocols (TCP/IP, DNS, NAT, VPN, SSL/TLS).
- Familiarity with log analysis, SIEM tools, and incident handling procedures.
- Basic scripting or automation skills (Python, Bash) are a plus.
- Strong analytical and problem-solving abilities.
- Clear communication skills, particularly when interacting with cross-functional teams.
Education & Certifications
- Bachelor’s Degree in Network Engineering, Computer Engineering, or a related field.
- Preferred certifications:
- Cisco CCNA (required), CCNP (preferred)
- SD-WAN or Wireless certifications (Cisco, Aruba, etc.) are a plus
Working Conditions
- On-call responsibilities for after-hours security events may be required.
- Occasional work with external vendors, audits, or compliance teams.
- Participation in periodic vulnerability assessments and penetration test reviews.
