Network Access Control (NAC) Engineer

Overview

The Level 2 Network Security Engineer plays a key operational role in safeguarding the organization’s network infrastructure. This position focuses on the configuration, monitoring, and maintenance of network security systems such as firewalls, VPNs, IPS / IDS, and secure gateways. The engineer is responsible for identifying and responding to security incidents, managing rule changes, and supporting secure network design in coordination with Level 3 engineers and security architects. Responsibilities

Security Operations & Monitoring : Monitor firewalls, VPNs, intrusion prevention / detection systems, and other network security appliances for threats or anomalies. Respond to alerts and incidents based on threat intelligence and internal SOC escalations. Firewall Management : Perform firewall rule reviews, changes, and optimization under established policies. Work with vendors and Level 3 engineers for troubleshooting and rule impact analysis. Access Control & VPNs : Manage remote access and site-to-site VPNs, including configurations, troubleshooting, and usage auditing. Support NAC and segmentation policies within LAN / WAN environments. Strong experience in Cisco ISE. Incident Response & Escalation : Participate in the response to security events and vulnerability findings. Document root cause analysis and corrective actions. Change Implementation & Documentation : Implement security-related configuration changes in coordination with change management processes. Maintain records of firewall policies, security incidents, and access controls. Compliance & Best Practices : Ensure alignment with internal security policies and regulatory standards (e.g., ISO 27001, SAMA, NCA). Assist in compliance reporting and periodic audits. Skills & Qualifications

Experience with firewalls (Palo Alto, Fortinet, Cisco ASA / FTD), IPS / IDS, and secure web gateways. Solid understanding of network protocols (TCP / IP, DNS, NAT, VPN, SSL / TLS). Familiarity with log analysis, SIEM tools, and incident handling procedures. Basic scripting or automation skills (Python, Bash) are a plus. Strong analytical and problem-solving abilities. Clear communication skills, particularly when interacting with cross-functional teams. Education & Certifications

Bachelor’s Degree in Network Engineering, Computer Engineering, or a related field. Preferred certifications : Cisco CCNA (required), CCNP (preferred) SD-WAN or Wireless certifications (Cisco, Aruba, etc.) are a plus Working Conditions

On-call responsibilities for after-hours security events may be required. Occasional work with external vendors, audits, or compliance teams. Participation in periodic vulnerability assessments and penetration test reviews. At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive. Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process.

#J-18808-Ljbffr