Resident Network and Security Engineer - Senior

Overview

Senior Network & Security Engineer on-site at customers\' premises in Riyadh, KSA. Requires deep expertise in Cisco and Fortinet networking and security technologies, strong firewall management skills, and the ability to support cloud and hybrid environments. The candidate will ensure availability, performance, and protection of mission-critical systems while supporting compliance and governance requirements. Experience with cloud networking (GCP, AWS, or Azure) and enterprise security systems is desired, with the ability to lead initiatives that ensure high performance, availability, and compliance. Key Responsibilities

Architect, implement, and oversee complex enterprise network and security infrastructures, including hybrid on-premises and cloud environments. Configure, monitor, and maintain enterprise Cisco and Fortinet platforms (routing, switching, firewalls, VPNs, and wireless). Deploy and manage Cisco and Fortinet technologies, including LAN / WAN, VPN, wireless connectivity, and advanced threat protection. Implement and manage security solutions such as next-generation firewalls, IDS / IPS, NAC, WAF and advanced threat protection platforms. Design and maintain secure hybrid cloud connectivity with Cisco and Fortinet integrations across GCP, AWS, and Azure. Develop and maintain Infrastructure as Code (IaC) for provisioning and managing network / security infrastructure using Terraform, Ansible, or CloudFormation. Ensure network and security architectures adhere to cloud security best practices, covering IAM, encryption, threat detection, logging, and compliance frameworks. Lead incident response, troubleshooting, and root cause analysis across multi-vendor enterprise environments. Enforce security baselines (CIS, NIST, ISO) and ensure compliance across Cisco, Fortinet, and cloud systems. Maintain accurate documentation including network diagrams, configuration standards, and change control records. Collaborate with IT, DevOps, and business stakeholders to ensure network, security, and cloud solutions are aligned with organizational objectives and business requirements. Evaluate emerging network and security technologies, recommend adoption strategies, and contribute to long-term infrastructure planning. Define and enforce enterprise security architecture standards, ensuring secure integration of on-premises, cloud, and hybrid systems. Support regulatory compliance (ISO 27001, NIST) by ensuring controls and audit readiness. Monitor utilization trends and proactively optimize network and security resources for scalability. Act as a lead in critical security / network incidents, coordinating cross-functional teams during major outages or breaches. Deep hands-on experience across the Fortinet Security Fabric, including centralized management, analytics, firewalls, privileged access, network access control, secure switching, and wireless technologies, ensuring seamless integration and advanced protection across enterprise environments. FortiManager

Centralize policy and configuration management across multiple FortiGate clusters. Automate device provisioning and firmware upgrades. Implement role-based administrative controls for delegated operations. Maintain log collection, analysis, and forensic reporting for all Fortinet devices. Build custom reports and alerts to support compliance audits. FortiGate Firewalls

Design and optimize advanced firewall policies with UTM features (IPS, AV, SSL inspection, web filtering). Configure high-availability (HA) clusters with failover testing. Secure cloud interconnects (GCP / AWS / Azure) using IPsec and SD-WAN integration. FortiSwitches

Manage Fortilink topologies integrated with FortiGate firewalls. Monitor switch performance, port utilization, and uplink health. Apply regular firmware updates and enforce security baselines. Manage VLAN assignments, access control, and switch port security policies. Troubleshoot port connectivity, spanning-tree, and loop prevention issues. Maintain integration with FortiGate and FortiNAC for centralized policy enforcement. FortiAPs

Monitor and maintain enterprise wireless network performance and stability. Perform periodic firmware updates and security patching of APs. Manage SSIDs, access policies, and user roles through centralized controllers. Troubleshoot wireless connectivity, roaming, and interference issues. Ensure compliance with security standards (WPA3, NAC integration) for wireless clients. FortiPAM

Operate and maintain credential vaults, ensuring regular key / secret rotation. Monitor and audit privileged session activities for compliance. Enforce privileged access workflows and approve requests. Troubleshoot access issues related to directory integration (AD / LDAP). FortiNAC

Monitor endpoint visibility and enforce NAC policies across the network. Perform routine updates and ensure NAC server’s health and high availability. Manage device onboarding, profiling, and posture assessment. Investigate and remediate incidents involving quarantined or non-compliant devices. Review NAC logs and reports to identify unauthorized access attempts. Maintain integrations with FortiGate, FortiSwitch, and FortiAnalyzer for coordinated security enforcement. Minimum Required Qualifications

Bachelor’s degree in computer science, Information Technology, or a related field; a master’s degree is a plus. 8-10 years of hands-on experience in network and security administration, including enterprise design and operations. Strong expertise in Cisco and Fortinet solutions (routing, switching, firewalls, VPNs, wireless). Proficiency in core protocols (TCP / IP, BGP, OSPF, VLANs, QoS) and advanced network segmentation. Experience with firewall policies, intrusion detection / prevention systems, and VPN management. Solid understanding of cloud networking (GCP, AWS, or Azure) and hybrid deployments. Deep knowledge of cloud security principles, including IAM, data protection, threat detection, and compliance standards (NIST, ISO, CIS). Hands-on experience with Infrastructure as Code (IaC) tools such as Terraform, Ansible, and CloudFormation. Advanced diagnostic and troubleshooting skills across complex hybrid and cloud environments. Familiarity with security frameworks and regulatory compliance requirements. Excellent communication, documentation, and stakeholder engagement skills. Hands-on experience with centralized Fortinet management platforms. Familiarity with API / automation (REST API, Ansible modules for Fortinet). Strong knowledge of Fortinet log / event structures and SOC use cases. Experience with forensic log analysis and custom reporting. Proven expertise with NGFW features such as SSL deep inspection, DoS protection, and SD-WAN. Experience designing HA clusters and troubleshooting advanced routing on FortiOS. Hands-on deployment of Fortilink-managed switch networks. Proficiency in securing switch access with NAC and 802.1X. Knowledge of enterprise WLAN design and wireless security protocols. Experience with large-scale Wi-Fi deployments and troubleshooting. Understanding of privileged access management and credential vaulting solutions. Experience in integrating PAM with enterprise directory services (LDAP / AD). Knowledge of endpoint profiling, posture checks, and network access enforcement. Experience deploying NAC policies in hybrid enterprise environments. Preferred Qualifications

Cisco CCNP Security and / or Enterprise, Fortinet Certified Professional Network Security (FCP). Fortinet Certified Professional Security Operations. Advanced security certifications such as CISSP, CISM, or equivalent. Cloud Networking / Security Certifications : AWS Certified Advanced Networking – Specialty. Familiarity with Infrastructure as Code (IaC) such as Terraform or Ansible. Experience with SIEM, SOAR, and SOC workflows. Soft Skills

Strong analytical and problem-solving abilities. Excellent communication and interpersonal skills. Ability to work independently and collaboratively in a team-oriented environment. High attention to detail and a commitment to delivering quality results. Strong organizational and time management skills, with the ability to prioritize multiple tasks. Adaptability and resilience in high-pressure or rapidly changing environments. Leadership and mentoring capabilities to support junior team members. Proactive mindset with a focus on continuous improvement and innovation. Strong sense of accountability, integrity, and professionalism. Ability to engage effectively with stakeholders across technical and non-technical teams. Onsite presence is required. Ability to manage multiple priorities in a fast-paced environment, maintaining professionalism and effectiveness under pressure. Commitment to working in a dynamic, collaborative, and cross-functional IT environment with diverse stakeholders. Flexibility to adapt to evolving technologies, project requirements, and organizational priorities.

#J-18808-Ljbffr