Network Vulnerability Engineer - 12 months contract

Duration: 1 year Working Hours: 8.30am - 6pm, Monday - Fridays. Standby and shift work may be required Location: Central, roaming required Responsibilities • Perform vulnerability assessment, remediation, and security hardening activities across enterprise network and security infrastructure environments. • Identify, analyze, prioritize, and remediate vulnerabilities affecting firewalls, routers, switches, wireless infrastructure, proxies, WAFs, VPNs, and cloud platforms. • Implement security patches, firmware upgrades, configuration hardening, and version upgrades for network and security devices. • Manage and support enterprise security solutions including firewalls, WAFs, SASE, VPNs, proxy solutions, IDS/IPS, and endpoint security technologies. • Monitor infrastructure security posture and proactively identify risks, threats, and performance issues using monitoring and logging tools. • Conduct root cause analysis (RCA) for security incidents, recurring vulnerabilities, and infrastructure issues, and implement permanent corrective actions. • Collaborate with infrastructure, cloud, security operations, and application teams to ensure secure implementation of systems and services. • Support vulnerability management lifecycle activities including scanning, remediation tracking, reporting, and compliance validation. • Administer and maintain network security technologies such as Fortinet, Palo Alto, Check Point, Cisco ASA/FTD, Imperva WAF, Prisma SASE, Netskope, and related platforms. • Configure and troubleshoot secure connectivity solutions including IPsec VPN, SSL VPN, GlobalProtect, FortiClient, and SASE environments. • Support cloud security and networking initiatives across Azure, AWS, and hybrid environments, including routing, segmentation, and security policy management. • Perform firewall policy reviews, ACL management, NAT configurations, URL filtering, SSL decryption, and traffic optimization. • Monitor and maintain infrastructure availability, capacity, and operational performance in accordance with SLA requirements. • Support ITSM/ITIL processes including Incident, Problem, Change, Release, and Configuration Management (CMDB). • Participate in Major Incident Management (MIM) activities and provide timely incident updates to stakeholders and management. • Develop and maintain technical documentation including SOPs, HLD/LLD, implementation guides, RCA reports, and operational procedures. • Coordinate with vendors, ISPs, cloud providers, and data centre teams for issue resolution, maintenance, and project implementation. • Support audit, governance, compliance, and security review activities by ensuring infrastructure adheres to organizational security standards. • Assist in infrastructure modernization, migration, and transformation initiatives involving cloud, security, and network technologies. • Mentor junior engineers and provide technical guidance where required. • Assist in preparing technical proposals, solution designs, and implementation plans for infrastructure security projects. • Maintain vendor certifications and technical competencies to support strategic technology partnerships. Requirements • Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, Network Engineering, or related discipline. • Minimum 5–8 years of experience in network security, vulnerability management, or infrastructure security operations. • Experience performing vulnerability remediation, security patching, hardening, and infrastructure upgrades. • Possess a valid CCNP Enterprise Certification  • Strong knowledge of network security technologies including: • Firewalls (Fortinet, Palo Alto, Check Point, Cisco ASA/FTD) • Web Application Firewalls (Imperva WAF) • SASE/SWG solutions (Prisma SASE, Netskope, Zscaler) • VPN technologies (IPsec, SSL VPN, GlobalProtect, FortiClient) • Proxy and web filtering technologies • Experience with cloud platforms such as AWS and Azure, including cloud networking and security configurations. • Strong hands-on experience managing enterprise network and security infrastructure in large-scale environments. • Good understanding of networking concepts and protocols including TCP/IP, VLANs, OSPF, BGP, STP, routing, switching, NAT, ACLs, DNS, and DHCP. • Experience supporting wireless, load balancer, and data centre network environments is advantageous. • Familiarity with security monitoring, logging, and infrastructure monitoring tools such as SolarWinds, Logic Monitor, PRTG, Zabbix, OPManager, or similar platforms. • Working knowledge of ITSM/ITIL processes including Incident, Problem, Change, and Release Management. • Experience supporting high availability, disaster recovery, backup/restore, and service continuity initiatives. • Strong troubleshooting, analytical, and problem-solving skills with ability to perform root cause analysis independently • Good documentation and communication skills with ability to engage stakeholders across technical and business teams. • Experience working in enterprise, managed services, or multi-region environments is preferred. Interested candidate please click "APPLY" to begin your job search journey.  By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOL Tech Services Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at https://www.persoloutsourcing.com/policies. You acknowledge that you have read, understood, and agree with the Privacy Policy. PERSOL Tech Services Pte Ltd UEN No. 202233837K