Principal Network Engineer at Brooks Automation

, Johor, Malaysia -

Full Time

Start Date

Immediate

Expiry Date

07 Feb, 26

Salary

0.0

Posted On

09 Nov, 25

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Network Security, Incident Response, Firewall Management, VPNs, IDS/IPS, WAFs, NAC Solutions, DDoS Mitigation, AWS Security, SIEM, Threat Intelligence, Penetration Testing, Vulnerability Scans, Compliance, Python, Ansible

Industry

Semiconductor Manufacturing

Description

Brooks is a leading provider of automation solutions with over 40 years of experience in the semiconductor industry, offering precision robotics, integrated automation systems, and contamination control solutions that empower chip manufacturers worldwide. Our product portfolio includes a range of automation solutions, including robots, vacuum systems, and atmospheric robots for semiconductor manufacturing (www.brooks.com). Are you looking for a place where you can be part of a transformation? Join us at Brooks Automation and be a part of a dynamic organization that is shaping the future of technology. Principal Network Engineer Job Description About the Role: Brooks is a leading provider of automation solutions with over 40 years of experience in the semiconductor industry, offering precision robotics, integrated automation systems, and contamination control solutions that empower chip manufacturers worldwide. We are seeking a highly skilled Senior Network Security Engineer to join us at Brooks Automation Malaysia where you will design, implement, and manage secure network infrastructures while proactively identifying and mitigating security threats. This role requires deep expertise in network security technologies, incident response, and compliance frameworks. Reporting to the Director of Infrastructure Architecture and Engineering (based in the US), the ideal candidate will be a proactive problem solver with strong technical and analytical skills, capable of securing complex enterprise environments. Work Location: Onsite - JOHOR BAHRU (or) PENANG. Key Responsibilities: Design, implement, and maintain firewalls, VPNs, IDS/IPS, WAFs, and NAC solutions to protect network infrastructure. Configure and manage next-generation firewalls (NGFW) (i.e. Palo Alto experience is a must). Ensure zero-trust architecture (ZTA) principles are applied across network security frameworks. Optimize network segmentation and micro-segmentation strategies for enhanced security. Implement and maintain DDoS mitigation, DNS security, and web filtering solutions. Experience with AWS transport and security services, including securing VPCs, Direct Connect, Transit Gateway, and associated security controls. Monitor and analyze network traffic for anomalies, threats, and intrusions using SIEM, SOAR, and threat intelligence platforms. Lead incident response efforts related to network security, including forensic analysis and root cause determination. Collaborate with SOC teams to enhance network visibility and proactive threat hunting. Perform regular penetration testing, vulnerability scans, and firewall rule reviews. Ensure compliance with NIST, ISO 27001, PCI DSS or other regulatory frameworks. Implement security controls and policies aligned with industry best practices. Assist in audit readiness and remediation efforts for network security controls. Work closely with risk management teams to assess vendor and third-party security risks. Develop and implement network security automation using Python, Ansible, or scripting tools. Streamline firewall rule management and change control processes for efficiency. Utilize AI/ML-based security tools to enhance threat detection and mitigation. Other duties as assigned. Required Qualifications & Competencies: Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience). Minimum 10+ years of global enterprise environment experience in network security engineering, security analysis, or a related role. Strong expertise in firewall management, intrusion detection/prevention, and secure network design. Hands-on experience with Cisco or Palo Alto security solutions. Proficiency with SIEM platforms and network traffic analysis tools. Experience with AWS transport and security services, including VPC security, Direct Connect, and Transit Gateway. Knowledge of encryption protocols, PKI, and secure remote access technologies. Experience with incident response frameworks (MITRE ATT&CK, NIST CSF, or SANS IR). Strong analytical, troubleshooting, and problem-solving skills. Strong communication and interpersonal skills, with the ability to work effectively in a team-oriented environment. Nice to Have: Aruba ClearPass NAC configuration and management. Preferred Certifications (one or more strongly preferred): -- CISSP (Certified Information Systems Security Professional) -- CCNP Security (Cisco Certified Network Professional - Security) -- GSEC, GCIA, or GCIH (GIAC Certifications) -- PCNSE (Palo Alto Networks Certified Security Engineer) #LI-MV1 #LI-Onsite Work Location & Flexibility At Brooks, we aim to foster a collaborative and engaging environment while offering flexibility where possible. Work arrangements may include a mix of in-office and remote work, depending on the nature of the role and business needs. Specific expectations will be shared during the interview process. Brooks is committed to fostering a diverse and inclusive workplace and proudly serves as an equal-opportunity employer. We welcome all qualified applicants regardless of race, color, religion, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or any other legally protected characteristics. Diversity enhances our innovative capabilities and strengthens our ability to serve our customers and communities effectively. At Brooks Automation, we celebrate the unique experiences and perspectives each individual brings, believing they are essential to our collective success. Join us in building a workplace where every team member is valued and can thrive. For applicants with disabilities requiring accommodations, don't hesitate to get in touch with talentattraction@brooks.com or call +1 (978) 262-2400 to discuss your needs. Review EEO Law & EEO Statement. Since our founding in 1978, Brooks Automation has been a leading automation provider and trusted partner to the global manufacturing industry. Our customers choose the Brooks Automation platform because we consistently deliver best-in-class reliability and cost of ownership, with a solution that is optimized for value within their application. We deliver value through our understanding of the application challenge, providing solutions at scale that create an automated advantage for our customers. We are committed to innovation by continuously developing new product offerings and partnering with our customers to integrate solutions for their manufacturing process tools. This benefits our customers with improved throughput and yield and a lower cost of ownership.

Responsibilities

Design, implement, and maintain secure network infrastructures while proactively identifying and mitigating security threats. Lead incident response efforts related to network security and collaborate with SOC teams to enhance network visibility.