Senior Network Security Engineer - Riyadh, KSA at DeepSource Technologies

Cairo, Cairo, Egypt -

Full Time

Start Date

Immediate

Expiry Date

19 Sep, 26

Salary

0.0

Posted On

21 Jun, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

F5 Advanced WAF, F5 BIG-IP LTM, Next-Generation Firewalls (NGFW), Network Security Architecture, DNS Governance, IP Address Management, Disaster Recovery, High Availability, NAT, Routing, Change Management, Security Assessment, Access Control Management, Risk Mitigation, Post-change Validation, Technical Documentation

Industry

IT Services and IT Consulting

Description

• Deep technical experience on F5 advanced WAF • Identify and clean up unused or orphaned IP addresses on F5 BIG-IP load balancers to improve performance, efficiency, and manageability. • Review, validate, and remove unused, duplicate, or obsolete firewall policies across HQ and DR data centers while maintaining security posture and compliance. • Ensure firewall and load balancer changes are aligned with high availability (HA) and disaster recovery (DR) requirements. Network & Security Assessment • Perform a comprehensive assessment of all devices, applications, databases, and network components using public IP addresses. • Analyze application, service, and security dependencies to determine the potential impact of IP, firewall, and load balancer changes. • Classify firewall rules and DNS-related entries based on criticality, usage, activity level, and business relevance. IP Addressing & DNS Governance • Develop detailed cleanup and migration plans including sequencing, timelines, backups, and rollback procedures. • Design and allocate private IP address ranges, ensuring compatibility with existing network and security architecture. • Assess and analyze DNS records to identify unused, outdated, or invalid entries related to applications and security controls. • Remove or update invalid, obsolete, or unnecessary DNS records while ensuring no impact on applications or end users. Secure Execution & Validation • Execute cleanup and migration activities in a secure, controlled, and auditable manner, ensuring uninterrupted service continuity. • Coordinate with application, systems, SOC, and operations teams to align firewall rules, NAT, routing, DNS, and access controls. • Perform post-change testing and validation to confirm service availability, security enforcement, and performance stability. Governance, Review & Documentation • Establish periodic review procedures for firewall rules, F5 configurations, IP addressing, and DNS records to ensure ongoing accuracy and security. • Ensure cleanup activities do not negatively impact applications, services, or end users. • Maintain comprehensive documentation for all activities, including changes implemented, issues encountered, root cause analysis, and approved remediation actions. • Support audit, compliance, and regulatory requirements through proper documentation and change tracking. • Strong hands-on experience with firewalls (NGFW), security policies, NAT, and access control management. • Proven expertise in F5 BIG-IP (LTM), including VIPs, Self IPs, SNATs, and HA configurations. • Solid understanding of enterprise IP addressing, DNS, routing, and network security architecture. • Experience operating in HQ / DR, high-availability, and mission-critical environments. • Strong knowledge of change management, rollback planning, and risk mitigation. Education & Certifications (Preferred) • Bachelor’s degree in Computer Science, Information Technology, or related field • Certifications such as CCNP Security, F5-CA/CTS, NSE, or equivalent are high

Responsibilities

The role focuses on optimizing and securing network infrastructure by cleaning up unused IP addresses, firewall policies, and DNS records. It involves performing comprehensive security assessments and ensuring high availability and disaster recovery alignment across data centers.