Job Description

Overview:

Infrastructure SME / Architect

mid-level

Network & Cloud Security Engineer

responsible for designing, implementing, and supporting secure enterprise and AWS network environments. The position focuses on

AWS cloud networking

,

Cisco-based network security infrastructure

,

VPN and routing technologies

, and

Zero Trust access solutions

(Zscaler and Cisco ZTA). The engineer will work in a hybrid setup, handling firewall migrations, access control, secure connectivity, and troubleshooting across on-prem and cloud networks, while collaborating with cross-functional teams and maintaining clear technical documentation.
Responsibilities:
Configure and support

AWS Cloud Networking

components including VPC, VPC Peering, Site-to-Site VPN, Internet Gateway, NAT Gateway, and Security Gateway. Manage

S3 bucket networking and access control

. Design, migrate, and manage

Cisco firewall solutions

using ASA, FTD, FMC, and ISE. Configure and support

routers, Cisco Nexus, and Catalyst switches

. Implement and manage

site-to-site VPN and remote VPN

connectivity. Configure and troubleshoot

routing technologies

including BGP, OSPF, EIGRP, NAT, and VRF. Support

Zero Trust and Secure Access solutions

using Zscaler ZIA, Zscaler ZPA, and Cisco Zero Trust Access (ZTA). Perform

firewall policy management

activities. Use

basic Linux command-line tools

for operational support. Apply

analytical and troubleshooting skills

to resolve network and security issues. Maintain

documentation

and communicate effectively with stakeholders. Work in a

hybrid, fast-paced environment

.

Qualifications:

Educational Qualification:

Bachelor's degree

in Computer Science, Information Technology, Electronics & Communication, or a related field.

Master's degree

is a plus.

Essential skills:

Key Skills:

AWS Cloud Networking:

+ VPC, Peering, Site-to-Site VPN, Internet Gateway, NAT Gateway, Security Gateway + S3 bucket networking and access control.

Cisco Technologies:

+ Cisco ASA / FTD / FMC / ISE (firewall design, migration, and policy management) + Routers, Cisco Nexus, and Catalyst switches
+ Routing & VPNs: Site-to-site VPN, Remote VPN, BGP, OSPF, EIGRP, NAT,VRF

Other Technologies

+ Basic knowledge on Linux command line. + Any Certification related network security plush point (CCNA, CCNP, CCIE)

Zero Trust & Secure Access:

+ Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA) + Cisco Zero Trust Access (ZTA) framework design and integration


Experience:

Experience:

5 - 8 years

Working mode:

Hybrid (4 days in office)