5,396 Senior Network Security Engineer jobs in India

Job Description: Cisco ISE Expert

Experience: 6+ Years

Location: Mumbai (on-site)

Looking for candidates who can join only within Immediate - 30 days.

Job Summary:

We are looking for a Cisco ISE Expert with 6+ years of experience in network security and identity management to manage and support secure network access solutions. The ideal candidate will have hands-on expertise in Cisco ISE deployments, troubleshooting, and integration with enterprise environments.

Key Responsibilities

• Manage and support Cisco Identity Services Engine (ISE) configurations, policies, and deployments.
• Implement and maintain network access control solutions using 802.1X, RADIUS, and TACACS+ protocols.
• Perform daily monitoring, troubleshooting, and resolution of network access and security issues.
• Integrate Cisco ISE with external systems such as Active Directory and Certificate Authorities.
• Configure guest access, device profiling, posture assessment, and BYOD policies.
• Analyze and respond to security incidents involving network access.
• Assist in ISE software upgrades, patches, and version management.
• Create and maintain technical documentation and standard operating procedures (SOPs).

Required Skills:

• 6+ years of experience in network security with 3+ years of direct Cisco ISE administration and support.
• Strong understanding of AAA protocols (RADIUS, TACACS+) and 802.1X configurations.
• Experience integrating ISE with Active Directory and Public Key Infrastructure (PKI).
• Hands-on expertise with ISE profiling, posture assessment, and guest access.
• Proficient in troubleshooting network authentication and security issues.
• Good understanding of network protocols, switches, and wireless infrastructure.
• possess at least basic working knowledge of other security technologies like firewalls since they would occasionally be interacting with these security teams as well.

Preferred Skills:

• Cisco certifications such as CCNP Security, Cisco ISE Specialist, or equivalent.
• Familiarity with Cisco DNA Center and Software-Defined Access (SD-Access).
• Experience with scripting (Python, Ansible) for network automation.
• Knowledge of ITIL processes for incident, change, and problem management.

Educational Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, or a related field.

About the Company :

Headquartered in California, U.S.A., GSPANN provides consulting and IT services to global clients. We help clients transform how they deliver business value by helping them optimize their IT capabilities, practices, and operations with our experience in retail, high-technology, and manufacturing. With five global delivery centers and 1900+ employees, we provide the intimacy of a boutique consultancy with the capabilities of a large IT services firm.

Role: Network Security Engineer

Experience: 10+ Years

Work Location: Gurugram

We are seeking a highly skilled Network Security Engineer with strong experience in LAN & WAN Security with Cisco Identity Services Engine (ISE), and DDI Infoblox’s. The ideal candidate will be responsible for designing, implementing, managing, and troubleshooting secure and efficient enterprise networks while ensuring compliance with security policies.

Key Responsibilities:

• DDI Infoblox

Deploy, configure, and manage Infoblox DDI solutions (DNS, DHCP, IPAM).

Troubleshoot advanced DNS/DHCP/GRID issues and ensure service availability.

Implement security features (DNS Firewall, RPZ, Threat Protection).

Perform IPAM administration, capacity planning, and integration with network tools.

Handle L3 escalations, root cause analysis, and automation tasks.

Collaborate with network/security teams for DDI design and policy enforcement.

• Cisco ISE-NAC

Network Access Control (Cisco-ISE)

Deploy, configure, and manage Cisco ISE for NAC solutions.

Implement authentication/authorization policies (802.1x, MAB, posture).

Troubleshoot complex ISE, RADIUS, TACACS+ issues.

Integrate ISE with AD, PKI, Firewalls, WLC, and switches.

Support network access security, profiling, BYOD, guest access.

Handle escalations and perform root cause analysis.

• Security Compliance & Incident Response

Closure of vulnerability and security audits in sync with security Team.

Respond to and investigate network security incidents.

Ensure compliance with security frameworks and regulatory requirements.

• Collaboration & Documentation

Work closely with infrastructure, security, and application teams to deliver secure network

solutions.

Create and maintain technical documentation, network diagrams, and standard operating

procedures

Technical Expertise in:

• Cisco ISE: Policy configuration, profiling, BYOD, posture validation.
• Strong knowledge of NAC design, policies, and troubleshooting.
• Expertise in AAA, 802.1x, certificates, TrustSec/SXP.
• Strong expertise in DNS, DHCP, IPAM, and GRID architecture.
• Knowledge of DNSSEC, IPv6, Anycast, and redundancy models.
• Minimum 10-15 years of enterprise network on 7+ years of hands-on experience in enterprise network security and managing team

Relevant certifications preferred:

Cisco: Infoblox NIOS certifications / CCNP / equivalent preferred

CCNP Security

• Excellent troubleshooting and problem-solving skills.
• Strong written and verbal communication abilities.

Why choose GSPANN

“We GSPANNians” are at the heart of the technology that we pioneer. We do not service our customers, we co-create.

With the passion to explore solutions to the most challenging business problems, we support and mentor the technologist in everyone who is a part of our team. This translates into innovations that are path-breaking and inspirational for the marquee clients, we co-create a digital future with.

GSPANN is a work environment where you are constantly encouraged to sharpen your abilities and shape your growth path, We support you to become the best version of yourself by feeding your curiosity, providing a nurturing environment, and giving ample opportunities to take ownership, experiment, learn and succeed.

We’re a close-knit family of more than 1400 people that supports one another and celebrates successes, big or small. We work together, socialize together, and actively serve the communities we live in.

We invite you to carry forward the baton of innovation in technology with us.

At GSPANN, we do not service. We Co-create.

Discover your inner technologist - Explore and expand the boundaries of tech innovation without the fear of failure.

Accelerate your learning - Shape your career while scripting the future of tech. Seize the ample learning opportunities to grow at a rapid pace

Feel included - At GSPANN, everyone is welcome. Age, gender, culture, and nationality do not matter here, what matters is YOU

Inspire and Be Inspired - When you work with the experts, you raise your game. At GSPANN, you’re in the company of marquee clients and extremely talented colleagues

Enjoy Life - We love to celebrate milestones and victories, big or small. Ever so often, we come together as one large GSPANN family

Give Back - Together, we serve communities. We take steps, small and large so we can do good for the environment, weaving in sustainability and social change in our endeavors

We invite you to carry forward the baton of innovation in technology with us.

Let’s Co-create.

Profile Requirement

Job Role & Responsibilities

• To ensure optimal performance and reliability, develop and implement network designs, including topology, protocols, and network security measures.
• Regularly monitor network systems and proactively identify and resolve network issues to minimize downtime and ensure smooth operations.
• Implement and maintain network security measures, such as firewalls, intrusion detection systems, and access controls, to protect sensitive data from unauthorized access and cyber threats.
• Lead and manage a team of network professionals, providing guidance, training, and support to ensure they perform their roles effectively and efficiently.
• Maintain accurate and up-to-date documentation of network configurations, diagrams, processes, and procedures to facilitate troubleshooting, maintenance, and future network enhancements.
• Write business requirement document and define technical scope of work for successful execution of the project.
• Coordinate with various customer teams to understand overall requirement & trends in banking industry domain.
• Experience building network strategy for public/private cloud adoption and movement from on-premise to hybrid based networks.
• Have deep understanding of customer needs and design & recommend appropriate solutions.
• Experience working with IT and Network leadership to articulate network and/or compliance strategies and plans and in develop value based customer proposals.
• Ability to compose compelling, persuasive technical requirement document, solutions, scope of work, bill of material/quantity and commercial models that are passionate about addressing customer business/technical problems
• Understanding client business process operations and business objectives; utilize knowledge on engagements/ analyzing workflow to design solutions (As-Is and To-Be Analysis and Freezing).
• Understanding business environment of the client and positioning appropriate solution and articulating business values presentations.
• Demonstrated effectiveness across multipe technologies. Be independently able to lead, defining scope of work & service levels, technical specifications, bill of quantity/material.
• Client business requirements gathering and analysis, solution architecting, designing, deployment architecture, negotiation with OEMs/Vendors, technical compliance and Vendor Interlocks.
• Understanding nuances of OEM/Vendor platforms and solutions – hardware, software, licensing and ability to decide on a specific OEM/Vendor based on technical requirements and work with OEM/Vendors in finalizing solution components, prepare BoQ/BoM along with OEM/Vendor
• Ownership of change request and incidents to determine root cause.
• Identification and mitigate various security threats Maintaining internal IT System in adherence with policies and standards
• Play the role of verifier of configuration/architectural changes by other teams
• Responsible for resolving escalated issues and risks with firm mitigation plans and escalate outstanding issues if required
• Responsible for identifying needs for implementing new processes and analyse project trends to improve and optimize existing processes. Ensure both new and existing processes are being-followed.
• Ensuring that all the audits findings are closed within given time and providing proofs (that can be shown to the auditor) to the Bank
• Assisting the design team while designing the architecture for new branches such that all the security best practices are in place from day one.
• Ensuring that all the network devices are configured as per the Bank’s security policy, best practices to ensure Secured Network Architecture.
• Assisting Senior support tiers with project-based configuration and deployment work
• Offsite technical implementation, installation, and configuration of hardware when required
• All the escalations were done by L2 engineers.

Qualifications

• BE/B.Tech with 15-20 years of working as a network security engineer or solution architect for a Network services complany, with emphasis on Infrastructure services and deep knowledge in overall networking & security with emphasis on Data Center in banking industry.
• Experience in design & delivering network projects specifically in the area of DC/Cloud , Infrastructure security, and preferred experience in new deployment models and architectures such as SDN, Virtualization, Network security etc.

Certifications

Applicant should have professional certifications (or equivalent) – CCDP, CCDE, CCIE Data Center, CCIE Routing and Switching, CCIE Service Provider, Juniper JNCIE-DC Juniper JNCIE-SP

• Good to have any additional certifications related to network security such as Fortigate, Palo Alto, Checkpoint etc.
• TOGAF or ZACHMAN or SABSA Enterprise Architecture certification would be preferred.

Skills

• Good understanding of OSI layer, TCP/IP stack, TCP, UDP operation
• Good knowledge of multi-vendor network products - Switches, Routers, Firewalls & Load balancers
• Strong Understanding & hands on experience of Data Center Networking technologies – OTV, BGP EVPN, LISP, VXLAN, NVGRE, VPC, Spanning tree (MSTP), best practice Data Center Fabric designs, Etherchannel, Cisco FEX/Juniper Fusion, Policy based routing, SLB/GSLB (E.g., F5, Radware etc)
• Strong Understanding & hands on experience of DC network security stack – Firewalls, NGFW, Threat Protection (either Fortigate, Checkpoint, Cisco ASA, FTD)
• Understanding & hands on experience of SDN DC Networking concepts like Cisco ACI, Juniper Contrail.
• Understanding & hnds on experience of Fabric switching like Cisco Nexus 9000/7000/5000, Juniper QFX 5200/1000 series, Arista family etc.
• Migration of traditional DC Fabrics to SDN enabled such as Cisco ACI/Juniper Contrail.
• Understanding and Working knowledge on Layer 3 following technologies – IPv4, IPv6, ARP, Routing protocols - OSPF, BGP, Multicast, Layer-2 & 3 MPLS, AAA
• Good understanding on Datacenter Network Transformation
• Knowledge of virtualization, storage and data base technologies Hypervisor – ESXi, KVM, Virtual switches, SAN/NAS, SAP HANA.
• Understanding of various applications used in banking industry – CBS, UPI, IMPS, RTGS, SWIFT, LOC, LMS, etc.
• Working Knowledge of cloud technologies and solutions including public, private and hybrid cloud. Specific public cloud knowledge includes
• AWS concepts – VPC, Direct connect, Elastic storage S3, Amazon compute services EC2
• Azure Concepts – ExpressRoute, Azure Office 365, Familiarity of Azure compute services
• Good understanding of applications – HTTPS, SSL/TLS, FTP and network relation with applications
• Good understanding of business applications used in enterprise networks and network relevance to effective operation of business apps – Core Banking, ERP, CRM, e-mail, VC, real-timeus
• Good understanding of various enterprise market segments need of IT – SMB, large enterprise, government sectors and industry verticals – manufacturing, healthcare, bio-tech and pharmaceuticals, media, education, energy, BFSI, retail
• Working knowledge on system/network integration (SI/NI) capabilities
• Strong oral, written, communication, documentation and presentation skills
• Should have a strong business acumen to understand complex business requirements of different enterprise client
• Knowledge of ITIL concepts.
• Must have ability to support flexible schedule in support of 7x24 operations.

• Maintaining LAN, WLAN and architecture of the server as per the business policy
• As a precautionary measure, analyze and implement new security protocols for greater efficiency against any threat or malfunctions
• Implement a virus detection system beforehand for sound safety.
• Resolving the existing security issue including hardware malfunctions
• Tracking the vulnerable scripts to avert the potential threats
• Generating and maintaining the virtual private network, firewalls , web protocols and email security decorum.
• Reporting the security analysis of findings
• Maintaining the regulatory systems about ISMS policy (Information System Management Systems)
• Investigations of Security breach alert
• Developing the security authentication protocol
• Maintaining server and switches
• Maintaining & implementation of the SOP for Network security
• Status reports of hardware and software products as per designated policies.
• Supervising the installation of new software’s and hardware’s
• Recommend modifications in legal, technical and regulatory areas that affect IT security.
• Knowledge of performing routing protocols (MPLS, HAIPE/IP, QOS and WAN)
• Monitoring of web security gateways, perimeter security, network access controls, endpoint security

Effective Network Security

Assess Your Present Safety Level

Businesses usually are uninformed of how vulnerable their networks and data are to security dangers. By evaluating its existing level of security today, a corporation can develop the suitable Security approach for Future.

Categorize Your Resources

One of the primary things to get right with security resolutions is making the most of the assets you have while preparing sufficiently for the future. When assessing existing security stages, businesses must start by taking into description what A Network Security Engineer required to protect. Serious to this effort is to find out the number of stages, or layers, of defense a system requires.

Information Sharing

Data sharing is a vital step for encouraging workplace partnership inside and outside the corporation. For operative cybersecurity, accountable data-handling practices are requisite to find how shared information is controlled inside and outside of your establishment. We should have the following checklist for the security measures:

• Is internal data secure from outside interference?
• Do internal and external consumers need access to internal information to do their works?
• Can you regulate what consumers have access to the data?
• Can you allocate changed levels of the right of entry to different system handlers?

Get Ready For Next-Gen System Risk

The tools and techniques you choose to defend your network today should be ascendable so that your business should be covered with a single pack of security measures which can be scaled up whenever required. With an upsurge of next-gen, IT dangers creep around on the possibility; your security system should be able to match with the average security tests that future will bring.

Network Security Engineer Career

With the rise of continually evolving threats from hackers, one can see the adoption of IoT (Internet of things). As a network security engineer, IoT field also has a massive demand for the specialist. The demand for the employees is projected to rise to 6 million, worldwide by 2019, with an anticipated shortfall of 1.5 million. Possible future career paths are Security architect , security engineer, security manager, security consultant involved in networking systems.

With the help of performance & subject to organizational growth, you can be elevated to senior network security engineer.

Network Security Engineer Salary

According to Paysa ’s salary estimate, a Network Security Engineer earns an average of $89,215 per annum depending on their experience level and other factors in the United States. At times their job requires traveling from one site to other on demand of organization to oversee the replacement of obsolete equipment, installation of system architecture.

Nowadays, freelance network security engineers are also in much demand as A Network Security Engineer are readily available in the global freelance marketplace . An organization can reap the benefits by utilizing the freelancers keeping in mind the short term scope and cost-effectiveness, which can be a win-win situation for both.

browsing experience better. By using our web

Job Title: SME-Network Security (Cisco / Palo Alto / Meraki / Aruba / Fortinet / Sophos)

Company: SHI | LOCUZ

Location: Hyderabad

Experience: 8+ Years

Work Mode: On-site | 24x7 Support (Rotational Shifts)

Level: L3 – Managed Services

Job Description:

We are hiring a Senior Network Engineer (L3) to join our growing team at SHI | LOCUZ. This is a high-impact role responsible for designing, implementing, managing, and troubleshooting complex network infrastructures within a Managed Services environment.

Key Responsibilities:

• Design and deploy scalable and secure network solutions
• Install, configure, and support enterprise-level network hardware/software
• Monitor, troubleshoot, and optimize network performance (L3 level support)
• Ensure network availability and security for mission-critical systems
• Work closely with L1/L2 support teams and coordinate with OEM/vendor support
• Maintain documentation for all network changes and configurations
• Collaborate with internal IT and security teams
• Stay up to date with the latest networking technologies and best practices

Technical Skills Required (at least two L3 level):

• Cisco Security / Cisco Meraki
• Palo Alto
• Aruba
• Sophos
• Fortinet
• Juniper / Mist (preferred)

Must-Have:

• Minimum 8 years of relevant experience in network engineering
• Hands-on experience in a Managed Services environment
• Strong analytical and troubleshooting skills
• Willingness to work in 24x7 support shifts
• Excellent communication and coordination skills

Preferred Certifications:

(CCNP, PCNSE, NSE, Fortinet, Aruba Certified, or similar)

Why Join Us?

• Work with cutting-edge technologies
• Be part of a growing team delivering enterprise-grade solutions
• Opportunity for growth in a dynamic and supportive work environment

Apply Now if you're ready to take your networking career to the next level!

*Looking for those with a 30-day notice period or less!*

Pay Range: 15 - 27 LPA (INR)

Senior Network Engineer with expertise in network architecture and cybersecurity.

Proven ability to manage cloud services and optimize networking systems, resulting in enhanced performance. Recognized for strong problem-solving skills and effective collaboration, consistently achieving high productivity and efficient task completion. The main task of this team is to automate the cloud network security applications, understanding what applications in the cloud are getting onboarded, creating a pattern for that and then automating and deploying them using Terraform.

Demonstrated proficiency in designing and managing secure and scalable network architectures within AWS, Azure, and GCP. Specifically, experienced with: AWS VPCs, Azure Virtual Networks, GCP VPCs, including subnetting, route table configuration, and network security groups. Implemented and managed cloud-based VPNs, direct connect/ExpressRoute/Cloud Interconnect, and cloud firewalls to ensure secure hybrid cloud connectivity and protect cloud resources.

Preferred Technical Skills

• Network Technologies : LAN/WAN Architecture, TCP/IP, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP, SDN, SD-WAN (Cisco Viptela, Versa), Spine-Leaf Architecture, VXLAN, EVPN, ACI
• Cloud Computing and Automation : AWS, Microsoft Azure, GCP, Cisco Meraki, Terraform, Ansible, Python scripting (Jinja2 templates)
• Security Technologies : PAP, CHAP, Zero Trust (Zscaler), Blue Coat, Sourcefire IDS/IPS, Palo Alto Wildfire, Threat Prevention, SSL Decryption
• Public Cloud : AWS and GCP
• Network Management and Monitoring : Wireshark, Infoblox, Cisco Prime, Micro Focus NNMi, SolarWinds, Network Performance Monitor (NPM), Splunk, FortiMonitor, Log Analysis
• Operating Systems : Windows Server, Linux, Cisco IOS, IOS XR
• Firewalls : Cisco ASA, Palo Alto, Fortinet FortiGate, Checkpoint, Juniper SRX, Zscaler
• Automation Tools: Terraform

Experience : 4 – 10 Years

Work Location : Hyderabad

Work Mode : Work from Office

Primary Skills :

• Routing & Switching : Strong understanding of L2/L3 networking
• Load Balancers/WAF : Hands-on experience with A10 , F5 , Citrix NetScaler
• Firewalls : Working knowledge of FortiGate , Palo Alto , Cisco ASA , Checkpoint
• Switches : Configuration and troubleshooting on Dell and Cisco switches
• Virtualization Networking : VMware Networking concepts
• Cloud Networking :
• Azure : VNet, Peering, NSG, UDR, VPN (S2S/P2S), Load Balancer, ExpressRoute, App Gateway (WAF), CDN, Azure Firewall, DDOS, DNS, Azure Virtual WAN, Front Door, Bastion, NVA, Network Watcher
• AWS , OCI , GCP : Exposure to networking services on these platforms

Job Responsibilities :

• Design and implement complex network architectures and cloud network solutions
• Actively troubleshoot and resolve customer issues related to on-prem and cloud networks
• Plan and execute deep-dive technical activities and lead network-related projects
• Manage and close support cases efficiently using internal ticketing systems
• Ensure SLA compliance, incident lifecycle management, and knowledge base contributions
• Drive process improvement and maintain documentation in the central repository
• Participate in on-call support rotation
• Collaborate cross-functionally to align network infrastructure with business needs
• Mentor team members and share technical knowledge through how-to guides and meetings

Requirements :

• Hands-on experience in routing, switching , and firewall/load balancer technologies
• Strong background in hyperscale cloud networking (Azure mandatory; AWS, OCI, GCP desirable)
• Exposure to ITIL practices ; ITIL certification is a plus
• Experience working with ticketing tools and monitoring systems
• Excellent communication and presentation skills
• Ability to handle client interactions , understand requirements, and suggest solutions
• Must be self-driven , proactive, and capable of managing deadlines

Certifications (Preferred) :

• Cisco CCNP (preferred) or multiple CCNA certifications
• CCIE (desirable)
• Azure / AWS certifications are an added advantage
• ITIL Foundation certification

About the Role

As a Network Security Engineer focused on Zscaler technologies, you will manage, deploy, and optimize Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) platforms, alongside other network and security infrastructure. You’ll help secure both cloud and on‑prem environments, ensuring seamless operations and strong security posture.

Experience & Technical Skills

• 4–9+ years of network or security engineering experience with at least 2 years hands-on with Zscaler platforms (ZIA, ZPA, SIPA) .
• Proven expertise in managing network devices like Cisco Meraki, Palo Alto firewalls, IDS/IPS, Meraki networking, and proxy systems.
• Strong foundational knowledge in networking : VPN, routing (BGP/OSPF), DNS, LAN/WAN, IPsec, GRE, and cloud networking (AWS VPCs, security groups, NACLs).
• Scripting and automation (Python, Bash, Terraform, Ansible, IaC tools) are beneficial.