Engineering Manager

Engineering Manager – Network Security (Maersk)

A.P. Moller - Maersk

A.P. Moller – Maersk is the global leader in container shipping services. The business operates in 130 countries and employs over 80,000 staff globally. An integrated container logistics company, Maersk aims to connect and simplify its customers’ supply chains.We OfferJoining Maersk will embark you on a transformational journey with great opportunities for career development within a global organization. As a Network Engineering Manager, you will lead the network security team, developing world class network security products that enable our highly distributed global business for site, fleet, asset and IoT connectivity, required to deliver against our integrator business strategy. You will be exposed to a wide and challenging range of needs and opportunities requiring you to engage closely with stakeholders across all management levels within Maersk as you mature, evolve and operate our portfolio of network security capabilities to become world class.The BriefA globally focused shipping and transportation organisation is continuing to drive an ambitious and complex change and transformational programme to deliver a service of excellence for its customers and clients worldwide. The Global CTIO has a mandate from the Maersk board to lead the Technology transformation of Maersk which will enable the Maersk business strategy to become the global integrator of container logistics through digitising the Maersk business processes and customer engagement.The Technology function is fundamental to enable the company’s transformation and in response to this demand, our in-house technological capability is growing exponentially. We are recruiting world class talent to ensure that the technology services are modernised to enable Maersk to become a logistics integrator leveraging a competitive advantage through technology.Why this job matters?The

Core Network Engineering

function and product group is essential to our ongoing transformation. As a central component of Network Architecture & Engineering, it oversees the delivery of product roadmaps, technical vision, design quality, build processes, and L2-to-resolution in-life operations for core network platform and network security products and services provided to Maersk.Reporting to the Head of Core Network Engineering you will serve as an Engineering Manager for the

Network Security

product engineering team. This role is accountable for the

design, build, and L2/L3 in-life operation

of our

Next-Gen Firewalls, AAA, Zero Trust Network Access (ZTNA), Secure Service Edge (SSE), and partner/contractor access

products and capabilities provided to Maersk; including leadership of a team of Network Securuty Engineering and Operations specialists that underpin this function.It has a critical role to play as we continue to

develop our long-term multi-technology and multi-product network and network security capabilities

, connecting our asset, sites and people on land and at sea

.

Delivering best in class global connectivity and perimeter services that not only meet the need of our business today but will be a differentiator,enabling our colleagues and partners with technology solutions that are a catalyst for productivity and innovation.ScopeThe network security infrastructure safeguards all Maersk data networks across Core, Cloud, and Edge environments - including offices, warehouses, terminals, data centres, and co-location facilities. Protection is delivered through a comprehensive suite of network security products and services that both secure and enable these environments, including but not limited to:

• Next-Generation Firewalls (NGFW) and Intrusion Detection/Prevention Systems (IDS/IPS)
• Secure Web Gateway (SWG)
• Zero Trust Network Access (ZTNA) and Secure Service Edge (SSE) solutions
• Virtual Private Network (VPN) and SD-WAN edge security controls
• Secure partner and contractor access
• AAA infrastructure (RADIUS, TACACS+, NAC)
  

Specific Job Requirements
Lead the design, development, global delivery, and operations of secure, reliable, and automated network security products and services across our enterprise network that meet current and future business needs. The position involves collaborating across technical, security, and business teams to gather requirements, assess impacts, and agree on performance and customer experience standards. Key responsibilities include:

• Define and execute network security product roadmap, aligned with enterprise network strategy and zero-trust architecture.
• Own the design build, and run of network security products and services.
• Drive an automation-first operating model, using infrastructure-as-code, APIs, CI/CD pipelines, and self-service to eliminate manual work.
• Establish clear SLAs, SLOs, and service catalogs for network security offerings.
• Partner closely with Cyber Security teams to align policy and enforcement.
• Lead major lifecycle initiatives: VPN exit strategy, firewall policy standardization and modernization, on-premise SWG and SSE consolidation, and AAA automation.
• Lead agile engineering team to deliver prioritized features aligned with business demand, industry trends, and defect resolution.
• Manage incident response and problem management for network security domain, ensuring operational excellence and continuous improvement.
• Influence product/application design, infrastructure standards, and non-functional requirements.
• Act as a technical stakeholder and solution owner, maintaining strong coordination between architecture, engineering, and operations teams.
• Lead, mentor, and grow a global engineering team focused on innovation, quality, and accountability.
  

What I'll be doing – your accountabilities?

Network Security Engineering

– Design, engineering and operations of global network security infrastructure balancing the adoption of next generation technologies with mature solutions across Cloud, Edge, and Datacentres:

• Lead engineering teams that ensures network security product requirements are delivered to time, cost and quality. Ensure that products and capabilities are compliant with Maersk technology architecture standards and security policies, and easily consumed “As-a-Service” by other TSE products and the business.
• Drive and operate resilient services with measurable business uptime and performance.
• Maintain compliance with security policies, audits, and regulatory frameworks (e.g. Zero-Trust NIST 800-207).
• Build internal, external, and third-party supplier relationships to ensure full commitment and support in execution of the product architecture into operational designs.
• Provide subject matter expertise to delivery and L1 operational teams to guide deployment and in-life troubleshooting of converged networking and perimeter services.
• Establish and continuously improve operations processes to drive efficiency, lower operational costs, implement governance and controls to manage error budgets and consumption, and report on KPIs.
• Publish and maintain a service catalog for Network Security, with documented SLIs, SLOs, SLAs and ownership.
• Achieve 40%+ reduction in manual operations through automation and self-service capabilities.
• Reduce incident MTTR by 30% through proactive monitoring and AIOps integration.
• Plan and coordinate maintenance, while enfocing global consistency with secure configuration baselines and implementing proactive vulnerability management practices.
• Build a culture of learning, transparency, and excellence within the network security team.
  

The CandidateTo be considered for this opportunity, candidates will have the following core capabilities and technical expertise.

Core Capabilities

• A demonstrable track record operating as an Engineering Manger with 10+ years’ experience in network security design and enterprise cloud technology adoption in multi-vendor and or multi-MSP production environments in a globally focused business.
• Lead Engineer level credibility with hands-on experience within a systems integrator, enterprise with global footprint, network technology vendor or multi-national Corporations.
• Strong leadership in product engineering, combining design, operations, and automation disciplines.
• Strategic thinker who translates business needs into secure, scalable technical solutions.
• Self-starter, with a strong drive for results, taking accountability for significantly improved outcomes.
• You have a low ego attitude - willing to shift from high-level critical thinking, to rolling up your sleeves and supporting implementation.
• Skilled communicator who can lead globally distributed teams and influence stakeholders.
• Leadership in design and operations, with a track record of promoting diversity and creating an inclusive working environment.
  

Technical Expertise

• Demonstrated expertise in comprehensive network development, integration, and optimisation, as well as adherence to standards across Layers 1 through 7 of the OSI model, with proficiency in applying these skills within both physical and virtual environments.
• Deep experience with SSE platforms (Zscaler, Prisma Access, Netscope, etc.)
• Expertise in AAA infrastructure (RADIUS, TACACS+, NAC) and identity integrations.
• Proven track record with next-gen firewalls (Checkpoint, Firepower, Palo Alto, Fortinet, or equivalent).
• Hands-on proficiency with automation frameworks – Terraform, Ansible, Python, CloudFormation/ARM templates, REST APIs, CI/CD pipelines.
• Understanding of Zero Trust architectures (NIST 800-207), macro/micro segmentation, and secure network access patterns.
• Experience integrating with firewall assurance platforms (Firemon, Tufin, or similar).
• Knowledge in traditional network domains such as Routing & Switching, Load Balancers, Web Proxies, WAF, NTP/PTP and DDI.
• Practitioner understanding of cloud networking, cloud network security best practices, NFV, and hybrid WAN/Internet edge designs (incl SD-WAN).
  

Your Mindset

• Automation-First: You eliminate repetitive work through code, not tickets.
• Operational Excellence: You view reliability, observability, and speed of recovery as core design principles.
• Continuous Improvement: Every incident, review, or change drives learning and refinment.
• Customer-Focused: You think in terms of user experience – frictionless, secure services that enable productivity.
• Collaborative and Transparent: You partner openly with Cyber, Cloud, End-User and other infrastructure teams to deliver shared outcomes.
• Growth-Oriented Leader: You develop people, not just products, creating a culture of curiosity and ownership.
  

The Impact You’ll Make
Within 18 months, your leadership will:

• Deliver globally consistent network security products and services, serving all global Maersk locations.
• Embed automation and observability into every network security service.
• Simplify and standardize firewall, SSE, partner access, and AAA operationsl through self-service and APIs.
• Improve the reliability, resilience, and security posture of the global network.
• Position Network Architecture and Engineering as a trusted enabler of secure, seamless business connectivity– not just an infrastructure provider.
  

Maersk is committed to a diverse and inclusive workplace, and we embrace different styles of thinking. Maersk is an equal opportunities employer and welcomes applicants without regard to race, colour, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, pregnancy or parental leave, veteran status, gender identity, genetic information, or any other characteristic protected by applicable law. We will consider qualified applicants with criminal histories in a manner consistent with all legal requirements.
We are happy to support your need for any adjustments during the application and hiring process. If you need special assistance or an accommodation to use our website, apply for a position, or to perform a job, please contact us by emailing accommodationrequests@maersk.com.