Network Security Engineer

As a Network Security Engineer within our Cybersecurity and Digital Risk Management (CDRM) Organization, you will be responsible for assisting with the evaluation, design, and implementation of various network security capabilities enablement such as applying segmentation (micro-macro segmentation) aligned to Zero Trust Architecture practices, supporting enhancements of firewall configuration and policy change management processes, and collaborating directly with our IT partners to deliver planned outcomes aligned to cybersecurity threat and risk mitigation priorities Key Responsibilities Evaluate and partner with IT networking teams to design and implement appropriate network security controls, focusing on the application of network segmentation (micro and macro) aligned with Zero Trust Architecture Assist with the baselining, hardening, and standardization of our enterprise firewall configurations to ensure consistency and maintain least-privilege policy management Participate in the deployment of key technical capabilities, including ring-fencing and micro-segmentation software solutions (eg Illumio or Akamai Guardicore), Network Security Policy Management (NSPM) platforms, and Security Service Edge (SSE) for Zero Trust Network Access (ZTNA) Collaborate directly with IT partners to deliver outcomes focused on reducing cybersecurity risk, including supporting policy change management processes and incident containment efforts Provide technical expertise and guidance on essential network security controls, including intrusion protection, detection, and other related capabilities About You You possess expert-level knowledge in network security tools and platforms, with a focus on supporting and aligning to Zero Trust principles You have practical, hands-on experience leading large-scale enterprise firewall deployments, enabling Zero Trust Network Access (ZTNA), and defining and implementing network segmentation standards and practices You are capable of working independently to manage and deliver complex, high-impact projects effectively in a fast-paced environment You demonstrate strong communication skills, effectively adapting your style and content to suit diverse technical and non-technical audiences You are willing to authentically challenge team members and stakeholders, providing constructive input when necessary to drive better outcomes You will be responsible for Driving tactical actions for network security priority outcomes Guiding implementation of protective controls and standardization Staying informed on Zero Trust Architecture and best practices Recommending automation to streamline workflows and reduce complexity Collaborating across HPE and partnering with our IT network team to deliver project priorities Providing actionable insights and challenging the status quo constructively Supporting the need and solutioning for continuous monitoring and adaptive access policies based on threat & risk context and conditions Assisting with developing metrics to measure and communicate progress or gaps Developing and maintaining deployment diagrams, SOPs, and documentation Education & Experience Bachelors degree in Cybersecurity, IT, Computer Science, or equivalent experience 57 years in cybersecurity, focusing on network security best practices Proven knowledge in network design, routing protocols eg eBGP, TCP/IPv4/v6, firewall management, SSE solutions, ZTNA, and Zero Trust Architecture Experience with Network Security Policy Manager (NSPM) solutions, micro/macro segmentation, conditional access and adaptive policies aligned to threat & risk context of assets and workloads connected to the network Preferred Experience with Ansible, Python, and scripting for automation Desired certifications: CISSP, CompTIA Security+, Zscaler Digital Transformation Administrator/Engineer Additional Skills Accountability, Accountability, Action Planning, Active Learning, Active Listening, Agile Methodology, Bias, Business, Coaching, Creativity, Critical Thinking, Cybersecurity, Data Analysis Management, Data Collection Management (Inactive), Data Controls, Design Thinking, Development Methodologies, Empathy, Follow-Through, Growth Mindset, Implementation Methodologies, Infrastructure Design, Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity {+ 4 more} What We Can Offer You Health & Wellbeing We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing Personal & Professional Development We also invest in your career because the better you are, the better we all are We have specific programs catered to helping you reach any career goals you have whether you want to become a knowledge expert in your field or apply your skills to another division Unconditional Inclusion We are unconditionally inclusive in the way we work and celebrate individual uniqueness We know varied backgrounds are valued and succeed here We have the flexibility to manage our work and personal needs We make bold moves, together, and are a force for good Let's Stay Connected Follow @HPECareers on Instagram to see the latest on people, culture and tech at HPE #india #cybersecurity Job Information Technology Job Level TCP_04 HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer We do not discriminate on the basis of racegender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together Please click here: Equal Employment Opportunity Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories No Fees Notice & Recruitment Fraud Disclaimer It has come to HPEs attention that there has been an increase in recruitment fraud whereby scammer impersonate HPE or HPE-authorized recruiting agencies and offer fake employment opportunities to candi These scammers often seek to obtain personal information or money from candi Please note that Hewlett Packard Enterprise (HPE), its direct and indirect subsidiaries and affiliated companies, and its authorized recruitment agencies/vendors will never charge any candi a registration fee, hiring fee, or any other fee in connection with its recruitment and hiring process The credentials of any hiring agency that claims to be working with HPE for recruitment of talent should be verified by candi and candi shall be solely responsible to conduct such verification Any candi /individual who relies on the erroneous representations made by fraudulent employment agencies does so at their own risk, and HPE disclaims liability for any damages or claims that result from any such communication