Job Description:We are seeking a highly skilled and experienced Senior Network Security Engineer with deep expertise in Fortinet security solutions to lead and enhance our cybersecurity infrastructure. This role involves designing, implementing, and maintaining advanced security systems, mentoring junior engineers, and ensuring the highest standards of network protection in a dynamic Telco environment. Key Responsibilities:Lead the design, deployment, and optimization of Fortinet security solutions including FortiGate, FortiAnalyzer, FortiManager, FortiMail, FortiNAC, FortiAI, FortiSandbox, and FortiWeb including NDR, AntiDDOS technology.Architect and manage complex firewall environments with VDOMs, HA, SD-WAN, NAT, and VPN technologies (Dialup, IPsec, Remote IPsec, SSL VPN).Oversee network monitoring and reporting using FortiAnalyzer and FortiManager; deliver actionable insights and executive-level reports.Perform and supervise firmware upgrades, patches, and backups across Fortinet devices.Conduct advanced troubleshooting and root cause analysis for network security incidents, including packet-level diagnostics using Wireshark.Configure and manage dynamic routing protocols such as BGP, including route maps and ACLs.Implement Zero Trust Network Access (ZTNA) strategies and web application security profiles.Design and manage proxy and reverse proxy architectures for secure web traffic.Utilize network sniffing and traffic analysis tools for proactive threat detection and response.Integrate and operate NDR for behavioral analytics and threat intelligence.Ensure compliance with internal security policies and external regulatory standards.Maintain and review detailed documentation for configurations, incidents, audits, and infrastructure changes.Stay abreast of emerging cybersecurity threats, technologies, and best practices.Interpret and contribute to High-Level and Low-Level Designs (HLD/LLD) for enterprise infrastructure.Mentor junior engineers and contribute to team knowledge sharing and skill development.

Real-Time “eyes on glass” Monitoring security alerts from SIEM tools and log management systems, identifying potential threats and anomalies.Conduct initial triage on security incidents, gathering relevant information to assess the severity and potential impact.Performing triage of incoming alerts (initial assessing the priority of the event, initial qualification of incident to determine risk and damage)Document incidents and responses in a detailed manner, creating a clear record of events for future analysis and reporting.Collaborate with L2 and L3 analysts to escalate incidents that require advanced investigation or specialized expertise.Perform regular vulnerability assessments, scanning systems and networks to identify weaknesses and recommend remediation steps.Stay updated on the latest cybersecurity threats and trends, sharing insights with the team to enhance overall security posture.Assist in the development and maintenance of incident response plans, ensuring readiness for potential security breaches.Participate in security training and awareness programs, educating end-users on best practices to prevent security incidents.Utilize threat intelligence feeds to enrich alerts and enhance the detection of emerging threats.Support compliance and auditing efforts by ensuring security measures align with industry standards and regulatory requirements.Provide remediation/countermeasure recommendations, if applicableAdjust alert prioritization options based on security incident criticalityShould be able to work in shifts 24x7

Real-Time “eyes on glass” Monitoring security alerts from SIEM tools and log management systems, identifying potential threats and anomalies.Conduct initial triage on security incidents, gathering relevant information to assess the severity and potential impact.Performing triage of incoming alerts (initial assessing the priority of the event, initial qualification of incident to determine risk and damage)Document incidents and responses in a detailed manner, creating a clear record of events for future analysis and reporting.Collaborate with L2 and L3 analysts to escalate incidents that require advanced investigation or specialized expertise.Perform regular vulnerability assessments, scanning systems and networks to identify weaknesses and recommend remediation steps.Stay updated on the latest cybersecurity threats and trends, sharing insights with the team to enhance overall security posture.Assist in the development and maintenance of incident response plans, ensuring readiness for potential security breaches.Participate in security training and awareness programs, educating end-users on best practices to prevent security incidents.Utilize threat intelligence feeds to enrich alerts and enhance the detection of emerging threats.Support compliance and auditing efforts by ensuring security measures align with industry standards and regulatory requirements.Provide remediation/countermeasure recommendations, if applicableAdjust alert prioritization options based on security incident criticalityShould be able to work in shifts 24x7

Job Title: SIEM/SOAR/TIP Admin Job Code: GPA_SOC-0005Function: Administration & Engineering, Reporting to: CSC Lead, Coverage: 8x5 and on-callDescription:The Administration function is responsible for leading the staging, implementation, deployment,management and tuning of the SIEM, SOAR and TIP Platforms, as well as log sources andcontextual enrichment data integration with coordination with CSC teamsResponsibilities:• Integrate new security solution/devices into the CSC environment. This includes creation ofcustom parsers for log sources.• Configuration, management, performance & capacity monitoring and tuning of TIP, SIEM andSOAR platforms• Creation, Deployment and tuning SIEM Use Cases and Rules• Creation, Deployment and tuning SOAR integrations and playbooks• Manage SIEM log sources on-boarding, deployment, configuration & troubleshooting• Verify data collection and log continuity and act to solve any log continuity problem• Manage user access including user and group permissions updates for TIP, SIEM and SOAR platforms• Provide problem determination / problem source identification for the CSC platforms• Patching, upgrading, and full system maintenance lifecycle• Open support tickets to CSC technology vendors when required and ensure support issues are resolved

Job Title: SIEM/SOAR/TIP Admin Job Code: GPA_SOC-0005Function: Administration & Engineering, Reporting to: CSC Lead, Coverage: 8x5 and on-callDescription:The Administration function is responsible for leading the staging, implementation, deployment,management and tuning of the SIEM, SOAR and TIP Platforms, as well as log sources andcontextual enrichment data integration with coordination with CSC teamsResponsibilities:• Integrate new security solution/devices into the CSC environment. This includes creation ofcustom parsers for log sources.• Configuration, management, performance & capacity monitoring and tuning of TIP, SIEM andSOAR platforms• Creation, Deployment and tuning SIEM Use Cases and Rules• Creation, Deployment and tuning SOAR integrations and playbooks• Manage SIEM log sources on-boarding, deployment, configuration & troubleshooting• Verify data collection and log continuity and act to solve any log continuity problem• Manage user access including user and group permissions updates for TIP, SIEM and SOAR platforms• Provide problem determination / problem source identification for the CSC platforms• Patching, upgrading, and full system maintenance lifecycle• Open support tickets to CSC technology vendors when required and ensure support issues are resolved

We are looking for Senior Project Manager✓ Define project scope and oversee project execution through the project life cycle using project management methodology.✓ Timely and accurately update projects/programs status, cost and invoicing details using the relevant project tools.✓ Identify, track and resolve project issues using best practice problem-solving techniques.✓ Develop weekly and monthly projects status reports.✓ Delegate and/or escalate tasks and responsibilities to the appropriate individuals at the right time.✓ Develop and manage project schedule and milestone using MS project.✓ Manage multiple projects simultaneously.✓ Managing programs with multiple schedules simultaneously.✓ Contribute at the weekly invoicing forecast report in sync with the finance and collections teams.✓ Follow the organizational process to assure project delivery with quality.✓ Contribute in developing processes, forms and templates for ISO 9001, and participate/assist with the internal ISO audit.

We are looking for Project Manager (PMP Certified)• Project Planning and Execution: Develop detailed project plans, including scope, timeline, resources, and budget. Manage and oversee the implementation of EDR/XDR solutions, ensuring project milestones are met.• Stakeholder Management: Act as the primary point of contact for all project-related communications. Collaborate with stakeholders to define project requirements and deliverables, and ensure alignment with organizational goals.• Risk Management: Identify potential risks and issues related to the project. Develop and implement mitigation strategies to address and resolve them.• Team Leadership: Lead and motivate project teams, ensuring effective collaboration and communication. Assign tasks, track progress, and provide support to team members.• Quality Assurance: Ensure that project deliverables meet quality standards and comply with industry best practices and organizational policies.• Budget and Resource Management: Monitor project budgets and expenditures. Allocate resources efficiently and ensure that project costs remain within budget.• Reporting: Provide regular project status updates to senior management and stakeholders. Prepare and present reports on project performance, challenges, and outcomes.• Continuous Improvement: Identify opportunities for process improvements and implement best practices to enhance project efficiency and effectiveness.

Description:The Cyber Security Center Operation Manager has direct technical responsibility of the Cyber Security Center operations. The objective is to monitor and continually improve the service quality and achieve and exceed the quality and timeliness metrics. The Cyber Security Center Operations Lead coordinates and leads the response with client response groups. Cyber Security Center operations manager evaluates the provided SecOps services, monitoring, detection and response services through the development of periodic reports and dashboard. Supervisory responsibilities include monitoring performance, coaching for improvement, and providing feedback to CSC team members. Cyber Security Operations manager adheres to policies and procedures and creates strategies to enhance cyber security status and drive quality and performanceResponsibilities:• Lead the Cyber Security Center services and capabilities• Lead the escalation and response of security incidents• Lead the escalation and response of SecOps performance and availability incidents• Drive the request fulfilment and change management process for SecOps• Drive the response procedures in order to minimize the impact of identified threats and align them with deployed use cases• Oversee the activities of the provided service, ensuring that activities of the SecOps and CSC are performed in according to defined scope, and security best practices.• Provide information and tactical guidance during incidents• Evaluate existing technical capabilities and systems and identify opportunities for improvement• Manage and deliver reports, dashboards, metrics, SLAs, KPI’sQualification:• Excellent people-management skills• Ability to work in a high stress environment• Previous experience in managing SOC environment• Knowledge of SIEM, SOAR and TIP• Understanding of service-related performance metrics• Strong analytical and problem-solving skills• Effective verbal and written communication skillsExperience:• Between 8 to 15 (6-10 Experience on SOC Manager Role)