Network Security Engineer - Security Tech Tribe

Opis stanowiska

• Design, implement, and maintain secure network infrastructure (LAN, WAN, Wi-Fi) in alignment with industry best practices.
• Configure and manage network and security devices including firewalls, VPNs, IDS/IPS, and SSE platforms (e.g., Cisco ASA/FTD, Palo Alto, Fortinet, Zscaler).
• Monitor and analyze network traffic and security logs using SIEM platforms and tools such as Wireshark, NetFlow, and tcpdump.
• Ensure a high level of security through the application of Zero Trust Architecture, network segmentation, and Network Access Control (NAC).
• Implement and support DDoS protection solutions and load balancing technologies.
• Identify, assess, and respond to network-level threats, including conducting vulnerability scans and risk assessments.
• Ensure compliance with relevant standards and regulations (e.g., ISO 27001, NIST, DORA, GDPR).
• Participate in change management and patch management processes.
• Maintain a strong security mindset and stay updated on emerging cyber threats, attack vectors, and defensive mechanisms.

Oferujemy

Joining T-Mobile will offer you the space to develop yourself professionally and personally! You will join a team that is willing to share knowledge and is counting on you to do the same.

Wymagania

Technical Skills & Experience

• 3–5 years of hands-on experience in network and security engineering roles.
• Strong knowledge of network protocols, routing and switching, TCP/IP, UDP, BGP, OSPF, etc.
• Experience with SSE, firewalls, VPNs, IDS/IPS, and next-generation security appliances (e.g. Cisco ASA/FTD, Palo Alto, Fortinet, Zscaler).
• Ability to design, implement, and monitor secure network infrastructure (LAN/WAN/Wi-Fi).
• Familiarity with SIEM platforms, log analysis, and security monitoring tools.
• Knowledge of NAC (Network Access Control), DDoS protection, and load balancing technologies.
• Understanding of Zero Trust Architecture and network segmentation.
• Hands-on experience with network troubleshooting tools (Wireshark, NetFlow, tcpdump).

Security Mindset & Best Practices

• Deep understanding of cyber threats, network-based attack vectors, and defense mechanisms.
• Knowledge of relevant compliance standards (e.g. ISO 27001, NIST, DORA, GDPR).
• Ability to perform risk assessments, vulnerability scans, and incident response related to network-level threats.
• Familiarity with change management and patch management processes.

Nice to Have

• Experience in cloud networking security (AWS, Azure, GCP).
• Scripting knowledge (e.g. Python, Bash) to support automation tasks.
• Experience working in regulated industries (e.g. finance, healthcare, telecom).
• Exposure to OT/ICS security environments is a plus.