Network Security II Engineer II

Network Security II Engineer II (Enterprise IT Manufacturing/OT)

Platforms: Palo Alto NGFW (Strata) Zscaler (ZIA/ZPA) F5 BIG-IP WAF (ASM/AWAF) ServiceNow
Shift: Flexible AMER EMEA or APAC time zones

Role Summary

Support day-to-day network security operations across enterprise IT and manufacturing/OT environments. Assist with firewall and cloud security policy support WAF monitoring/tuning and incident handling through ServiceNowwhile following change control and operational best practices.

Key Responsibilities

• Palo Alto NGFW
  • Support firewall policy administration (security rules NAT objects zones).
  • Review and analyze logs (Traffic/Threat/URL) for troubleshooting and investigations.
  • Assist with approved changes and documentation.
• Zscaler (ZIA)
  • Support secure access troubleshooting (policy blocks forwarding user access issues).
  • Review logs and partner with teams to resolve recurring issues.
• F5 BIG-IP WAF (ASM/AWAF)
  • Monitor WAF alerts and assist with the investigation of web threats.
  • Support WAF policy tuning to reduce false positives while maintaining protection.
  • Help onboard web applications behind the WAF (testing documentation).
• ServiceNow Incident Handling
  • Triage incidents document troubleshooting steps and drive tickets to resolution.
  • Escalate effectively and support post-incident follow-ups/knowledge articles.
• Enterprise IT Manufacturing/OT Support
  • Support segmentation and access controls for OT/plant environments.
  • Coordinate changes carefully to protect uptime safety and production continuity.

Required Qualifications

• 02 years of experience in network/security operations (or equivalent internship/lab experience).
• Strong fundamentals in TCP/IP DNS routing NAT and HTTPS/TLS.
• Hands-on familiarity with:
  • Palo Alto NGFW policy and logging
  • Zscaler policy concepts and troubleshooting
  • F5 BIG-IP WAF (ASM/AWAF) alert review and basic tuning/onboarding
  • ServiceNow incident workflow and documentation
• Clear communication skills and strong attention to detail.

Preferred Qualifications

• Exposure to manufacturing/OT security practices (e.g. Purdue model ISA/IEC 62443 concepts).
• Experience with SIEM tools and supporting SOC investigations.
• Scripting basics (PowerShell/Python) for troubleshooting/log parsing.
• Certifications (or working toward): PCNSA/PCNSE Zscaler certs F5 fundamentals.