Endava is seeking an experienced Network Security Engineer to support the design, governance, and continuous improvement of enterprise network security architectures and controls across client environments.
This hands-on engineering role is responsible for defining secure network architecture patterns, security standards, and control baselines that protect enterprise networks, users, applications, and data. The role focuses on ensuring security is embedded within modern network architectures including hybrid environments, remote access platforms, cloud connectivity, and software-defined networking.
Working closely with Network Operations, Cloud Engineering, and Security Operations teams, the Network Security Engineer will ensure network security controls are designed, implemented, and governed effectively. The role also supports incident response, monitoring integration, and the continuous improvement of network protection capabilities aligned with modern threat landscapes.
Responsibilities:
- Define and maintain enterprise network security standards, policies, and reference architectures.
- Design secure-by-design network architectures including segmentation, DMZ patterns, secure remote access, and third-party connectivity models.
- Establish and maintain network security hardening baselines and configuration standards for network infrastructure.
- Govern firewall and network security control requirements including rule management standards, logging requirements, and review processes.
- Partner with network operations teams to ensure security controls are embedded into operational processes and infrastructure changes.
- Improve network visibility and monitoring by integrating network telemetry into security monitoring and detection platforms.
- Support incident response activities involving network infrastructure, providing technical guidance for containment and remediation.
- Identify and remediate network security vulnerabilities, misconfigurations, and policy exceptions based on risk and business impact.
- Maintain network security architecture documentation, including blueprints, diagrams, and configuration standards.
- Support secure connectivity requirements for third-party partners, suppliers, and cloud services.
- Contribute to network security tooling strategy and roadmap development across enterprise environments.