Analyst Security (Network Security Engineer )

We are seeking a highly skilled Security Administrator to join our growing IT Security team. This role is responsible for administering and supporting enterprise-grade email security systems, PKI infrastructure, web application firewalls (WAF), and certificate lifecycle management platforms. The ideal candidate will have hands-on experience with tools such as Checkpoint Harmony, Keyfactor, and Imperva WAF, and possess a solid understanding of Microsoft 365 mail routing, DNS TXT records, and external Certificate Authorities. 

Roles and Responsibilities 

Email Security 

• Administer and support enterprise email security platforms using Checkpoint Harmony. 

• Maintain and troubleshoot email security records such as DMARC, DKIM, and SPF. 

• Collaborate with O365 messaging teams to resolve mail delivery and routing issues. 

• Work closely with the Wintel/DNS teams to manage and troubleshoot DNS TXT records. 

Public Key Infrastructure (PKI) 

• Administer and support enterprise PKI infrastructure using Keyfactor. 

• Create and modify certificate workflows, templates, and custom reports in Keyfactor. 

• Manage and track certificate lifecycles to prevent service disruptions. 

• Support integrations for certificate automation via Keyfactor or similar tools. 

• Maintain CRLs and SCEP servers. 

• Resolve incidents related to PKI and certificates from all levels of the incident queue. 

Web Application Firewall (WAF) 

• Administer and support Imperva WAF platform. 

• Onboard and offboard websites to the WAF environment. 

• Troubleshoot web application issues related to WAF configurations. 

• Create, update, and tune WAF policies to ensure application availability and security. 

• Work closely with the Wintel/DNS teams to manage and troubleshoot DNS TXT records and CNAMES 

Skills and Qualifications 

Required: 

• 3+ years of experience in Network Security operations,  

• Proven expertise with Enterprise Email Security, PKI and WAF platforms 

• Strong understanding of Microsoft 365 mail flow, mail routing, and security policies. 

• Experience with Windows Server configuration for PKI  

• Experience or knowledge of external DNS records (SPF, DKIM, DMARC). 

• Proficiency with certificate management platforms like Keyfactor or Venafi. 

• Experience with external Certificate Authorities (e.g., GlobalSign, Entrust, DigiCert). 

• Hands-on experience with Microsoft PKI environments. 

• Familiarity with Content Delivery Networks (CDNs). 

• Experience working in mid to large enterprise environments. 

• Ability to work in a 24/7 operational environment. 

• Strong troubleshooting skills and experience with ServiceNow or similar ticketing systems. 

• Ability to write and maintain clear Standard Operating Procedures (SOPs). 

• Experience supporting compliance and audit initiatives (e.g., SOX, NIST CSF, PCI). 

• Ability to collaborate effectively with cross-functional teams and vendors. 

Preferred: 

• Bachelor’s degree in information technology, Cybersecurity, or related discipline  

• Certifications such as Checkpoint Harmony Endpoint Specialist R81.20 (CCES), Microsoft 365 Certified: Messaging Administrator Associate, Proofpoint Threat Protection Administrator 

• Experience with ServiceNow ITSM processes and workflow automation.