Job Title: Network Security Engineer – Vulnerability Management (Tufin & RSA).
Canary Wharf, UK
Long Term Contract (Inside IR35)
Hybrid (2 days a week)
Job Overview
We are hiring a Network Security Engineer with strong expertise in Vulnerability Management, network security, and remediation practices. The ideal candidate should have hands‑on experience with Tufin for firewall policy management and RSA Authentication Manager for secure access/authentication controls. The role involves identifying vulnerabilities, assessing risks, and driving effective remediation across enterprise environments.
Key Responsibilities
* Identify, analyze, and manage network and system vulnerabilities across the environment
* Understand vulnerability impact and recommend appropriate fixes, remediation, and mitigation strategies
* Work closely with infrastructure and security teams to ensure timely closure of vulnerabilities
* Manage and optimize Tufin (SecureTrack / SecureChange) for firewall policy visibility and orchestration
* Review and maintain firewall rulesets in line with security and compliance standards
* Support and administer RSA Authentication Manager for secure user access and authentication
* Perform risk assessments and prioritize vulnerabilities based on severity and business impact
* Troubleshoot network/security‑related issues tied to vulnerabilities and access controls
* Maintain documentation for vulnerabilities, remediation actions, and audit requirements
Required Skills & Experience
* Strong understanding of network security, vulnerabilities, and remediation techniques
* Hands‑on experience with Tufin (Firewall policy management)
* Experience with RSA Authentication Manager / Identity & Access Management tools
* Familiarity with vulnerability scanning tools like Qualys, Nessus, Rapid7
* Knowledge of network protocols, firewalls, VPNs, and secure access mechanisms
* Ability to interpret vulnerabilities and implement practical fixes and mitigations
* Good troubleshooting and collaboration skills
Preferred Qualifications
* Certifications such as CCNA / CCNP / Security+ / CEH
* Experience with multi‑vendor firewalls (Cisco, Palo Alto, Check Point)
* Exposure to compliance frameworks like ISO 27001, NIST, or CIS
* Basic understanding of Identity & Access Management (IAM) practices
#J-18808-Ljbffr