Senior Security Engineer (NGFW, PAM & Endpoint Security)

Help AG is looking for an experience Senior Security Engineer (NGFW, PAM & Endpoint Security) who will design, implement, and manage centralized Palo Alto and Fortinet firewall architectures, endpoint security solutions, and security operations. The ideal candidate will have hands-on experience with McAfee Endpoint Security, CyberArk PAM solutions, and a solid understanding of security concepts and best practices in alignment with corporate governance and compliance standards.

Responsibilities

• Design and deploy a centralized firewall management platform for both physical and virtual firewalls, including Palo Alto and Fortinet firewalls.

• Integrate with enterprise network topology across data centres, cloud environments, and remote sites.

• Implement high-availability clusters, redundancy, and disaster recovery configurations to ensure business continuity and operational resilience.

• Migrate and consolidate firewall rules into a unified policy framework, including for Palo Alto and Fortinet platforms.

• Develop standardized security policies in compliance with corporate governance and regulatory requirements (e.g., ISO 27001, NIST).

• Implement role-based access control (RBAC) for secure, auditable policy administration across multiple firewall platforms.

• Enable automated workflows for firewall rule provisioning, approvals, and decommissioning across Palo Alto and Fortinet firewalls.

• Integrate with ITSM platforms (e.g., ServiceNow) for seamless change management, ensuring compliance and consistency.

• Conduct scheduled compliance audits and automated policy validation to reduce human error and prevent security violations.

• Manage centralized log aggregation for Palo Alto, Fortinet, and other firewall instances.

• Integrate firewall logs with SIEM platforms for real-time threat detection and event correlation.

• Develop and deploy dashboards for operational visibility, performance metrics, and compliance reporting.

• Ensure enforcement of corporate security standards and regulatory mandates (e.g., ISO 27001, NIST, local regulations).

• Oversee vulnerability assessments, patch management, and configuration hardening for Palo Alto, Fortinet, and other security infrastructure.

• Maintain comprehensive documentation and audit trails for risk management and governance purposes.

• Support security operations by managing tickets related to firewall incidents, configurations, and requests.

• Act as an architect to review and approve ticket resolutions, ensuring compliance with security policies and best practices for Palo Alto and Fortinet firewalls.

• Administer McAfee Endpoint Security across the enterprise, ensuring consistent deployment and compliance with organizational security standards.

• Conduct regular audits to ensure endpoints are secured and compliant.

• Implement and manage CyberArk PAM solutions for securing and controlling access to critical systems and applications.

Qualifications & Skills

• Bachelor’s Degree in Computer Science, Information Security, or a related field.

• Minimum 5-7 years of experience in information security, firewall management, and security operations, with hands-on experience in managing Palo Alto and Fortinet firewalls.

• Hands-on experience in deploying and managing Palo Alto, Fortinet, and other firewall solutions, including centralized management platforms and high-availability configurations.

• In-depth knowledge of McAfee Endpoint Security and its integration within an enterprise security framework.

• Familiarity with CyberArk PAM solutions for privileged access management.

• Strong understanding of regulatory mandates such as ISO 27001, NIST, and local compliance requirements.

• Experience in automating security processes, including firewall rule provisioning and change management.

• Proficiency in integrating firewalls (including Palo Alto and Fortinet) with SIEM platforms for threat detection and analysis.

• Ability to analyze security incidents and develop remediation strategies.

• Experience with ServiceNow or other ITSM platforms for managing security change requests and incidents.

• Certifications: CISSP, CISM, Palo Alto PCNSE, Fortinet NSE, or relevant firewall/security certifications.

• Familiarity with cloud platforms (AWS, Azure) and their integration with firewall and endpoint security solutions.

• Deep understanding of network protocols, IP routing, and security best practices.

• Ability to collaborate with cross-functional teams and provide clear, actionable reports to senior management.

Benefits

• Health insurance with one of the leading global providers for medical insurance.

• Career progression and growth through challenging projects and work.

• Employee engagement and wellness campaigns activities throughout the year.

• Excellent learning and development opportunities.

• Annual flight tickets to home country.

• Inclusive and diverse working environment.

• Flexible/hybrid working environment.

• Open door policy.

About Us

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses across the Middle East with strategic consultancy combined with tailored information security solutions and services that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and maintaining its focus on all aspects of cybersecurity.

With best of breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.