Networking & Endpoint Security Lead at Vector Logistics

Job Purpose

• Vector Logistics, a leading name in the logistics industry, is seeking a Networking and Endpoint Security Lead to join our team. The Networking and Endpoint Security Lead plays a pivotal role in ensuring the stability, integrity, and security of the organization’s network infrastructure and endpoint devices. This leadership role encompasses both day-to-day network operations and long-term strategic IT initiatives, including digital transformation and secure IT growth. Reporting to the Service Delivery Manager, the Lead will guide the design, review, and approval of network architecture, manage advanced firewall technologies, and serve as the primary point of contact with key service providers.

Key Responsibilities

• Network Operations:
• Manage the day-to-day operations of the network infrastructure, ensuring high availability, reliability, and performance.
• Monitor network performance and troubleshoot issues related to WAN, LAN, VPNs, access points, and firewalls.
• Oversee IP address management, DNS configurations, and the implementation of network standards, policies and procedures.
• Ensure the timely and accurate execution of routine network maintenance, including backups, patch management, and firmware updates for networking equipment.
• Collaborate with the IT support team to resolve network-related issues and provide guidance on network-related queries and incidents.
• Maintain all User Requirements Specification, As is and To Be Design specifications, Work Instructions, Processes, Policies, Technical Standards and As Built documentations for network infrastructure services.
• Maintain consistent network infrastructure configuration in relation to agreed standards and policy guidelines.
• Develop and regularly test the disaster recovery plans for all network infrastructure services based on an agreed yearly schedule.
• Firewall Management and Security Technologies:
• Lead the management and configuration of firewalls, including Next-Generation Firewalls (NGFWs), to protect the organization’s network perimeter.
• Develop, implement, and maintain firewall rules, ensuring that access controls are aligned with security policies and business needs.
• Oversee the deployment and management of Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS), ensuring they are effectively identifying and mitigating threats.
• Ensure the proper integration of firewall management with other security tools and platforms, including endpoint security and network monitoring solutions.
• Strategic Network Security Management:
• Lead the design, implementation, and management of secure network infrastructure, focusing on critical areas such as firewalls, VPNs, DNS, IP address management, and VOIP systems.
• Develop and maintain a comprehensive network security strategy that aligns with business objectives and supports digital transformation initiatives.
• Oversee the hardening of perimeter security, ensuring robust protection against external threats.

Cloud Networking and Security:

• Lead the design, configuration, and management of cloud networking solutions, including Virtual Private Clouds (VPCs), cloud-based firewalls, and associated security controls.
• Ensure that security by design principles are integrated into all cloud solutions, aligning with the organization's hybrid cloud strategy and regulatory requirements.

Endpoint Security Management:

• Develop and enforce endpoint security policies to protect organizational devices, ensuring that all endpoints are monitored and secure.
• Oversee the deployment, configuration, and management of endpoint security solutions, ensuring proactive detection and mitigation of threats.

Security Architecture and Design:

• Fulfill a senior role in designing, reviewing, and approving network architecture, ensuring alignment with security by design principles.
• Provide strategic input and leadership in the implementation of new IT systems and services, ensuring that security considerations are fully integrated.

Incident Response and Management:

• Lead the incident response process for network and endpoint security incidents, ensuring swift and effective resolution.
• Conduct root cause analysis of security incidents and implement corrective measures to prevent future occurrences.
• Manage Root Cause Analysis for Priority 1 and/or Priority 2 reoccurring incidents that may result in a Problem.
• Compliance and Risk Management:
• Ensure that all network, cloud, and endpoint security practices comply with relevant regulations and frameworks, such as GDPR, POPIA, and SOX.
• Conduct security risk assessments, developing and implementing mitigation strategies to address identified risks.
• Infrastructure Management and Patching:
• Oversee the proactive patching and updating of all networking equipment, including firewalls, routers, and switches, to ensure they are up-to-date and secure.
• Manage DNS and IP address configurations, ensuring they meet security standards and best practices.
• Vendor Management and Collaboration:
• Act as the single point of contact with key service providers, ensuring effective communication and alignment with the organization’s security and operational standards.
• Collaborate with vendors to ensure that all network and security services meet the required service levels and support the organization's objectives.
• Continuous Improvement and Strategic Contribution:
• Lead initiatives aimed at continuously improving security processes, tools, and methodologies, ensuring the organization remains at the forefront of security best practices.
• Contribute to the organization’s strategic IT goals, particularly in areas of digital transformation and innovation, by providing expert guidance and leadership.
• Team Leadership and Development:
• Mentor and support junior IT staff, facilitating cross-training and knowledge sharing to build internal capabilities and resilience within the team.
• Work closely with other IT teams, ensuring that security considerations are fully integrated into all IT operations.

Qualifications, Skills and Experience Required for the Job

Qualifications and Experience

• Education: Bachelor’s degree in Computer Science, Information Technology, or a related field. A Master’s degree is preferred.
• Certifications: Relevant certifications such as CISSP, CISM, CEH, CCNP Security, CompTIA Security+, or similar.

Experience:

• 7+ years of experience in network security and endpoint security.
• Extensive experience with firewall management, including configuration and rule management for Next-Generation Firewalls (NGFWs).
• Proven experience with Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS), including their deployment and management.
• Strong hands-on experience with network management and monitoring tools, including SolarWinds.
• Proficiency with Cisco Meraki, SD-WAN, WAN, MPLS, VRF, BGP, and VOIP systems.
• Experience with cloud networking, including VPCs, cloud firewalls, and Firewall Access Control Lists (ACLs).
• Experience in integrating security by design principles into network and cloud architecture.
• Strong knowledge of DNS and IP address management, network protocols, routing, and switching.

Skills and Competencies

• Technical Proficiency: Deep understanding of networking and security technologies, with a focus on both on-premises and cloud environments.
• Firewall Management Expertise: Extensive experience managing Next-Generation Firewalls (NGFWs), including rule creation and maintenance.
• Experience with IPS/IDS: Expertise in deploying, configuring, and managing Intrusion Prevention and Detection Systems to protect the network.
• Proactive Monitoring and Management: Strong experience in proactive monitoring and management of WAN, LAN, and access points.
• Vendor Management: Demonstrated ability to manage relationships with key service providers, ensuring alignment with organizational goals and security standards.
• Problem-Solving: Ability to quickly identify, analyze, and resolve security issues, maintaining a proactive approach to risk management.
• Strategic Communication: Strong verbal and written communication skills, capable of articulating complex security concepts to both technical and non-technical stakeholders.
• Continuous Improvement: Commitment to staying current with emerging security trends and continuously improving the organization’s security posture.