Yoda Technologies - Network Security Engineer - Threat Detection

Key Responsibilities

• Lead network security operations during assigned shifts; manage escalations and ensure SLA compliance.
• Investigate and respond to network‑based threats (DDoS, lateral movement, unauthorized access).
• Execute network security playbooks and document RCA for incidents.

Network Security Operations

• Configure, monitor, and maintain firewalls (Palo Alto, Fortinet, Check Point) and VPN solutions.
• Manage IDS/IPS systems and ensure detection fidelity.
• Implement and enforce network segmentation and zero‑trust principles.

Zscaler Administration

• Operate and troubleshoot Zscaler ZIA/ZPA policies for secure web and application access.
• Monitor logs and alerts for anomalies; collaborate with network teams for policy optimization.

Threat Detection & Hunting

• Perform network‑based threat hunting using flow analysis, packet captures, and threat intel.
• Tune IDS/IPS signatures and Zscaler policies to reduce false positives and improve detection coverage.

Reporting & Compliance

• Prepare and present network security posture reports, including firewall rule audits, VPN usage, and threat trends.
• Ensure compliance with frameworks (ISO 27001, NIST CSF) and support audit readiness.

Required Qualifications

• 5 to 8 years in Network Security / SOC / Incident Response.
• Hands‑on experience with firewalls, VPN, IDS/IPS, and Zscaler ZIA/ZPA.
• Proven Shift Lead experience in a 247 environment.
• Strong understanding of TCP/IP, routing, switching, and network protocols.
• Excellent communication and reporting skills.

Nice‑to‑Have

• Experience with cloud networking security (Azure/AWS/GCP).
• Familiarity with DDoS mitigation, proxy/DLP, and network forensics.
• Certifications: CCNP Security, PCNSE, Zscaler Certified Professional, Security+, CySA+.

Tools & Technologies

• Firewalls: Palo Alto, Fortinet, Check Point.
• IDS/IPS: Snort, Suricata, Cisco Firepower.
• Zero Trust: Zscaler ZIA/ZPA.
• VPN: IPsec, SSL VPN solutions.
• Monitoring: Wireshark, NetFlow, Zeek.

KPIs

• Network incident MTTD/MTTR.
• Firewall rule audit compliance.
• VPN uptime and secure access SLA.
• Threat detection accuracy and false positive reduction.