239 Network Management jobs in the United Kingdom

Sword is a leading provider of business technology solutions within the Energy, Public and Finance Sectors, driving real transformation change within our clients.  We use proven technology, specialist teams and domain expertise to build solid technical foundations across platforms, data and business applications.  We have a passion for using technology to solve business problems, working in partnership with our clients to help in achieving their goals.

About the role:

Develop and document a comprehensive Configuration Management Plan that aligns with the guidelines and recommendations set in NIST SP 800-128. This plan will serve as a critical framework to ensure that all configuration items are effectively managed and monitored, thus supporting the overall integrity and security of the information systems.

In addition to the core elements of the plan, it is essential to clearly define and document the roles and responsibilities associated with the 2nd Line of Defense within the Configuration Management Plan. This will facilitate accountability and streamline processes, ensuring that all stakeholders understand their specific duties and contributions to the success of the configuration management efforts.

Once the Configuration Management Plan is developed, a thorough rollout process will be initiated. This will involve communicating the details of the plan to all relevant personnel and stakeholders, as well as assigning specific responsibilities to ensure its effective implementation.

Here’s what the role looks like:

• Develop and document a Configuration Management Plan in alignment with NIST SP 800-128
•  Document the 2nd Line of Defence roles and responsibilities in the Configuration Management Plan
•  Rollout of the Configuration Management Plan, including communicating and assigning responsibilities
•  Document Secure Configuration Policy Level Statements to define overarching secure configuration principles, including review then communicate it
•  Document all the Configuration Compliance tooling which currently exists
•  Gather Configuration Compliance reports from monitoring tools
•  Analyse the reported deviations and escalate where necessary to drive the deviation resolution
•  Define an Approved Software List for RedHat Linux
•  Update the change management process and include input into the Change Advisory Board (CAB)
•  Communicate the updates to change management teams
•  Update the project assurance process

Requirements

• Experience with Cyber Security standards such as ISO27001, or NIST 800-53.
•  Knowledge of Secure Configuration and Cyber Security Policy.
•  Experience writing cyber security policies and procedures.
•  Ideally experience with a Configuration Management Plan.
•  Strong documentation writing skills.
•  Ability to understand process flows and RACIs.
•  Ability to distil complex security concepts in to simple language that can be understood by business users.
•  Ability to summarise secure configuration requirements into a few principles.
•  Collaborate with Comms teams and Business Change teams to rollout new processes and procedures.

Benefits

At Sword, our core values and culture are based on caring about our people, investing in training and career development and building inclusive teams where we are all encouraged to contribute to achieve success.

We offer comprehensive benefits designed to support your professional development and enhance your overall quality of life.  In addition to a Competitive Salary , here's what you can expect as part of our benefits package:

Personalised Career Development: We create a development plan customised to your goals and aspirations, with a range of learning and development opportunities within a culture that encourages growth.

Flexible working: Flexible work arrangements to support your work-life balance.  We can’t promise to always be able to meet every request, however are keen to discuss your individual preferences to make it work where we can.

A Fantastic Benefits Package: This includes generous annual leave allowance, enhanced family friendly benefits, pension scheme, access to private health, well-being, and insurance schemes, an employee assistance programme, discounted cash plan and more….

At Sword we are dedicated to fostering a diverse and inclusive workplace and are proud to be an equal opportunities employer, ensuring that all applicants receive fair and equal consideration for employment, regardless of whether they meet every requirement.  If you don’t tick all the boxes but feel you have some of the relevant skills and experience we’re looking for, please do consider applying and highlight your transferable skills and experience.  We embrace diversity in all its forms, valuing individuals regardless of age, disability, gender identity or reassignment, marital or civil partner status, pregnancy or maternity status, race, colour, nationality, ethnic or national origin, religion or belief, sex or sexual orientation. Your perspective and potential are important to us.

If we can do anything to help make the hiring process more accessible, please let our talent acquisition team know when you apply so we can support any adjustments.

Network Security Engineer (SEA – Security Engineering Authority, Firewall, Checkpoint, Juniper, F5)

6 Month Contract

West Midlands (Hybrid)

£(Apply online only)/day (Outside IR35)

SEA – Security Engineering Authority Senior Network Security Designer/ Lead Engineer needed with active SC Security Clearance Firewall Specialist .                            6 Month Contract based in Warwick (Hybrid). Start ASAP in September/October.

Network Security Lead Engineer / Security Engineering Authority SEA (Firewall Specialist – Checkpoint, Juniper, F5, Bluecoat)

The vast majority of work is expected to be remote. There may be occasional travel to customer sites to Data Centres in West/South England. Once or twice a month on average.

Working with a global IT Consultancy on large-scale network solutions projects for a Telecoms end client.

Key skills, experience + tasks will include:

• Technical Ownership of a Telecoms end client's Network Security Infrastructure estate, processes, documentation + lifecycle management .
li>Design of customer networks including input into High-Level and Low-Level design (HLD/LLD).
• Network Security Engineer / Security Engineering Authority SEA (Firewall Specialist – Checkpoint, Juniper, F5, Bluecoat)
< i>Acting as the technical point of contact for all Network Security related projects, changes and modifications, including firewall rules base.
• Point of escalation and link to vendor support for Network Security infrastructure incidents.
• Technical Environment: Strong experience Checkpoint, Juniper, Bluecoat, F5 , Cisco networking, Cisco IPT / QoS / 802.1x, switches, wireless, Inflobox DNS, SSL VPN, DMVPN, IPsec, WAN, routing protocols.
• Technical support, change management (physical/remote), customer inventory management, EOL, hardware, software.
• Ensures designs and implementations comply with enterprise security policies, standards, and regulatory requirements.
• SC Security Clearance is essential for this contract.

Team purpose

We are here to change lives through better sight and hearing by delivering outstanding value, being loved by every customer and creating the place where all colleagues are proud to belong as we grow our business.

The Network Platform team will own and develop (with the Enterprise Architecture team) the strategic network roadmap. Delivering changes, product development and maintenance required to achieve the objectives of the roadmaps. The team will also provide support and technical expertise in the case of a major incident. They work closely with third-party partners to deliver a safe, resilient, robust Network Platform and continuously review the industry and market, testing new concepts and technologies that can add value.

Your purpose

The Network Security Engineer supports the Lead Network Security Engineer in delivering the Network Security Roadmap. This role supports the implementation of Infosec-driven initiatives and acts as the second line of escalation for Network Security Incidents and ad hoc service and portfolio support requests. This role is accountable for establishing and maintaining secure network configurations, including firewalls, routers, switches, and VPNs, and periodically reviewing firewall rules and user access to the network. The Network Security Engineer focuses on continuous improvement through automation and tooling, working with Security Operations to monitor and analyse network traffic for malicious activity or potential breaches. Additionally, this role implements network access controls, enforces robust patch management for network devices, and works with network security partners to identify network vulnerabilities, planning and implementing upgrades to ensure the highest standards of network security.

This role is required to participate in an on-call rota for out-of-hours escalations for the Global Network Team.

Your role

• Support Network Security Roadmap: Assist in delivering the Network Security Roadmap.

• Subject Matter Expertise: Provide network subject matter expertise on Infosec-driven initiatives.

• Incident Escalation: Second line of escalation for network security incidents, as well as specific security Service and Portfolio Requests i.e. Meraki configuration and firewall changes.

• On Call Rota: Participate in on-call rota and occasionally work out of regular business hours to facilitate change management and incident resolution.

• Secure Network Configurations: Establish and maintain secure network configurations including Cisco Meraki and Palo Alto firewalls, routers, switches, and VPNs.

• Firewall and Access Review: Periodically review firewall rules and user access to the network.

• Continuous Improvement: Focus on continuous improvement through automation and tooling.

• Monitoring and Analysis: Collaborate with Security Operations to monitor and analyse network traffic for malicious activity or potential breaches.

• Access Controls: Implement network access controls to ensure only authorised users and devices can access specific network segments.

• Vulnerability and Patch Management: Identify and manage the remediation of network vulnerabilities and upgrades to ensure the highest standards of network security. This includes vulnerability management of the store Meraki estate. Perform robust patch management for network devices.

• IT Values Commitment: Champion and commit to performing the role within recognised Values & Behaviours.

What you'll bring

• Advanced Expertise in network solutions including MPLS, Internet, Cloud services, Firewalls, Routers, switches, Palo Alto, Meraki, and Cisco services.

• Bachelor's degree in relevant field and/or industry recognised certifications i.e. Cisco Certified Network Associate (CCNA).

• Proficiency in establishing secure network configurations, including firewalls, routers, switches, and VPNs.

• Experience with network access controls, vulnerability and patch management.

• Experience in implementing network-security solutions.

• Excellent verbal and written communication skills to articulate technical concepts to both technical and non-technical stakeholders.

• Expertise in monitoring and analysing network performance and incidents.

• Previous experience participating in on-call rotations and managing out-of-hours incidents effectively.

• Strong analytical skills to assess complex technical problems and develop effective solutions.

• Expertise in troubleshooting and resolving network security-related issues.

• Ability to work closely with cross-functional teams, including architecture, infosec and regional implementation teams.

• Dedication to performing the role within recognised values and behaviours.

Summer-Browning Associates is currently supporting our public sector client, who is seeking a Network Security Engineer for an initial twelve-month assignment with the option to extend.

Location: Hybrid working - Kidlington or Southampton

About the role: You will be responsible for day-to-day operation and control of all aspects of the client's sites and local area communications network infrastructure including Voice.

The ideal candidate will hold Active SC and have a strong background in delivery Network & Security support, with the following skills and experience:

• Experience with Checkpoint, Fortinet, Cisco & Solarwinds.
• Knowledge of IT and Voice Networks.
• Holds a recognised IT Networking qualification, or equivalent experience.
• Knowledge of Networking protocols & standards.

Description

The Network Security Consultant will provide delivery leadership within the Professional Services consultancy team primarily aligned to clients in the USA region. This client-facing role includes the following responsibilities.

Personal/General

Maintain day to day records of project work to allow accurate billing and reporting of consultancy time;

• Maintain effective network of business contacts within Verizon and their partner community;
li>Maintain and grow their own knowledge to ensure this maintains fully relevant to the network security services practice and its clients;
• Have strong presentation and written/verbal communications skills at multiple levels of an organization;
• Have a minimum of 5+ years of network security consulting, design and delivery experience.
  As a Network Security Consultant you will bring –

Technical expertise with very strong skills in most of the technologies below:

< i>Firewalls: Checkpoint, Juniper, Palo Alto, Cisco ASA/FTD, Fortinet;
• Proxy Services: Bluecoat (forward/reverse proxy), Zscaler;
• Load Balancers: F5 (LTM/GTM);
• IDP/IPS: FirePower/Sourcefire IPS/IDS, McAfee
• Identity & Access Management: Cisco ISE, Aruba Clearpass policy manager;
• Routing & Switching : (CCNP/CCNA level), and good knowledge of SD-WAN deployments;
• Good understanding of key technologies such as: VRF, dynamic routing (EIGRP/BGP/OSPF), MPLS, DMVPN, GRE, IPSec VPN
• Remote Access VPN: GlobalProtect, Pulse Secure, Cisco AnyConnect;
• Knowledge of Cloud deployments (Azure/AWS/GCP);
• Experience with building, maintaining, reviewing all configurations/settings/policies on chosen technologies;
• Experience of multi-vendor, managed outsourcing environments;
• Experience working with operational environments following ITIL frameworks;
• Excellent documentation and presentation skills;
• Excellent troubleshooting skills (technical and non-technical);
• Ability to review processes and procedures – and improve them;
< i>Experience participating in network & system security projects to provide:
• Business requirements analysis and support for Solutions Architects;
• Production of detailed infrastructure designs including physical and virtual aspects of security components;
• Migration of complex legacy infrastructures to new managed security services platforms;
• Understanding and demonstrable experience working in an Agile environment and actively participating in a Scrum team;
• Experience using Jira to help define user stories, tasks and associated estimates.

It is likely that you will have gained some of the following professional qualifications:

• CCNA/CCNP (Enterprise/Security/Data Center);
  CISSP or equivalent;
• Palo Alto (PCNSA/PCNSE);
• Checkpoint (CCSA/CCSE);
• Fortinet (NSE)

Network Security Engineer (SEA – Security Engineering Authority, Firewall, Checkpoint, Juniper, F5)

6 Month Contract

West Midlands (Hybrid)

£(Apply online only)/day (Outside IR35)

SEA – Security Engineering Authority Senior Network Security Designer/ Lead Engineer needed with active SC Security Clearance Firewall Specialist .                            6 Month Contract based in Warwick (Hybrid). Start ASAP in September/October.

Network Security Lead Engineer / Security Engineering Authority SEA (Firewall Specialist – Checkpoint, Juniper, F5, Bluecoat)

The vast majority of work is expected to be remote. There may be occasional travel to customer sites to Data Centres in West/South England. Once or twice a month on average.

Working with a global IT Consultancy on large-scale network solutions projects for a Telecoms end client.

Key skills, experience + tasks will include:

• Technical Ownership of a Telecoms end client's Network Security Infrastructure estate, processes, documentation + lifecycle management .
li>Design of customer networks including input into High-Level and Low-Level design (HLD/LLD).
• Network Security Engineer / Security Engineering Authority SEA (Firewall Specialist – Checkpoint, Juniper, F5, Bluecoat)
< i>Acting as the technical point of contact for all Network Security related projects, changes and modifications, including firewall rules base.
• Point of escalation and link to vendor support for Network Security infrastructure incidents.
• Technical Environment: Strong experience Checkpoint, Juniper, Bluecoat, F5 , Cisco networking, Cisco IPT / QoS / 802.1x, switches, wireless, Inflobox DNS, SSL VPN, DMVPN, IPsec, WAN, routing protocols.
• Technical support, change management (physical/remote), customer inventory management, EOL, hardware, software.
• Ensures designs and implementations comply with enterprise security policies, standards, and regulatory requirements.
• SC Security Clearance is essential for this contract.

Description

The Network Security Consultant will provide delivery leadership within the Professional Services consultancy team primarily aligned to clients in the USA region. This client-facing role includes the following responsibilities.

Personal/General

Maintain day to day records of project work to allow accurate billing and reporting of consultancy time;

• Maintain effective network of business contacts within Verizon and their partner community;
li>Maintain and grow their own knowledge to ensure this maintains fully relevant to the network security services practice and its clients;
• Have strong presentation and written/verbal communications skills at multiple levels of an organization;
• Have a minimum of 5+ years of network security consulting, design and delivery experience.
  As a Network Security Consultant you will bring –

Technical expertise with very strong skills in most of the technologies below:

< i>Firewalls: Checkpoint, Juniper, Palo Alto, Cisco ASA/FTD, Fortinet;
• Proxy Services: Bluecoat (forward/reverse proxy), Zscaler;
• Load Balancers: F5 (LTM/GTM);
• IDP/IPS: FirePower/Sourcefire IPS/IDS, McAfee
• Identity & Access Management: Cisco ISE, Aruba Clearpass policy manager;
• Routing & Switching : (CCNP/CCNA level), and good knowledge of SD-WAN deployments;
• Good understanding of key technologies such as: VRF, dynamic routing (EIGRP/BGP/OSPF), MPLS, DMVPN, GRE, IPSec VPN
• Remote Access VPN: GlobalProtect, Pulse Secure, Cisco AnyConnect;
• Knowledge of Cloud deployments (Azure/AWS/GCP);
• Experience with building, maintaining, reviewing all configurations/settings/policies on chosen technologies;
• Experience of multi-vendor, managed outsourcing environments;
• Experience working with operational environments following ITIL frameworks;
• Excellent documentation and presentation skills;
• Excellent troubleshooting skills (technical and non-technical);
• Ability to review processes and procedures – and improve them;
< i>Experience participating in network & system security projects to provide:
• Business requirements analysis and support for Solutions Architects;
• Production of detailed infrastructure designs including physical and virtual aspects of security components;
• Migration of complex legacy infrastructures to new managed security services platforms;
• Understanding and demonstrable experience working in an Agile environment and actively participating in a Scrum team;
• Experience using Jira to help define user stories, tasks and associated estimates.

It is likely that you will have gained some of the following professional qualifications:

• CCNA/CCNP (Enterprise/Security/Data Center);
  CISSP or equivalent;
• Palo Alto (PCNSA/PCNSE);
• Checkpoint (CCSA/CCSE);
• Fortinet (NSE)