About the Consultancy
Join a leading international consultancy delivering large‑scale network, security, and infrastructure transformation programs across highly regulated industries globally. Our teams work on complex enterprise environments where security compliance, risk reduction, and operational resilience are critical.
About the End Client
The end client is a large enterprise organisation operating within a regulated environment with stringent security, audit, and compliance obligations. This role supports a major network security uplift program focused on improving firewall hygiene, reducing risk exposure, and meeting enterprise security standards.
About the Role
An exciting opportunity exists for an experienced Senior Network Engineer (Network Security) to lead firewall compliance remediation and security uplift initiatives across enterprise environments.
You will focus on identifying and remediating over‑permissive and non‑compliant firewall rules, improving compliance scores, and ensuring firewall policies are granular, justified, auditable, and aligned with security standards and regulatory requirements.
This role suits a senior network security engineer with strong hands‑on firewall experience, stakeholder engagement capability, and a mindset for continuous improvement and automation.
Key Responsibilities
Firewall Compliance & Remediation
- Analyse firewall compliance findings to identify non‑compliant or over‑permissive rules, including:
- Broad port ranges (e.g. 1–65535)
- Insecure or legacy protocols
- Overly broad source/destination ranges
- Remediate firewall rules by replacing legacy or permissive policies with granular, least‑privilege controls.
- Execute remediation activities using approved workflows and tooling, ensuring no service disruption to critical applications.
- Design and implement new firewall policies aligned with enterprise security standards.
- Deliver design‑only and implementation‑ready remediation changes, including staged or parallel rule deployment where required.
- Validate firewall changes through testing and post‑implementation verification.
- Support security assurance, audit, and risk teams by providing technical evidence and remediation justification.
- Track remediation progress and update compliance metrics and dashboards to meet or exceed target thresholds.
- Ensure remediation work aligns with vulnerability management, security testing, and risk frameworks.
- Use and enhance firewall policy management and compliance tooling (rule analysis, request workflows, reporting).
- Identify opportunities to automate firewall remediation and reduce manual effort.
- Contribute to improvements in remediation standards, processes, and runbooks.
- Work closely with application owners, infrastructure teams, and security stakeholders to:
- Understand traffic requirements
- Validate remediation designs
- Obtain business sign‑off for policy changes
- Act as a technical escalation point for complex remediation scenarios.
Technical Skills
- Strong, recent hands‑on experience with enterprise firewalls, including:
- Juniper SRX
- Fortinet
- VMware NSX
- Firewall rule analysis and compliance remediation experience.
- Ability to produce low‑level designs for enterprise security architecture.
- Enterprise switching and routing experience:
- BGP, OSPF, VXLAN, VTP, BFD
- IPS/IDS policy configuration, implementation, and event analysis.
- Exposure to logging platforms such as Elastic or Splunk.
- Exposure to monitoring tools such as Netscout, SolarWinds, ThousandEyes, Accedian.
- Automation and scripting skills (e.g. Python, JSON, Ansible).
- Strong communication and presentation skills.
- Proven ability to translate business requirements into technical solutions.
- Strong stakeholder engagement and collaboration capability.
- Self‑motivated, delivery‑focused, and able to work under pressure.
- Ability to assess existing processes, standards, and compliance requirements and drive improvements.
What’s on Offer?
- Opportunity to work on enterprise‑wide network security remediation and uplift initiatives.
- Long-term multi-year contract opportunity!
- Hands‑on role with strong influence on security posture, compliance outcomes, and risk reduction.
- International consultancy environment with deep network and security capability.
- Exposure to complex, large‑scale firewall and security platforms.
- Collaborative environment working closely with security, infrastructure, and application teams.
- Central Sydney CBD Location with hybrid working!
Please upload your CV to apply. Suitable candidates will be contacted with next steps and may be required to complete additional selection criteria.
For further information, contact:
📞 Farbar Siddiq – 0489 922 211
📧 farbars@whizdom.com.au
Candidates may be required to undergo standard pre‑employment and security screening.
