This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

The Security Specialist / Associate Network Engineer provides operational security and network support across multiple customer environments within a managed services model. A core requirement of the role is hands-on analysis of security event logs and reports using FortiAnalyzer or an equivalent SIEM platform, supporting incident response, service assurance, and customer reporting. The role is operations-focused and works closely with NOC/SOC functions, senior engineers, and Service Delivery Management to meet SLAs and customer expectations.

Core Responsibilities

• Log Analysis & Reporting (Mandatory)
• Monitor, analyse, and interpret security and network event logs using:
• FortiAnalyzer
• Another enterprise SIEM platform (e.g. Microsoft Sentinel, Splunk, QRadar, Elastic)
• Perform daily and reactive log analysis to identify:
• Security incidents and anomalies
• Policy violations and blocked traffic
• Authentication, VPN, and system-level events
• Use SIEM capabilities such as log filtering, correlation, dashboards, and historical search to support:
• Incident investigation
• Root cause analysis (RCA)
• Trend identification
• Produce, fine-tune, and analyse customer-facing and internal reports, including:
• Scheduled operational/security reports (daily, weekly, monthly)
• Incident and post-incident summaries
• Audit or compliance-support reporting where required
• Validate log ingestion, coverage, and retention, escalating issues such as missing logs, parsing errors, or data gaps.
• Managed Services Operational Responsibilities
• Provide Level 1–2 operational support for customer network and security services under defined SLAs.
• Respond to alerts and events generated by SIEM platforms in accordance with runbooks and escalation procedures.
• Execute approved BAU changes relating to security monitoring, logging, and reporting.
• Support incident, problem, and change management processes in an ITIL-aligned environment.
• Contribute to problem management and service improvement, using log data to support findings.
• Maintain accurate customer documentation, including logging scope, alert thresholds, and report schedules.
• Participate in 24×7 operations or on-call rotations where required.

Qualifications

• 1–3 years’ experience in a network operations, security operations, SOC, NOC, or managed services role.
• Hands-on experience with FortiAnalyzer or another SIEM platform, including:
• Event and security log analysis
• Log correlation and investigation
• Report creation and scheduling
• Ability to interpret firewall, network, and security events in a customer-impact context.
• Solid networking fundamentals: TCP/IP, routing, switching basics, NAT and VPN concepts (IPsec / SSL).
• Experience working with monitoring tools, ticketing systems, and SOPs in a managed services or operations environment.
• Understanding of incident-driven operations and escalation workflows.
• Vendor or industry certifications (desirable): Fortinet (FCA / FCP or equivalent), SIEM or security fundamentals.
• ITIL Foundation awareness or certification is advantageous.

Personal Attributes

• Strong analytical mindset with attention to patterns, anomalies, and trends.
• Ability to clearly explain log-based findings to senior engineers, service delivery teams, and customers.
• Comfortable working under pressure in incident-driven, SLA-based environments.
• Disciplined approach to documentation, reporting accuracy, and process adherence.
• Motivation to grow into senior security, network, or SOC engineering roles.