Principal Network Engineer
Principal Network Engineer page is loaded
Principal Network Engineer
Apply locations Malaysia - Johor time type Full time posted on Posted 2 Days Ago job requisition id R3347
Brooks is a leading provider of automation solutions with over 40 years of experience in the semiconductor industry, offering precision robotics, integrated automation systems, and contamination control solutions that empower chip manufacturers worldwide. Our product portfolio includes a range of automation solutions, including robots, vacuum systems, and atmospheric robots for semiconductor manufacturing (www.brooks.com).
Are you looking for a place where you can be part of a transformation? Join us at Brooks Automation and be a part of a dynamic organization that is shaping the future of technology.
Job Description
About the Role:
We are seeking a highly skilled Senior Network Security Engineer to join us at Brooks Automation Malaysia where you will design, implement, and manage secure network infrastructures while proactively identifying and mitigating security threats. This role requires deep expertise in network security technologies, incident response, and compliance frameworks.
Reporting to the Director of Infrastructure Architecture and Engineering (based in the US), the ideal candidate will be a proactive problem solver with strong technical and analytical skills, capable of securing complex enterprise environments.
Work Location: Onsite - Johor Bahru.
Key Responsibilities:
- Design, implement, and maintain firewalls, VPNs, IDS/IPS, WAFs, and NAC solutions to protect network infrastructure.
- Configure and manage next-generation firewalls (NGFW) (i.e. Palo Alto experience is a must).
- Ensure zero-trust architecture (ZTA) principles are applied across network security frameworks.
- Optimize network segmentation and micro-segmentation strategies for enhanced security.
- Implement and maintain DDoS mitigation, DNS security, and web filtering solutions.
- Experience with AWS transport and security services, including securing VPCs, Direct Connect, Transit Gateway, and associated security controls.
- Monitor and analyze network traffic for anomalies, threats, and intrusions using SIEM, SOAR, and threat intelligence platforms.
- Lead incident response efforts related to network security, including forensic analysis and root cause determination.
- Collaborate with SOC teams to enhance network visibility and proactive threat hunting.
- Perform regular penetration testing, vulnerability scans, and firewall rule reviews.
- Ensure compliance with NIST, ISO 27001, PCI DSS or other regulatory frameworks.
- Implement security controls and policies aligned with industry best practices.
- Assist in audit readiness and remediation efforts for network security controls.
- Work closely with risk management teams to assess vendor and third-party security risks.
- Develop and implement network security automation using Python, Ansible, or scripting tools.
- Streamline firewall rule management and change control processes for efficiency.
- Utilize AI/ML-based security tools to enhance threat detection and mitigation.
- Other duties as assigned.
Required Qualifications & Competencies:
- Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
- Minimum 5+ years of experience in Network Security Engineering, Security Analysis, or a related role.
- Strong expertise in firewall management, intrusion detection/prevention, and secure network design.
- Hands-on experience with Cisco or Palo Alto security solutions.
- Proficiency with SIEM platforms and network traffic analysis tools.
- Experience with AWS transport and security services, including VPC security, Direct Connect, and Transit Gateway.
- Knowledge of encryption protocols, PKI, and secure remote access technologies.
- Experience with incident response frameworks (MITRE ATT&CK, NIST CSF, or SANS IR).
- Strong analytical, troubleshooting, and problem-solving skills.
- Strong communication and interpersonal skills, with the ability to work effectively in a team-oriented environment.
Nice to Have:
- Aruba ClearPass NAC configuration and management.
- Preferred Certifications (one or more strongly preferred):
- CISSP (Certified Information Systems Security Professional)
- CCNP Security (Cisco Certified Network Professional - Security)
- GSEC, GCIA, or GCIH (GIAC Certifications)
- PCNSE (Palo Alto Networks Certified Security Engineer)
Brooks is committed to fostering a diverse and inclusive workplace and proudly serves as an equal-opportunity employer. We welcome all qualified applicants regardless of race, color, religion, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or any other legally protected characteristics.
Diversity enhances our innovative capabilities and strengthens our ability to serve our customers and communities effectively. At Brooks Automation, we celebrate the unique experiences and perspectives each individual brings, believing they are essential to our collective success. Join us in building a workplace where every team member is valued and can thrive.
For applicants with disabilities requiring accommodations, don't hesitate to get in touch with talentattraction@brooks.com or call +1 (978) 262-2400 to discuss your needs.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
