Specialist Security Engineer - Fortinet Solutions

The Specialist Security Engineer – Fortinet Solutions is responsible for designing, implementing, optimizing, and supporting advanced Fortinet-based cybersecurity solutions across enterprise, service provider, and data center environments. The role serves as a technical subject matter expert for Fortinet technologies, providing architecture design, deployment leadership, troubleshooting, migration support, and operational excellence across customer environments. 

Working within ZainTECH’s Cybersecurity Practice, the Specialist Security Engineer will lead the delivery of secure, scalable, and resilient security solutions covering network security, SD-WAN, SASE, Zero Trust architectures, privileged access management, web application security, and security monitoring platforms. The role collaborates closely with customers, presales teams, project delivery teams, and technology partners to ensure successful implementation and ongoing optimization of Fortinet security solutions.

Responsibilities:

Security Architecture & Solution Design 

• Design and implement enterprise and data center security architectures utilizing Fortinet technologies. 
• Develop secure, scalable, and highly available security solutions aligned with customer business and security requirements. 
• Design and architect, High Availability (HA) deployments, Advanced SD-WAN solutions, Secure Access Service Edge (SASE) architectures, Zero Trust Network Access (ZTNA) environments, Network segmentation and micro-segmentation strategies 
• Conduct security assessments and provide recommendations aligned with cybersecurity best practices and industry standards. 
• Develop High-Level Designs (HLDs), Low-Level Designs (LLDs), Migration and implementation plans, technical architecture documentation 

Fortinet Solution Deployment & Integration 

• Lead the installation, configuration, migration, and optimization of Fortinet solutions including: 
• FortiGate 
• FortiManager 
• FortiAnalyzer 
• FortiSwitch 
• FortiAP 
• FortiWeb 
• FortiADC 
• FortiPAM 
• FortiProxy 
• FortiDLP 
• FortiSIEM 
• FortiSASE 
• FortiAppSec 
• Integrate Fortinet platforms with: 
• Active Directory 
• LDAP 
• RADIUS 
• TACACS+ 
• Identity Providers (IdPs) 
• Multi-Factor Authentication (MFA) platforms 
• SIEM and Syslog solutions 
• AWS and Microsoft Azure environments 
• Third-party security solutions 
• Ensure successful migration and interoperability between legacy and modern security infrastructures. 

Security Operations & Technical Support 

• Provide advanced L2, L3, and escalation support for enterprise customers. 
• Troubleshoot complex: 
• Security incidents 
• Firewall issues 
• Routing and connectivity problems 
• VPN-related issues 
• Authentication and access control challenges 
• Conduct root cause analysis and provide recommendations to prevent recurrence. 
• Monitor solution performance and ensure high service availability. 
• Maintain configuration backups, disaster recovery plans, and operational documentation. 
• Support customers during critical incidents and major service disruptions. 

Network Security & Advanced Security Technologies 

• Configure, manage, and optimize: 

• Security Policies 
• Application Control 
• Intrusion Prevention Systems (IPS) 
• Web Filtering 
• Anti-Malware Services 
• Data Loss Prevention (DLP) 
• Proxy Services 
• Privileged Access Management (PAM) 
• Security Event Monitoring and Correlation 

• Deploy and support: 
• Psec VPN 
• SSL VPN 
• Remote Internet Access (RIA) 
• Direct Internet Access (DIA) 
• Site-to-Site VPNs 
• Hub-and-Spoke VPN Architectures 
• Implement Zero Trust and SASE security models to enhance customer security posture. 

Project Delivery & Customer Engagement 

• Lead implementation, migration, upgrade, and optimization projects. 
• Coordinate activities with Customers,Vendors, Project Managers, internal delivery teams 
• Produce technical implementation documentation, Acceptance reports, As-built documentation, Operational handover documentation 
• Conduct customer knowledge transfer sessions and technical workshops. 
• Support presales teams during solution presentations, technical discussions, and proof-of-concept activities. 

Continuous Improvement & Technical Leadership 

• Stay current with emerging cybersecurity threats, Fortinet product developments, and industry best practices. 
• Participate in technical enablement and knowledge-sharing initiatives. 
• Support the development of technical standards, implementation methodologies, and operational procedures. 
• Contribute to service improvement initiatives across the Cybersecurity Practice. 

Our Culture & Code of Conduct:

At ZainTECH, we take pride in a culture built on collaboration, innovation, and uncompromising integrity. We are looking for individuals who share these values and are committed to customer-centricity and ethical excellence. All employees are expected to uphold our Code of Conduct, which serves as a guiding framework for responsible behaviour across everything we do — from how we work with each other to how we engage with clients and partners globally.

Requirements

• Bachelor's degree in Computer Engineering, Computer Science, Information Security, Information Technology, or a related field, with a minimum of 5 years of experience in cybersecurity and network security engineering.
• Proven hands-on expertise in designing, implementing, and supporting Fortinet security solutions, including FortiGate, FortiManager, FortiAnalyzer, SD-WAN, SASE, FortiWeb, FortiADC, FortiPAM, FortiProxy, FortiDLP, and FortiSIEM.
• Strong knowledge of network security architecture and infrastructure design, with expertise in TCP/IP, Routing & Switching, BGP, OSPF, VLANs, NAT, Traffic Shaping, and Policy-Based Routing.
• Advanced troubleshooting, analytical, and problem-solving skills, with experience supporting complex enterprise, managed services, or service provider environments.
• Strong customer-facing communication, presentation, consulting, and technical advisory skills, with the ability to engage effectively with stakeholders across all levels.
• Demonstrated technical leadership, mentoring capabilities, and experience managing project delivery while coordinating with multiple stakeholders.
• Solid understanding of security operations, incident response processes, and managed security services, including exposure to Zero Trust and cloud security architectures.
• Experience working with virtualization and cloud platforms such as VMware ESXi, Hyper-V, AWS, and Microsoft Azure, preferably within large-scale enterprise or multi-site environments.
• Strong documentation, reporting, and operational governance skills, with the ability to perform effectively in high-pressure environments and participate in critical incident response activities when required.
• Relevant certifications such as FCP, FCSS, NSE 4/5/6/7, CCNA, CCNP Security, FortiSASE, and AWS/Azure Security certifications, along with a commitment to continuous learning and professional development.