Network Security Engineer

METTLER TOLEDO is a global leader in precision instruments and services. We are renowned for innovation and quality across laboratory, process analytics, industrial, product inspection, and retailing applications. Our sales and service network is one of the most extensive in the industry. Our products are sold in more than 140 countries, and we have a direct presence in approximately 40 countries. For more information, please visit www.mt.com.

We are seeking a highly motivated and skilled Network Security Engineer to join our growing Cyber Security team. 🕸 ⚔️

This critical role is:

✔️ responsible for assuring the security posture of our network infrastructure, 

✔️ acting as a security champion for network related topics. 

❗️ You will not simply help implement security measures, but will oversee their effectiveness, proactively identify vulnerabilities, and guide the implementation of best practices. 

This role bridges the gap between traditional network engineering and cyber security, ensuring our network is a robust defense against evolving threats. 

You will collaborate closely with the networking and IT teams, providing security guidance, performing risk assessments, and helping to respond to security incidents related to network infrastructure.

Key Responsibilities:

• Network Security Oversight – Be the primary security advisor to the Network team, ensuring security is integrated into all network designs, deployments, and changes.

• Security Architecture Review - Review and approve network architecture designs and configurations to ensure alignment with security policies and standards.

• Firewall & Intrusion Prevention/Detections Systems (IPS/IDS) – Configure, maintain, and optimize firewalls, IPS/IDS, and other network security devices. Develop and maintain rule sets based on threat intelligence.

• Network Segmentation – Advise on the design and implementation of network segmentation strategies that will help to isolate critical systems and limit the impact of potential breaches.

• VPN and Remote Access Security – Advise on the design and implementation of our VPN solution, ensuring secure connectivity for employees and 3rd party consultants.

• Network Security Policies – Develop, document, and enforce network security policies, standards, and procedures

• Documentation - Maintain comprehensive documentation of network security configurations, procedures, and incident response plans.

• Collaboration - Work closely with other Cyber Security team members to share knowledge to help improve the overall Security posture of the company.

What You Need to Succeed:

• Minimum of 5 years of progressive experience in network security engineering, with at least 3-5 years specifically focused on designing, implementing, and managing security solutions in an enterprise environment.

• Hands-on experience with other network security tools such as IDS/IPS, SIEM, NAC, VPN concentrators, and cloud security gateways is highly desirable.

• Excellent analytical and problem-solving skills, with the ability to diagnose and resolve complex technical issues under pressure.

• Strong communication and interpersonal skills, capable of effectively articulating technical concepts to both technical and non-technical stakeholders.

• Ability to work independently, manage multiple priorities, and lead projects in a fast-paced, dynamic environment.

• Ability to provide support and collaborate effectively across multiple time zones, adapting to diverse operational hours.

• In-depth understanding of networking protocols (TCP/IP, DNS, DHCP, Routing, Switching).

• Familiarity with network monitoring and analysis tools (Wireshark, SolarWinds).

• Knowledge of regulatory compliance frameworks (NIST, ISO 27001, PCI DSS).

• Experience with Zero Trust Network Access principles and implementations.

That will be your additional asset: 

• Cisco Meraki knowledge.

• Technical skills in Fortinet:

  • Fortinet FortiGate firewalls, advanced routing, NAT, multi-VDOM environments, VPNs (IPSec/SSL), and security profiles (IPS, Application Control, Web Filtering, Antivirus),

  • Knowledge of FortiAnalyzer for logging, reporting, and SIEM integration.

  • Familiarity with FortiClient EMS and FortiWeb.

• Relevant industry certifications such as CISSP, CCNP Security, CompTIA Security+, or equivalent.

Our Offer to You:

• Contract of employment [umowa o pracę], we are looking for a long term cooperation,

• Annual reward,

• Flexible working hours,

• Hybrid work model (up to 3 days a week from home, 2 days from the office),

• A diverse and inclusive workplace,

• Festive benefits paid in April and December,

• Medical care with basic dental package (Medicover), with possibility to extend to Damian Medical Center,

• Possibility to extend medical care to family members,

• Life insurance with possible extended scope,

• Sports card (Medicover),

• Language courses,

• A vast training offer to support your development,

• Wellbeing activities, CSR, with space for your initiatives*

• Discounts for meals and special offers at Platan Business Park.

*We are focusing on entertainment and supporting your physical and mental health – check out our LinkedIn profile!