For our client, we are looking for a Network Security Consultant (m/f/d) infrastructure security delivery.

 

- Start: 20.04.2026

- Duration: 31.12.26 ++

- Workload: Full-time

- Location: 75% Remote, 25% Berlin (3 weeks per month remote, 1 week onsite)

- Budget: max. 90 EUR remote, 102,25 EUR netto all-in onsite

 

Our client, a major player in the energy sector, is building an internal cloud-native platform to accelerate the development and delivery of software products. The platform provides application teams with self-service capabilities across infrastructure, data, service lifecycle management, and application delivery. It is deployed as a hybrid cloud, encompassing both private and public cloud environments.

 

Within this context, the Security Engineering team is responsible for planning and delivering infrastructure security in line with architectural and operational requirements. The approach is script-based to increase efficiency, standardize processes, and reduce human errors.

 

We are looking for a senior level Consultant (f/m/d) in security engineering and delivery with proven skills and experience in enterprise and datacenter environments in a large-scale data center context.

 

Security Delivery:

- Development of a detailed security deployment plan outlining each phase of implementation

- Identifying necessary resources and timelines for deploying security measures within the platform environment

- Implementation and execution of the deployment plan, installing and configuring security solutions

- Ensuring configurations meet defined security standards and best practices

Documentation:

- Providing and maintaining thorough documentation of the security environment, including configurations, protocols, and decision justifications

- Update documentation regularly to reflect changes or improvements made during implementation.

- Utilize detailed documentation to track process execution and identify potential improvements or compliance issues

Continuous Improvement, Adaptation and Validation:

- Ensure all process-related actions and decisions are well-documented, providing a clear audit trail and facilitating future updates

- Continuously validate implementation processes to ensure they are effective and aligned with organizational goals

- Identify any discrepancies or inefficiencies in processes and propose corrective actions

 

• Experience in designing secure network architectures, including LAN/WAN, Zero Trust, and network segmentation/micro-segmentation.

• Experience in leading network security assessments, projects, policy development, and deliver technical guidance and best practices

• Experience in maintaining awareness of technological developments, anticipating their impact, and promoting a security-by-design approach in collaboration with stakeholders.

• Experience in sharing expertise and best practices within an Information Security architecture community.

• Strong knowledge of and experience with network security technologies such as firewalls (Palo Alto, Checkpoint, Fortinet, Cisco), IDS/IPS, NAC, proxies, VPNs, load balancers (F5, A10, Radware), SD-WAN, DDoS protection, SASE, VXLAN/EVPN, secure multi-tenant networking, and network virtualization (SDN, ACI, NSX).

• Experience in troubleshooting, optimizing network performance, and applying security best practices, with strong knowledge of DNS architecture and operations

• Experience working with DNS management platforms (e.g., Infoblox), Linux-based DNS services (e.g., BIND), and managing DNS zones and records in enterprise/hybrid environments.

• Experience with automation using Ansible and scripting in Python, and collaborating with Architects, DevOps,

Portfolio teams, and other stakeholders.

• Familiarity with ensuring network security compliance for ISO 27001, NIST, GDPR, and SOC2 standards

• fluent English in speech and writing (at least C1)

 

- Experience with Jira, Confluence, and Miro or similar tools

- Advanced Linux knowledge

- SIEM Operations & Threat Hunting experience