a. Experience in designing, planning, and implementing various secure network topologies using multivendor technologies (Cisco, PaloAlto …)
b. Experience in implementing and managing perimeter security controls and solutions based on the recommendation from Cybersecurity department:
o WAN and LAN security
o Site to site VPN and remote VPN access
o Implementing FW policies and threat protection
o Security upgrades, patching, configuration backup
c. Experience in implementation and manage of network technologies and services:
o DNS, DHCP, SYSLOG and IP address management and route optimization
o SNMP and xFlow, AAA, RADIUS and authentication platforms
o IGP (RIP, OSPF…) , BGP , gateway redundant protocol such as VRRP
o L2 ethernet switching network based on Cisco technology: Access and core, port-channel and trunk ports, uplink and access, VLANs, STP flavors and other loop-prevention technologies
o Wireless access point design, configuration and troubleshooting
d. Providing level 2 support for access, core and perimeter infrastructure:
o Monitoring the KPI’s for network and security physical and virtual appliances such as CPU, memory, link utilization, response time and throughput, and maintain the agreed level of operation health
o Security controls implementation, auditing and monitoring
o Incident handling, problem troubleshooting and reporting
o Experience in providing Level2 support, incident handling and root cause analysis reporting
o Continuously monitor web traffic and application behavior to detect, analyze, and respond to threats—leveraging both traditional network tools and application-layer firewalls.
e. Managing the relation with vendors and service providers, support contract discussion and renewal, SLA tracking, and issues escalation
f. Evaluate and remediate vulnerabilities related to web application threats (e.g., OWASP Top Ten), leveraging virtual patching and rapid policy adjustments when needed.
g. Deploy network segmentation and policy enforcement strategies, ensuring defense-in-depth across layers through segmentation, VPNs, and secure remote access architectures.
h. Leverage automation and scripting (e.g., Python, RegEx) for deployment, monitoring, and rule management of WAF and network security infrastructure.

a. Bachelor Degree in Computer Science / Network Engineering / Electronics or Equivalent qualification. Experience.
b. Minimum 5 years of working experience in the same role
c. Preferably Cisco Certified Professional (CCNP, CCSP)
d. Good communication, interpersonal skills, self-motivated team player, capable of working with minimal supervision. Good service-oriented manner & Efficient problem solver
e. Hands-on with multiple WAF platforms and deep knowledge of web application security.
f. Familiarity with firewall configuration, network protocols (TCP/IP, HTTP/S), and related security services.
g. Familiarity with IPSec, MPLS, and other VPN technologies and routing protocols
h. Working onsite, Riyadh-Saudi Arabia

At Oivan, we appreciate different lifestyles and cultural backgrounds. We welcome diversity as a strength. We consider all applications equally regardless of race, color, ancestry, religion, national origin, age, citizenship, marital status, disability, orientation or gender identity. We strongly encourage individuals from groups traditionally underrepresented in tech to apply Oivan company culture is reflective of our core values. The decisions we make today influence our tomorrow. We are sincere in our responsibility towards our employees, customers and the environment. Fellowship unites us as an international community of thinkers and doers. Throughout our hiring process, you’ll have access to a broad representation of the Oivan team to get to know us as we learn about you. 

By submitting your application and CV, you provide explicit consent for us to handle and store your personal information in our HR information systems. We assure you that all data processing activities will strictly adhere to the data protection and privacy regulations applicable in Saudi Arabia. Your information will be treated with the utmost confidentiality and in compliance with the relevant local data protection laws.