Operate and maintain FortiGate and FortiWeb environments, including firewall policies, routing, VPNs, WAF tuning, certificate management, and virtual patching.
Perform advanced troubleshooting and root-cause analysis using logs and debug-level diagnostics.
Manage infrastructure changes through GitOps practices, ensuring version-controlled, transparent, and peer-reviewed deployments.
Drive security engineering initiatives, including firewall policy optimization, security hygiene improvements, and VPN modernization projects.
Support NIS2 compliance by implementing technical security controls and providing audit-ready evidence and documentation.
Collaborate closely with platform and security teams across hybrid cloud environments, including container and runtime security solutions such as NeuVector.

Hands-on experience operating FortiGate firewalls in enterprise environments (or equivalent enterprise-grade firewall platforms).
Solid networking fundamentals, including TCP/IP, VLANs, switching, and routing.
Strong troubleshooting and diagnostic skills, with experience analyzing logs and performing debug-level investigations.
A disciplined and quality-focused approach to work, with openness to controlled, documented, and review-driven change management processes.
Ability to work collaboratively with infrastructure, platform, and security teams.
Experience supporting security operations in complex IT environments.

Tools: FortiWeb, FortiManager/FortiAnalyzer, experience with SD-WAN.
Automation: Infrastructure as Code (IaC) and CI/CD practices (Git, Ansible, Terraform, APIs).
Knowledge: NSE certification, Kubernetes/container security (NeuVector), or familiarity with M365 E5.

Hybrid

Fresh wind and new ideas are welcome, because standstill is a foreign word at Qualysoft.
We live the Qualysoft Team Spirit and stand for transparency!

Qualysoft is hiring a Network Security Engineer (DevSecOps)