🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Tekhqs • Lahore, Punjab, Pakistan
Role & seniority: Senior Network Security Engineer with dual Blue Team (defense) and Red Team (offense) mindset; primary network architect and internal penetration tester.
Stack/tools: Core networking (BGP, OSPF, MPLS, VLANs, ACLs, port security), enterprise firewalls (Palo Alto, Fortinet), virtualization (VMware vCenter/ESXi, NSX, vSphere, vMotion), security/testing (Kali Linux, Metasploit, Burp Suite Pro, Nmap, Wireshark), vulnerability tools (Nessus/OpenVAS), scripting (Python, Bash, PowerShell).
Design, implement, and harden high-availability on-prem network architectures; manage L2/L3 devices and routing protocols; enforce Zero Trust.
Lead internal penetration testing, simulate real-world attacks, assess networks, wireless segments, and edge devices; drive vulnerability lifecycle from discovery to remediation.
Harden virtualization/data center stacks (ESXi hardening, NSX, VM propagation) and manage firewalling and secure perimeter controls.
7+ years in Network Engineering; 3+ years in Offensive Security / Penetration Testing
BGP, OSPF, MPLS; VLANs, ACLs, port security
Enterprise firewall management; VMware vCenter/NSX/ESXi; ESXi hardening
Offensive security tools: Kali, Metasploit, Burp Suite Pro, Nmap, Wireshark
Scripting: Python, Bash, PowerShell
Certifications: OSCP/OSCE/GPEN; CCNP/CCIE Security; VCP
Experience with VPNs (IPsec/SSL) and Zero Trust deployme
About the Role
We are seeking a rare hybrid talent: a Senior Network Security Engineer with strong Blue Team discipline to architect and secure complex on-prem infrastructure, combined with the Red Team mindset to actively test and exploit it. In this role, you will serve as the primary architect of our physical and virtual network environments while leading internal penetration testing initiatives. This is not a checklist-driven security role — you will proactively hunt vulnerabilities across every layer of the infrastructure. Key Responsibilities Infrastructure Architecture (Build) Core Networking Design, implement, and maintain high-availability enterprise networks Configure and manage L2/L3 switches and routers (Cisco, Juniper, Arista) Implement BGP, OSPF, MPLS, trunking, and port security Virtualization & Data Center Manage VMware vSphere environment (ESXi, vCenter) Administer NSX and vMotion Harden ESXi hypervisors and secure VM propagation Network Hardening Implement ACLs and VLAN segmentation Configure VPN tunnels (IPsec/SSL) Enforce Zero Trust architecture within on-prem environments Manage enterprise firewalls (Palo Alto, Fortinet) Offensive Security (Break) Penetration Testing Conduct authorized internal penetration tests Assess internal networks, wireless segments, and edge devices Simulate real-world attack scenarios Vulnerability Management
Drive full vulnerability lifecycle: discovery exploitation remediation Full-Stack Security Auditing Analyze and secure all OSI layers Mitigate Layer 2 threats (MAC spoofing, STP attacks) Defend against Layer 7 threats (SQL injection, XSS) Prevent MitM attacks, privilege escalation, and lateral movement Technical Skills Required Networking BGP, OSPF, MPLS VLANs, ACLs, Port Security Enterprise Firewalling Virtualization VMware vCenter NSX ESXi Hardening Offensive Security Tools Kali Linux Metasploit Framework Burp Suite Professional Nmap Wireshark Scripting & Automation Python Bash PowerShell Qualifications & Experience 7+ years of experience in Network Engineering Minimum 3 years in Offensive Security / Penetration Testing Strong hands-on data center and bare metal infrastructure experience Preferred Certifications Offensive Security OSCP OSCE GPEN Infrastructure CCNP / CCIE (Security) VCP (VMware Certified Professional) The Ideal Candidate (Unicorn Profile) Thinks like an adversary Can architect secure enterprise networks Comfortable in both data center and terminal environments Able to configure BGP in the morning and execute internal pivot/exploit testing in the afternoon Job Details
Location: Lahore/Islamabad/Karachi (Remote)
Experience: 5+ Years
Department: Network Secruity & Penetration Tester