Light Dark
March 16, 2023 By Sue Poremba 4 min read
Risk Management

Cybersecurity is complex. The digital transformation, remote work and the ever-evolving threat landscape require different tools and different skill sets. Systems must be in place to protect endpoints, identities and a borderless network perimeter. The job role responsible for handling this complex security infrastructure is the network security engineer.

In a nutshell, the network security engineer is the person who is responsible for the design and implementation of the organization’s security system, ensuring there are no gaps or vulnerabilities for threat actors to exploit. They aren’t just responsible for protecting the infrastructure from potential cyberattacks but also for safeguarding the network’s physical security from all types of intrusion or natural disasters. This is the position that creates and enforces an organization’s security policy. A network security engineer maintains the hardware and software that act as the first line of defense during an attack.

While the titles sound similar and people sometimes use them interchangeably, network security engineers are different from network security architects. The architects are usually higher level: They analyze and test a system and decide what tools are needed. However, the engineers are the ones who put it all together and keep it running properly. In smaller companies, the network security engineer may be asked to take on the tasks of an architect, but they are generally separate roles.

How in-demand is this particular role?

Because they handle the first lines of defense in a security system and are also responsible for disaster recovery, network security engineers are in high demand, even though the jobs themselves may not be found under this exact title. Every company needs someone with the training to do the basic maintenance and hardware configuration to harden the network perimeter. With remote and hybrid workforces, this role is also responsible for ensuring VPNs are working properly and outside connections to the corporate network are secure. It’s a necessary role in every industry vertical and almost any size business. A quick glance at job recruiting websites shows long lists of openings with tens of thousands still unfilled.

Were there any recent events in the last few years that made this role more in-demand?

The rise of remote work has given added importance to the role of a network security engineer. Also, data privacy compliance regulations have put a greater emphasis on overall cybersecurity. Although the network security engineer isn’t working directly with data, it is this job’s function to make sure outside threat actors aren’t able to gain access to the network.

One of the biggest and most difficult threats for security engineers is Distributed Denial of Service (DDoS) attacks. DDoS attacks are growing bigger and more powerful, threatening to take networks offline for longer periods of time. Cyber criminals have also instituted a new strategy: Using DDoS attacks while also launching a ransomware attack.

What are the basic qualifications needed?

Basic qualifications and skills needed for a job as a network security engineer include:

  • Thorough knowledge and proficiency in different programming languages
  • In-depth skills in cybersecurity functions such as ethical hacking and penetration testing
  • Expertise with computer systems, multiple operating systems, on-premise network and cloud architectures, with an ability to identify and fix vulnerabilities and security gaps
  • Familiarity with the threat landscape, compliance laws and government regulations surrounding cyber incidents
  • Soft skills like good communication, decision-making, attention to detail and the ability to work well under pressure.

What degree and/or certifications are required?

A network security engineer will have at least a bachelor’s degree in the field of computer science or computer engineering, or a cybersecurity or information systems/risk management background.

For those engineers at the beginning of their career, the CompTIA Security+ certification is recommended to prove knowledge of baseline skills. Other certifications highly recommended or required include Cisco Certified Network Professional (CCNP), Certified Network Defender (CND), Certified Information Systems Security Professional (CISSP) and GIAC Security Essentials (GSEC).

What are the primary responsibilities of this role?

The primary responsibilities of this role include:

  • Configuring and maintaining firewalls, VPNs, LANs, email and web protocols
  • Testing hardware and software for potential vulnerabilities
  • Monitoring, identifying and mitigating potential threats and intrusion management
  • Setting security policies and protocols
  • Staying on top of new technologies, laws and regulations and emerging threats
  • Ensuring the systems meet all regulatory compliance standards
  • Monitoring backup systems and disaster recovery systems
  • Overseeing identity and access management tools
  • Communicating with the cybersecurity team and leadership about security issues.

Who does this role typically report to?

The network security engineer falls under the auspice of the CISO/CSO/CIO, depending on the organization’s leadership structure. Their direct report, however, is most often a designated security manager, who has responsibility for security teams and provides oversight for projects.

What is a typical day like?

Being well-informed is an absolute must, and network security engineers can expect to start their work day by monitoring what’s happening in the world: Looking for news about new threats, new attacks and global events that could have an impact on network security. Engineers may plan on tasks like monitoring logs or running scheduled network tests, but they’ll more often than not find their days filled with emergencies and fulfilling help desk tickets. There will be incidents and alerts that will need to be checked out. Above all, don’t expect a 9 to 5 job. Network security engineers, like many in IT and cybersecurity, are on call day and night and on weekends.

However challenging the duties of a network security engineer may be, there’s no doubt this position is an essential part of any cybersecurity team.

 |  |  |  | 
Sue Poremba

More from Risk Management
November 20, 2023

Operationalize cyber risk quantification for smart security

4 min read - Organizations constantly face new tactics from cyber criminals who aim to compromise their most valuable assets. Yet despite evolving techniques, many security leaders still rely on subjective terms, such as low, medium and high, to communicate and manage cyber risk. These vague terms do not convey the necessary detail or insight to produce actionable outcomes that accurately identify, measure, manage and communicate cyber risks. As a result, executives and board members remain uninformed and ill-prepared to manage organizational risk effectively.…

November 14, 2023

The evolution of ransomware: Lessons for the future

5 min read - Ransomware has been part of the cyber crime ecosystem since the late 1980s and remains a major threat in the cyber landscape today. Evolving ransomware attacks are becoming increasingly more sophisticated as threat actors leverage vulnerabilities, social engineering and insider threats. While the future of ransomware is full of unknown threats, we can look to the past and recent trends to predict the future. 2005 to 2020: A rapidly changing landscape While the first ransomware incident was observed in 1989,…

November 2, 2023

Defense in depth: Layering your security coverage

2 min read - The more valuable a possession, the more steps you take to protect it. A home, for example, is protected by the lock systems on doors and windows, but the valuable or sensitive items that a criminal might steal are stored with even more security — in a locked filing cabinet or a safe. This provides layers of protection for the things you really don’t want a thief to get their hands on. You tailor each item’s protection accordingly, depending on…

October 27, 2023

The evolution of 20 years of cybersecurity awareness

3 min read - Since 2004, the White House and Congress have designated October National Cybersecurity Awareness Month. This year marks the 20th anniversary of this effort to raise awareness about the importance of cybersecurity and online safety. How have cybersecurity and malware evolved over the last two decades? What types of threat management tools surfaced and when? The Cybersecurity Awareness Month themes over the years give us a clue. 2004 - 2009: Inaugural year and beyond This early period emphasized general cybersecurity hygiene,…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2023 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature