Network Security Engineer [T500-26176]

About ADM:

We are one of the worlds largest nutrition companies and a global leader in human and animal nutrition. We unlock the power of nature to provide nourishing quality of life by transforming crops into ingredients and solutions for foods, beverages, supplements, livestock, aquaculture, and pets.

About ADM India Hub:

At ADM, we have long recognized the strength and potential of Indias talent pool, which is why we have maintained a presence in the country for more than 25 years. Building on this foundation, we have now established ADM India Hub, our first GCC in India.

At ADM India Hub, we are hiring for IT and finance roles across diverse technology and business functions. We stand at the intersection of global expertise and local excellence, enabling us to drive innovation and support our larger purpose of unlocking the power of nature to enrich quality of life.

POSITION SUMMARY:

We are seeking a highly skilled and experienced Network Security Engineer to join our Information Technology team. In this role, you will be responsible for designing, implementing, and maintaining robust network security infrastructure to protect organizational assets. You will serve as a subject matter expert in firewall architecture, network access control, and security policy enforcement, working closely with the Network Manager to align security initiatives with business objectives.

KEY RESPONSIBILITIES:

• Design, architect, and implement scalable network security solutions, including firewall policies, segmentation strategies, and access control frameworks across enterprise environments.
• Lead the end-to-end lifecycle management of Cisco and Palo Alto firewall platforms, including configuration, rule optimization, health monitoring, and capacity planning.
• Administer and manage Cisco Identity Services Engine (ISE) for network access control (NAC), including policy enforcement, posture assessment, profiling, and reporting.
• Conduct regular security assessments, firewall rule reviews, and audits to identify and remediate vulnerabilities and policy gaps.
• Develop and maintain comprehensive network security documentation including architecture diagrams, runbooks, change management records, and security policies.
• Collaborate with cross-functional teams (infrastructure, cloud, applications) to integrate security controls into new and existing systems.
• Respond to and lead investigation of network security incidents, performing root cause analysis and implementing corrective actions.
• Evaluate and recommend new security technologies, tools, and best practices to continuously improve the security posture.
• Mentor junior security team members and contribute to knowledge-sharing initiatives across the IT organization.
• Partner with the Network Manager to define security roadmaps, project priorities, and resource requirements.

REQUIRED QUALIFICATIONS:

Education:

• Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field; equivalent work experience will be considered.
• Experience (Must Have)
• Minimum 7 years of hands-on experience in network security architecture and design, with demonstrated expertise in enterprise firewall design and deployment.\
• Minimum 5 years of direct, production-level experience administering Cisco ASA / Firepower and Palo Alto Networks (PAN-OS) firewall platforms.
• Proven experience with Cisco Identity Services Engine (ISE), including configuration of 802.1X, RADIUS, TACACS+, profiling policies, guest access, and ISE reporting/dashboards.
• Strong knowledge of network security principles including zero-trust architecture, micro-segmentation, VPN (IPSec/SSL), IDS/IPS, and DMZ design.
• Experience with network protocols including BGP, OSPF, EIGRP, spanning tree, QoS, and SD-WAN concepts in a security context.
• Demonstrated ability to document complex network security architectures and present to both technical and non-technical stakeholders.

PREFERRED QUALIFICATIONS (NICE TO HAVE):

• Certifications.
• Cisco Certified Network Professional Security (CCNP Security) or Cisco Certified Internetwork Expert (CCIE Security).
• Palo Alto Networks Certified Network Security Engineer (PCNSE) or Palo Alto Networks Certified Security Automation Engineer (PCSAE).
• Cisco Certified CyberOps Associate/Professional or equivalent Cisco security certification.
• Technical Skills
• API integration experience using Python with Cisco ISE including scripting automated policy changes, generating custom reports, and integrating ISE data with ITSM or SIEM platforms.
• Experience with SolarWinds Network Performance Monitor (NPM) and/or Network Configuration Manager (NCM), including API-based automation and custom alerting workflows using Python
• Familiarity with SOAR platforms, SIEM tools (Splunk, QRadar), or security orchestration frameworks.
• Exposure to cloud security (AWS, Azure, GCP) and cloud-native firewall/security controls.
• Experience with DevSecOps practices and infrastructure-as-code tools (Ansible, Terraform) for network security automation.

CORE COMPETENCIES:

• Analytical thinking with strong problem-solving skills in high-pressure, production environments.
• Excellent written and verbal communication skills with the ability to produce clear, concise technical documentation.
• Strong understanding of compliance frameworks such as NIST, ISO 27001, PCI-DSS, or SOC 2 as applied to network security.
• Ability to manage multiple concurrent projects and priorities while meeting deadlines.
• Collaborative mindset with the ability to work effectively across distributed teams.

WORK ENVIRONMENT & EXPECTATIONS:

• This position reports directly to the Network Manager and operates within a collaborative IT security team.
• Participation in an on-call rotation may be required for critical security incidents and change windows.
• Travel may be required on a limited basis for site assessments or vendor engagements.