Network Security Engineer (DevSecOps)
Full-timeJob Overview
Founded in 1999 in Vienna, the Qualysoft Group is a manufacturer-independent IT consulting and services company, which successfully provides support for its international customers with the aim of boosting their competitiveness and economic efficiency through innovative IT solutions.
Its focus is on financial services providers, telecommunications companies, the automotive industry and energy service providers. Over 400 employees in 6 subsidiaries work together to ensure state of the art solutions for our clients.
We are looking for new colleagues in Qualysoft teams for diverse projects providing continuous learning opportunities. Our common goal is to provide honesty, development and a stable background while getting to know the latest technologies. We are waiting for your application for the position below!
The purpose of the role is to ensure that the FortiGate/FortiWeb environment is transparent, standardized, change-managed, and auditable, and that it aligns with NIS2 compliance requirements.
The position works closely with hybrid/cloud security areas (e.g., M365 E5 Security), as well as containerized platform security (NeuVector) — in these areas, it is not an ownership role, but rather an integration/collaboration-focused role.
Founded in 1999 in Vienna, the Qualysoft Group is a manufacturer-independent IT consulting and services company, which successfully provides support for its international customers with the aim of boosting their competitiveness and economic efficiency through innovative IT solutions.
Its focus is on financial services providers, telecommunications companies, the automotive industry and energy service providers. Over 400 employees in 6 subsidiaries work together to ensure state of the art solutions for our clients.
We are looking for new colleagues in Qualysoft teams for diverse projects providing continuous learning opportunities. Our common goal is to provide honesty, development and a stable background while getting to know the latest technologies. We are waiting for your application for the position below!
The purpose of the role is to ensure that the FortiGate/FortiWeb environment is transparent, standardized, change-managed, and auditable, and that it aligns with NIS2 compliance requirements.
The position works closely with hybrid/cloud security areas (e.g., M365 E5 Security), as well as containerized platform security (NeuVector) — in these areas, it is not an ownership role, but rather an integration/collaboration-focused role.
Responsibilities:
- Operate and maintain FortiGate and FortiWeb environments, including firewall policies, routing, VPNs, WAF tuning, certificate management, and virtual patching.
- Perform advanced troubleshooting and root-cause analysis using logs and debug-level diagnostics.
- Manage infrastructure changes through GitOps practices, ensuring version-controlled, transparent, and peer-reviewed deployments.
- Drive security engineering initiatives, including firewall policy optimization, security hygiene improvements, and VPN modernization projects.
- Support NIS2 compliance by implementing technical security controls and providing audit-ready evidence and documentation.
- Collaborate closely with platform and security teams across hybrid cloud environments, including container and runtime security solutions such as NeuVector.
Requirements:
- Hands-on experience operating FortiGate firewalls in enterprise environments (or equivalent enterprise-grade firewall platforms).
- Solid networking fundamentals, including TCP/IP, VLANs, switching, and routing.
- Strong troubleshooting and diagnostic skills, with experience analyzing logs and performing debug-level investigations.
- A disciplined and quality-focused approach to work, with openness to controlled, documented, and review-driven change management processes.
- Ability to work collaboratively with infrastructure, platform, and security teams.
- Experience supporting security operations in complex IT environments.
Advantages:
• Tools: FortiWeb, FortiManager/FortiAnalyzer, experience with SD-WAN.
• Automation: Infrastructure as Code (IaC) and CI/CD practices (Git, Ansible, Terraform, APIs).
• Knowledge: NSE certification, Kubernetes/container security (NeuVector), or familiarity with M365 E5.
• Automation: Infrastructure as Code (IaC) and CI/CD practices (Git, Ansible, Terraform, APIs).
• Knowledge: NSE certification, Kubernetes/container security (NeuVector), or familiarity with M365 E5.
Why we think you will love working here:
With us you count as a person, our doors are always open.
We live the Qualysoft Team Spirit and stand for transparency!
Fresh wind and new ideas are welcome, because standstill is a foreign word at Qualysoft.