Senior Network and Firewall Administrator

Location:  Budapest or Madrid

In case of internal application, please do not forget to inform your line manager about your willingness for the internal move. Please note that the future manager might ask for a reference about you from your current line manager. Please also bear in mind that your salary will not be adjusted automatically, but the new Line Manager can request it via the off-cycle process. In case you are not selected for the position, the Recruitment Team will let you know via email. Please ensure that you have completed a minimum of 12 months in your current role before submitting your application. 

At BT International, our purpose is to keep the world connected. As part of BT, we build on almost 180 years of innovation and expertise to deliver secure connectivity and digital services to some of the world’s leading multinational businesses and organisations. Our customers trust us to safeguard their data, drive their digital transformation and keep their businesses running.

With colleagues on the ground across the world and supporting customers wherever they need to operate, BT International offers a truly global experience. Whether it’s about providing cloud connectivity, helping organisations collaborate, or enabling innovation in cybersecurity and digital services, you’ll be part of a team that shapes how businesses succeed in a world that is being transformed by AI.

If you have the drive and ambition to make an impact on a global stage, BT International is where it happens.

Why this job matters

We build, maintain, develop and improve centralised security management, monitoring and reporting platforms for BT Security SOCs (Security Operations Centres) and SIEMs (Security Information and Event Management) located globally. The platforms which we manage help our SOC Analysts, Specialists, Implementation Engineers and Designers to deliver the best possible Managed Security Services to our customers.

What I’ll be doing – your accountabilities

• Participate in an on-call rotation.

• Monitor platform 24x7x365 and resolve any issues reported by monitoring application.

• Maintain the availability, integrity and confidentiality of the security platforms.

• Upgrade, remediate and patch underlying Operating Systems (Windows, Linux, ESXi, firewalls) to maintain the overall platform health.

• Write and update knowledgebase articles.

• Review design documentation to ensure they are accurate, unambiguous and verifiable.

• Conduct vulnerability scans and propose steps for remediation.

• User and groups administration.

• Work across teams to deliver and support of BT Security services features.

• Audit and maintain firewall configurations and policies.

• Support the management of relationships with specific teams, suppliers and stakeholders.

• Design, build and deliver custom applications and resilient systems for the security platform.

• Identify and implement platform improvement work – continuously improving platform and BT Security performance.

• Develop and implement observability tooling for the security platform.

• Renew license and support contracts with vendors as/when required by BT Security Product Line and specific platforms.

Skills required for the job

Mandatory:

• On-call rotation.

• Excellent written and verbal communications, including documentations skills.

• General IT problem solving and debugging.

• IT troubleshooting. Network troubleshooting. Firewall troubleshooting.

• Familiarity with ticketing and change management process and procedures.

• Ability to learn new technologies without supervision. Self driven learning.

 • Open Source technologies.

Preferred: at least 50%+ of:

• CISSP, CompTia Network+, Security+, CSA+ and/or CEH or equivalent

Linux Systems Administration, including:

• Install, configure, manage, maintain, and troubleshoot RHEL systems.

• In-depth knowledge of SSH client and server configuration.

• Unix/Linux shell scripting and common tools, including SELinux, FACLs, etc.

Windows Systems Administration, including:

• Install, configure, manage, maintain, and troubleshoot Windows systems.

• PowerShell.

• Microsoft Active Directory/DNS Administration.

• Microsoft Terminal Server Administration.

• Windows Event Log, and tools such as Winlogbeat, NXLog, Snare, etc.

Network Administration, including:

• Fortinet Firewalls and VPNs.

• Cisco IOS routers, switches, and fibrechannel.

• Networking protocols and troubleshooting.

• Internet Protocol Version 4.

• Internet Protocol Version 6 (it will take off someday).

Virtualisation, container orchestration and cloud technologies, including:

• VMware vSphere & ESXi.

• Docker, Kubernetes.

• Proxmox, KVM, QEMU.

• AWS, Azure, Google, etc.

Fault, vulnerability, and performance monitoring, including:

• Opsview, Nagios, Icinga.

• Qualys.

• Crowdstrike, Wazuh.

Patch and configuration management and continuous deployment, including:

• Ansible.

• Foreman.

• Terraform and Packer.

• Version control, e.g., Git.

Data processing, warehousing, log retention and SIEM:

• Elasticsearch/OpenSearch, Logstash, Filebeat, etc.

• Syslog-NG/Rsyslog.

• Splunk, Graylog, LogRhythm, etc.

• Grafana/Prometheus.

• Security Analytics & Correlation.

• Software Engineering skills such as Python, Perl, Java, Go, Regular expressions, etc.

Experience you would be expected to have

Mandatory

• General IT and security operations knowledge and experience.

• Knowledge of IP networks and protocols.

• A background in server and application management in a security environment.

• In depth practical experience and knowledge of a range of specific vendor products related to role.

• In depth practical experience and knowledge of operating systems and server administration.

Preferred

• ITIL/ITSM (IT Infrastructure Library/Service Management) – IT Operations experience.

• Knowledge of automation tools and methods.

• Extensive experience working in a sensitive commercial environment with demanding SLAs.

• Experience in managing and delivery of bespoke solutions.

• Experience with SIEM (Security Information and Event Management) systems.

• Experience with Analysis & interpretation of data into useful management information.

• Experience with incident management process & procedures.

• Experience with SANs and storage solutions.

• Experience with Atlassian tools like Jira, Confluence, and Bitbucket, and/or SNOW.

• Cloud Platforms, architecture, and design patterns– AWS, Azure, Google Cloud Platform etc. 

Additional Allowances & Benefits

•    Attractive salary

•    Cafeteria package  - HUF 600,000/ year

•    Performance-based bonus

•    Company car or car allowance

•    Comprehensive private health care package for all the employees, which can be extended to family members

•    Nursery support for mothers returning from maternity

•    Extended paternity leave: 10+10 day fully paid days

•    Commuting allowance

•    Home office allowance

•    Employee discount opportunities

 Flexibility:

•    Family-friendly culture

•    Smart working approach (hybrid working model, 3 together, 2 wherever)

A few points to note

Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

Please note that as part of our recruitment process, we conduct background checks, which include verification of the highest educational qualification. Additionally, for certain positions, a certificate of good conduct may be requested following a successful application.

Don’t meet every single requirement?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best. So, if you’re excited about this role but your past experience doesn’t align perfectly with every requirement in the Job Description, please apply anyway – you may just be the right candidate for this or other roles in our wider team.