Network Analyst in JORDAN

Network Analyst

American International University - Kuwait

Location: Kuwait, Relocation Required

Note: Position open to unaccompanied candidates only

Job Description:

We are seeking a skilled and motivated Network Analyst to join our dynamic team. This role blends deep hands-on diagnostics with strong security practices, ensuring high availability, low latency, and adherence to compliance frameworks (SOX, NIST, ISO 27001). You’ll work closely with IT operations, security, and vendors to keep services resilient and auditable.

Key Responsibilities:

• Monitoring & Observability: Proactively monitor health and performance using Splunk, Cisco DNA Center/vManage, SevOne; tune alerts, create dashboards, and define SLOs.
• Troubleshooting & Diagnostics: Perform packet- and flow-level analysis with Wireshark; run targeted discovery/scans with Nmap; isolate issues (latency, jitter, throughput, loss), and drive root-cause analysis (RCA) with clear corrective actions.
• SD-WAN Operations: Administer Cisco SD-WAN (vManage) policies, application-aware routing, QoS, path selection, and performance baselining across sites.
• Configuration & Change: Implement and document network changes (ACLs, VLANs, routing, IPsec tunnels); follow change control and rollback plans.
• Security Enforcement: Maintain controls across firewalls (Check Point, Juniper), EDR (CrowdStrike, SentinelOne), MFA (Okta, Azure AD), PAM (CyberArk, SailPoint); uphold RBAC and GPO policies; validate SSL/TLS, IPsec posture.
• Compliance & Audit Readiness: Map controls and evidence to SOX, NIST, ISO 27001; assist with audits, vulnerability remediation, and policy exceptions.
• Capacity & Reliability: Track utilization trends, forecast growth, and recommend upgrades; improve resiliency via redundancy, HA, and incident drills.
• Automation & Documentation: Script repetitive tasks (e.g., Ansible/Python/PowerShell), maintain runbooks, diagrams, and knowledge articles.
• Incident Response: Lead or participate in on-call rotation; meet MTTR/SLAs, communicate status to stakeholders, and publish post-incident RCAs.

Required Qualifications:

• 3–6 years in enterprise networking or network operations, including hands-on diagnostics and performance troubleshooting.
• Strong security background implementing/operating: IPsec, SSL/TLS, ACLs, VLANs, RBAC, GPOs; familiarity with MFA, PAM, EDR, and enterprise firewalls.
• Demonstrated SD-WAN experience (preferably Cisco vManage) in multi-site environments.
• Proficiency with monitoring/analysis tools: Splunk, Cisco DNA Center/vManage, SevOne, Wireshark, Nmap.
• Working knowledge of compliance frameworks: SOX, NIST, ISO 27001 and associated evidence collection.
• Clear, concise documentation and stakeholder communication skills.

Tools & Tech Stack (experience with any subset is welcome):

• Monitoring/Analysis: Splunk, Cisco DNA Center, Cisco vManage, SevOne, Wireshark, Nmap
• Security: IPsec, SSL/TLS, ACLs, VLANs, MFA (Okta, Azure AD), PAM (CyberArk, SailPoint),
• EDR (CrowdStrike, SentinelOne), Firewalls (Check Point, Juniper), RBAC, GPOs

Education:

• Bachelor's degree in Computer Science, Information Technology, or a related field.