7+ years of experience in network security with Palo Alto and firewall technologies
7+ years of experience in Cisco networking/security
Palo Alto PCNSE certification and Cisco CCNP Security or Check Point CCSE
Experience implementing and supporting complex security architectures, including VPNs, SSL decryption, Panorama, WildFire, and GlobalProtect
Requirements:
Serve as primary support lead for security environment; manage customer devices and end-to-end security services, identify sources of problems, and resolve configuration issues
Design, configure, and maintain complex security architectures and firewalls (Palo Alto, Cisco ASA, Checkpoint, Fortinet) in high-availability deployments; define and maintain security policies
Report security analysis and monitoring findings; test security levels using industry-standard criteria and perform threat/vulnerability analysis
Provide SME guidance on network performance, throughput, protocols, security, and infrastructure technology changes; support Panorama, SSL decryption, VPNs, and related security services
Job description
7+ years of experience in Network Security Palo Alto.
7+ years of experience in Network Security
7+ years of experience in CISCO
Serve as primary support lead for security environment by managing customer devices and end-to-end security services, identifying sources of problems, and resolving configuration issues.
Deep understanding of Firewall technologies.
Configuring and installing security infrastructure devices.
Reporting the security analysis and monitoring findings.
Using industry-standard analysis criteria to test the security level of the firm.
Responsible to identify threats, vulnerabilities etc & take appropriate actions
Consults about network performance, throughput, protocols, network security, and infrastructure technology changes.
Defining and maintaining security policies.
Occasionally replacing the security system protocol and architecture Strong knowledge in Firewalls like Palo Alto, Cisco ASA, Checkpoint, & Fortinet firewalls in High-availability mode. Understanding of SSL, TCP/UDP, HTTP, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc. VPN concepts like GRE Tunnel, IPSEC VPNs, SSL & DMVPN. Panorama, Multifactor Authentication, IPS, IDS Good understanding on Switching & Routing concepts
Level 2/3 Network Security Engineer
Play a Subject Matter Expert (SME) role on network security technologies
Deep and strong understanding of firewall (Layer-2 and Layer-3), Internet proxy, DNS, SSL VPN, multi-factor authentication and IPS technologies 4. Ability to implement and support complex security architectures involving but not limited to the above listed technologies.
A high level of Palo Alto expertise in design, configuration, migrations, tuning and customization of features
Thorough knowledge of Panorama, Wild Fire, Global Protect, and other Palo Alto features including and not limited to SSL decryption
Familiarity with Data Centre environment and hosted deployments/cloud
Experience of supporting clients remotely and face to face, along with experience of working with SIP providers
Experience with Wireshark or other protocol analyzers.
Maintaining various firewalls, virtual private networks, web protocols, and email security.
Good conceptual understanding of Blue Coat, McAfee, Zscaler proxies involving complex traffic troubleshooting.
Understanding of commonly used protocols and services (e.g. SSL, TCP/UDP, HTTP, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc.)
Good understanding of routing technologies including OSPF, BGP, GRE Tunnel and IPSEC VPNs with the ability to design and troubleshoot complex enterprise network infrastructure.
Good understanding of Remote Access products with 2-factor authentication systems.
Good conceptual understandings of Switching & F5 load balancers.
Expertise on packet capturing and deep packet analysis
Experience working on process-oriented organizations involving incident, change, problem and configuration management process.
Ability to analyze problems and perform Root Cause Analyses as and when required.
Leading the projects
Project reviews, project meetings and project delivery, Leading Technology upgrade programs
Candidates need to have Level 2/3 experience with Firewall Setup and support in enterprise/large corporate environment in current or most recent position.
