Graduate or postgraduate in Technology, Computer Science, or Information Technology (IT).
Experience in enterprise security.
Hands-on experience with Checkpoint, Fortinet Firewalls, F5, etc.
Working knowledge of Cisco platforms (ASRs, Nexus, Catalyst).
Requirements:
Design, build, and maintain Checkpoint and Fortinet firewall infrastructure.
Provide architecture, design, and implementation for Internet and Extranet firewall connectivity to meet business and InfoSec requirements.
Manage projects related to the implementation of Cyber Security tools and products.
Support F5 LTM/GTM load balancers and reverse proxy with WAF configuration.
Job description
Job Purpose:
The purpose of this role is to fulfill the Network Engineer position. This is a hands-on role responsible for overseeing and managing the design and implementation of network security solutions. The engineer will also provide Level 2 and Level 3 support for all network security issues or outages.
This position ensures the smooth operation of the infrastructure by maintaining maximum security, performance, and availability. The engineer will also work closely with vendors to support existing technology solutions and develop roadmap strategies for all security systems.
The candidate must be flexible to work in a 24/7 environment.
Responsibilities:
Design, build, and maintain Checkpoint and Fortinet firewall infrastructure.
Provide architecture, design, and implementation for all Internet and Extranet firewall connectivity to meet business and InfoSec requirements.
Manage projects related to the implementation of Cyber Security tools and products.
Support F5 LTM/GTM load balancers and reverse proxy with WAF configuration.
Manage McAfee Web Gateway proxy configuration, policies, and rule sets.
Build, configure, and support Pulse Secure SSL VPN.
Strong knowledge of Citrix NetScaler Client configuration.
Conduct vulnerability scans and assessments for all network and security devices.
Perform vulnerability remediation on all network and security devices (both software and hardware).
Create network topology diagrams and document details for troubleshooting.
Perform other network security tasks as assigned.
Track and manage license renewals, upgrades, and compliance for all network security devices.
Working knowledge of Infoblox (IPAM).
Resolve operational incident tickets (P1/P2/P3) or service requests per the agreed SLA.
Follow established incident, problem, and change management policies and procedures.
Qualifications: Minimum Qualifications:
Graduate or postgraduate in Technology, Computer Science, or Information Technology (IT).
Preferred Qualifications/Skills:
Experience in enterprise security.
Hands-on experience with Checkpoint, Fortinet Firewalls, F5, etc.
Working knowledge of various Cisco platforms (ASRs, Nexus, Catalyst).
Familiarity with routing protocols (OSPF, EIGRP, BGP).
Ability to troubleshoot Layer 2 issues, with a full understanding of Spanning Tree Protocol (STP).
Experience troubleshooting dot1x/EAP and handling NAC-related issues.
Strong understanding of TCP/IP, UDP, and the ability to troubleshoot application issues using Wireshark and tcpdump.
Knowledge of McAfee Web Gateways.
Ability to add/modify/delete entries in Infoblox DNS.
Experience with banking and e-commerce network security infrastructure.
Basic understanding of IT infrastructure and troubleshooting.
Expertise in relevant IT workstreams.
Strong analytical and problem-solving skills.
Advanced troubleshooting abilities, including in-depth analysis of systems and applications.
Specialized knowledge in specific areas of network security to tackle complex issues.
Collaboration with L1 Support to provide guidance and insights for issue resolution.
Escalate issues to L3 Support in a timely manner when advanced expertise is required.
Ability to interact effectively with stakeholders for the implementation of new functionality and issue resolution.
Strong written and verbal communication skills.
Capability to coordinate and execute assigned projects efficiently.
