Network Security Engineer (Deployment experience is MUST)
- India
- Permanent
- Full-time
- 10+ years of hands-on experience in perimeter/network security engineering or a similar role.
- Strong experience with at least two of the following firewall platforms:
- Palo Alto Networks (PanOS)
- Cisco ASA / Firepower Threat Defense (FTD)
- Fortinet FortiGate
- Proficiency in proxy technologies (e.g., Zscaler, Blue Coat, Squid).
- Working knowledge of load balancing technologies (e.g., F5 BIG-IP, Citrix ADC).
- Expertise in network protocols (TCP/IP, BGP, DNS, SSL/TLS) and packet capture analysis.
- Experience integrating security events into SIEM systems (Splunk, QRadar, etc.).
- Familiarity with cloud-based security and SASE frameworks (e.g., Zscaler, Netskope, Prisma Access).
- Solid understanding of firewall rulebase optimization, NAT, VPNs, and threat prevention mechanisms.
- Design, implement, and manage enterprise perimeter security solutions including firewalls, proxies, and load balancers.
- Configure, deploy, and troubleshoot next-generation firewalls (NGFWs) from Palo Alto Networks, Cisco ASA/FTD, and Fortinet (FortiGate).
- Design secure network architectures involving layer 4–7 load balancers (e.g., F5, Citrix ADC).
- Manage and optimize proxy servers and secure web gateways (e.g., Blue Coat, Zscaler, or equivalent).
- Perform packet capture and deep packet inspection (DPI) using tools such as Wireshark, tcpdump, or TShark for incident investigation and traffic analysis.
- Integrate firewall logs and alerts into SIEM platforms (e.g., Splunk, QRadar, LogRhythm) to support real-time monitoring, correlation, and incident response.
- Implement and maintain SASE solutions, integrating cloud-delivered security with network connectivity.
- Document configurations, playbooks, and operational procedures; contribute to security architecture standards.
- Participate in firewall rule audits, risk assessments, and vulnerability mitigation activities.
- Stay updated on the latest threats, vulnerabilities, and compliance requirements (PCI-DSS, HIPAA, NIST, etc.).