Firewall Engineer

L2 Firewall JD Responsible for direct management of network security infrastructure devices at the client premises. show proactive involvement in updating the security device configuration in alignment with the corporate security policy and keeping all security devices updated as per the vendor recommendations, making modifications in the device configurations as per the recommendation of SOC analyst, fine tuning the controls in place, accessing the security posture of the devices after modifications etc. are the common

Additional responsibilities of this role.

SOC Device Manager (DM): SOC DM carries out Network security & IT Infrastructure security management.

Following are the key responsibilities of this role:

1. Configuration, fault, performance, availability, backup, and capacity management of all SOC and IS Security devices.

2. Firewall rule additions to be performed daily following SAR process.

3. Co-ordination with internal teams such as NOC for firewall rule base management and troubleshooting.

4. Participate in security architecture planning and integration of new devices in DC and DR.

5. Policy/Rule Management and configuration optimization of security devices such as Firewalls etc. 6. Tracking the SLA with OEM or reseller for support requests, maintenance contract, required licenses, software subscription for all hardware & software components of Devices.

7. Periodic review the backup configuration and business continuity procedures to be followed in the event of Device failure.

8. Monitor the availability of security devices via Qradar and perform daily health check.

9. Root cause analysis for failure/ downtime of security devices.

10. Maintain IP addressing schemes, routing information, routing tables, for the Device operations 11. Detailed analysis of miss-configurations, OS/application failures.

12. Prepare and review capacity plans for security devices and recommend upgrades as required. 13. Test migration/upgrade plan in staging environment.

14. Service uptime assurance of all security devices.

15. Open a case with device supplier in the event of hardware component or system failure or bugs.

16. Set up a baseline security level for client critical assets by means of Qradar vulnerability scans per quarter.

17. Track the mitigation and coordinate with asset owners for closure of security gaps identified.

Technologies: Checkpoint Next Generation Firewall FortiGate Next Generation Firewall Optional: IBM – Guardium DAM Solution