ACPL Systems - Senior Network Security Executive - Palo Alto Firewall (4-6 yrs)

Job Description :

The candidate has to manage Palo Alto Firewall and Panorama. Cybersecurity engineers should design, build, and manage the security infrastructure of information technology (IT) systems. This includes installing hardware, configuring firewalls, setting up virtual private networks (VPNs), and adding upgrades. Despite the strong technical focus of the job, Cyber Security engineers also engage with clients, relaying information about the project and troubleshooting all issues discovered. They are proficient in change management and disaster response, and they actively apply policies and standards to all projects. They may work in shifts 16x5

Responsibilities :

- To provide support for on-call escalations and do root cause analyses.

- To independently resolve tickets within the agreed SLA of ticket volume and time.

- To adhere to quality standards, regulatory requirements, and company policies.

- Work on value-adding activities such as Knowledge base update and management.

- Configuration objects on Panorama and push to the Palo Alto Firewall.

- Configuration of GRE, IPsec Tunnel on Panorama and push to the Palo Alto Firewall.

- Configuration of Dynamic Updates on Panorama and push to the Palo Alto Firewall.

- Configuration of NAT policies on Panorama and push to the Palo Alto Firewall.

- Configuration of Security policies on Panorama and push to the Palo Alto Firewall.

- Prepare a plan for Firewall OS version degradation, which is recommended by the OEM.

- Prepare a plan for Panorama OS version degradation, which is recommended by the OEM.

- Configuration of High Availability on Panorama and Palo Alto Firewall.

- Configuration of Policies and troubleshooting in Radware Server Load Balancer, link proof, and WAF.

- Configuration of SSL VPN policies and troubleshooting.

- Vulnerability assessment of the vulnerability, which is published by OEM.

Requirements :

- Good Understanding of Basic Routing and switching concepts.

- Must have expertise in Remote Infrastructure management for the network.

- Hands-on experience in the configuration and troubleshooting of Palo Alto, Fortinet, Checkpoint firewalls, or other network security technologies.

- Perform day-to-day firewall activities like Administration, Management, monitoring, and troubleshooting.

- Good knowledge of IOS Upgrades and software strategies.

- Hands-on experience in configuring URL filtering, file blocking, and security profiles in Palo Alto firewalls.

- Review network security threat logs for intrusions and compromises, and provide solutions

- Good knowledge of authentication methods like RADIUS and TACACS.

- Good knowledge of Migration of Firewall from different vendor (ASA, Check Point and etc. ) to Palo Alto Firewall.

- Must know Radware Server Load balancer, WAF, NAC, SSL VPN (Pulse Secure), and Cloud Security Products for CSPM and CASB.

- Device and Technology knowledge : Palo Alto, Panorama, L3 (Switch, Router), Radware Server Load balancer, WAF, NAC, SSL VPN (Pulse Secure), Network devices, IPS, Vulnerability tools.

Personal Attributes :

- Self-motivated with the ability to work independently and as part of a team.

- Strong attention to detail and a proactive approach to problem-solving.

- Willingness to learn and grow in the information security field.