L3 Firewall

•Pay Range: $60-$65

Level 3 Network Security Engineer
•Play a Subject Matter Expert (SME) role on network security technologies and on Palo Alto Network products

•Configure, Manage and Monitory Palo Alto Firewall models

•Implement advanced Palo Alto Firewall features like URL filtering, User-ID, App-ID, Content-ID on both inbound and outbound traffic

•Deployed Palo Alto firewalls using confidential NSZ through L2 and L3 interfaces

•File forwarding to wildfire cloud through content-ID

•Capable of configuring and maintain Panorama M-500 centralized management appliance

•Implement and operate Global Protect VPN, IPSEC VPN, SSL VPN through IKE and PKI on Palo Alto firewalls for Site-Site VPN connectivity

•Knowledge of Enterprise DLP feature
•Deep and strong understanding of firewall (Layer-2 and Layer-3), Internet proxy, DNS, SSL VPN, multi-factor authentication and IPS technologies.
•Ability to implement and support complex security architectures involving but not limited to the above listed technologies.
•Very strong hands-on experience on implementation and advanced troubleshooting in Cisco ASA, Checkpoint, Palo Alto, & Fortinet firewalls.
•Maintaining various firewalls, virtual private networks, web protocols, and email security.
•Extensive exposure on Blue Coat/ client proxies involving complex traffic troubleshooting.
•Understanding of commonly used protocols and services (e.g. SSL, TCP/UDP, HTTP, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc.)
•Good understanding of routing technologies including OSPF, BGP, GRE Tunnel and IPSEC VPNs with the ability to design and troubleshoot complex enterprise network infrastructure.
•Good understanding of Remote Access products with 2-factor authentication systems.
•Good conceptual understandings of Switching & F5 load balancers.
•Expertise on packet capturing and deep packet analysis
•Experience working on process-oriented organizations involving incident, change, problem and configuration management process.
•Ability to analyze problems and perform Root Cause Analyses as and when required
•Leading the project and working with offshore team.
•Project reviews, project meetings and project delivery, Leading Technology upgrade programs

Roles & Responsibility
•Serve as primary support for security environment by managing customer devices and end-to-end security services, identifying sources of problems, and resolving configuration issues.
•Deep understanding of Firewall technologies.
•Configuring and installing security infrastructure devices.
•Reporting the security analysis and monitoring findings.
•Using industry-standard analysis criteria to test the security level of the firm.
•Responsible to identify threats, vulnerabilities etc. & take appropriate actions
•Consults about network performance, throughput, protocols, network security, and infrastructure technology changes.
•Defining and maintaining security policies.
•Occasionally replacing the security system protocol and architecture.