Sr. Network Security L3 Consultant

Job Description

Manage day-to-day Operations according to customer environment

Organizational Functions:

• Develop and implement network security architecture policies and procedures to protect against threats.

• Hands-on experience on Migration/Transformation from Cisco ASA/FTD to Palo Alto or any other 3^rd Party firewalls to Palo Alto.

• Should have strong working knowledge on remote access VPN (Cisco Anyconnect) should be able to build the set up from scratch.

• Should be able to provide L3 level support on critical/Outage situation and drive end to end until the resolution.

• Provide L3 operational support for Cisco WSA appliances in a global enterprise environment.

• Good understanding of network protocols (HTTP HTTPS DNS TCP/IP).

• Should have Strong expertise in:

• Cisco Web Security Appliance (WSA) administration and troubleshooting

• URL filtering DLP malware scanning HTTPS decryption

• LDAP/AD integration user/group-based policy enforcement

• URL filtering policies access controls and user authentication

• HTTPS decryption policies

• Application and content filtering rules

• Create and maintain comprehensive documentation related to network security infrastructure and procedures following the NIST and CIS standards.

• Identify the in-efficiencies in the operations and identify potential solutions to improve efficiency.

• Own and drive improvements in the areas of Operations technology Advisory and customer satisfaction.

• Stay up to date on emerging security threats technologies and industry trends.

• Manage and mentor a team of network security engineers and analysts.

• One should identify possible automation capabilities their execution

• within the network security products and process and deliver across multiple customer environments.

• Should be cross-skilled across multiple technologies covering products like Firewalls Web-Proxies as well as cloud security products (AWS Azure GCP etc.)

• Should prepare weekly and monthly performance reports across multiple customer environments (people technologies Process Gaps Risk RAG status etc.)

• Should be able to conduct internal training to address the skill gap as well as motivate the team to do technical certifications.

Core Functions:

• Focus on technologies and bring automation capabilities.

• Regular reporting on the state of the customer delivery.

• Maintain KPIs for the teams and report on Service Improvement Areas to senior management

• Identify risks and maintain compliance with submission of client-facing reports.

• Focus on industry-based practices and configuration and guide the team to follow the same.
• Proficiency Level
• Understanding of the different security technologies
• Experience in deploying configuring and troubleshooting of
• 1. Firewalls (Palo Alto/Panorma Cisco ASA/FTD etc.)
• 2. IDS / IPS (Network and Host)
• 3. Cisco Anyconnect RAVPN & Global Protect
• 4. Web-Proxy (Cisco secure web appliance)

• Experience in different Information Security Processes.

1. Security Change Management

2. Rule Base Reviews & Optimization

3. Security Incident Management (Standard & Critical)

Understanding of different Security Architectures.