Information Security Specialist

Who are we

Amdocs helps the worlds leading communications and media companies deliver exceptional customer experiences through reliable efficient and secure operations at scale. We provide software products and services that embed intelligence into how work runs across business IT and network domains delivering measurable outcomes in customer experience network performance cloud modernization and revenue growth. With our talented people and more than forty years of experience running mission-critical systems around the globe Amdocs runs billions of transactions daily. Our technology is relied on every day connecting people worldwide and advancing a more inclusive connected world. Together we help those who shape the future to make it amazing. Amdocs is listed on the NASDAQ Global Select Market (NASDAQ: DOX) and reported revenue of $4.53 billion in fiscal 2025. For more information visit

At Amdocs our mission is to empower our employees to Live Amazing Do Amazing every day. We believe in creating a workplace where you not only excel professionally but also thrive personally. Through our culture of making a real impact fostering growth embracing flexibility and building connections we enable them to live meaningful lives while making a difference in the world.

In one sentence

Were seeking a handson Network Security Specialist to engineer operate and continuously improve our perimeter and edge security stack who will be responsible for the configuration finetuning lifecycle management security monitoring incident response and compliance readiness of network security controls including Cisco & Check Point Firewalls Cisco & Palo Alto IPS Tufin Firewall Analyzer Imperva CDN/WAF F5 ASM WAF DDoS protection services CrowdStrike and Arcsight SIEM integrations in a hybrid environment.

What will your job look like

The ideal candidate brings strong operational rigor a measuretwicecutonce change mindset and the ability to work collaboratively as a team with cross-functional partners across Security Networking and Application teams to reduce risk while enabling the business in globally distributed locations.

Key Responsibilities

Engineering & Configuration

• Design implement and harden policies for Cisco/Check Point firewalls; manage access control NAT VPN and advanced threat features.
• Configure and optimize IPS signatures and profiles (Cisco/Check Point/Palo Alto) to maximize detection while minimizing false positives.
• Deploy finetune and maintain F5 ASM and Imperva WAF/CDN policies bot management rate limiting and positive security models for web applications and APIs.
• Maintain DDoS protection configurations including runbooks thresholds and upstream coordination with providers.
• Use Tufin Firewall Analyzer (SecureTrack/SecureChange) for rule lifecycle policy optimization risk analysis recertification and change governance.
• Integrate CrowdStrike intelligence and detection telemetry with network enforcement points and ArcSight SIEM for correlated detections and automated response where applicable.

Operations & Monitoring

• Own the daytoday monitoring for network security tools; triage alerts tune rules and drive continuous reduction of noise.
• Perform log analysis and correlation via SIEM (ArcSight) to identify threats campaign patterns and attacker TTPs.
• Conduct policy audits and rule hygiene (remove shadowed/unused rules rightsize overly permissive rules validate business justifications).
• Ensure high availability redundancy and health of security appliances and services; manage upgrades patches and hotfixes with change control discipline.

Incident Response

• Active participation in an oncall for highseverity incidents and maintenance windows (including some afterhours/weekend work).
• Lead or support networkcentric incident handling: scoping containment eradication and recovery for web attacks (L7) DDoS commandandcontrol data exfiltration and lateral movement.
• Develop and maintain playbooks/runbooks for common attack scenarios (WAF blocks IPS hits DDoS events suspicious egress VPN abuse).
• Produce clear executiveready incident summaries rootcause analyses and lessons learned; track corrective actions to closure.

Compliance & Governance

• Align network security controls and evidence to PCI DSS SOC 2 and ISO/IEC 27001 requirements (e.g. segmentation logging change control vulnerability management access reviews).
• Prepare and provide audit artifacts (policy snapshots rule reviews change tickets testing results) and remediate findings in partnership with control owners.
• Enforce least privilege and segregation of duties in access and change workflows.

Enablement & Automation

• Partner with Networking & Application teams to safely enable new business services through secure design reviews and predeployment testing.
• Automate routine tasks (e.g. rule recertification object inventory config backups compliance evidence pulls) using Python Ansible vendor APIs or Tufin workflows.
• Maintain accurate documentation (HLD/LLD diagrams baselines standards and runbooks).

All you need is...

• 8 years in network security engineering/operations or related roles.
• Handson expertise with firewalls and IPS (policy design advanced troubleshooting VPNs packet capture/analysis).
• Practical experience with F5 ASM and/or Imperva WAF/CDN policy creation tuning and attack mitigation.
• Experience managing DDoS protection (cloud scrubbers BGP/RTBH or appliancebased).
• Experience with Tufin Firewall Analyzer (SecureTrack/SecureChange) for rule governance and compliance workflows.
• Strong understanding of TCP/IP routing switching TLS/SSL DNS HTTP/HTTPS and CDN architectures.
• SIEM log analysis and detection triage; ability to write queries and create dashboards.
• Demonstrated incident response experience focused on network perimeter and web threats.
• Working knowledge of PCI DSS SOC 2 and ISO 27001 control requirements relevant to network security.
• Scripting/automation proficiency (preferably Python; YAML/Ansible a plus).

Competencies

• Bachelors degree in Computer Science Information Security or equivalent experience.
• Certifications: CCNP Security CCSA/CCSE F5ASM Imperva Tufin TCP CISSP GCIH/GCIA (or equivalents).
• Excellent communication skills with the ability to translate technical risks for nontechnical stakeholders.

Why you will love this job:

• Opportunity to collaborate globally: You will get to work closely with crossfunctional teams across multiple geographies gaining exposure to diverse perspectives and innovative ways of problemsolving.
• High-impact role: Your work directly contributes to critical business outcomes making this a position where your contributions are visible and valued.
• Professional growth: The dynamic nature of the role provides continuous learning opportunities and the chance to expand both technical and leadership skills.
• Collaborative culture: Youll be part of a supportive teamoriented environment that encourages open communication knowledge sharing and mutual success.

#LI-CH1