Work Location (City, State) Cincinnati, OH - Hybrid
Designation: Consultant
Location: US
Experience
12+ Years of relevant IT Experience
At least 8+ years of experience in Network Security Operations.
Basic Qualification
Bachelor's Degree in Engineering
Diploma
Certifications
CCNP - Security
CCSA/CCSE
PCNSA/PCNSE
Availability
Willingness to work in 24/7 Shift based.
Network Security Operations - Service Deliverables
The service consists of providing operations (Incident, Change & Problem Management) support for network security infrastructure.
Roles & Responsibilities: The purpose of this role is to provide technical solution support for Network Security infrastructure. The emphasis would be on skills like:
Manage and utilize AlgoSec Firewall Analyzer and FirewFlow for monitoring, optimization, policy management, compliance, and custom reporting of network security firewalls.
Manage Network Security infrastructure comprising security products including firewall, IPS/IDS from leading security vendors.
Troubleshoot and resolve daily incidents.
Consult, Plan, document, and implement firewall configuration and policy changes.
Perform software upgrade, patch, and hotfix installation & hardware refresh.
Perform detailed problem RCA and define and implement corrective and preventive measures.
Enhance performance, security, monitoring, availability & stability for network security infrastructure.
Create KB articles and SOP.
Simplification and optimization through automation tools.
Work closely with CISO and IT Risk for compliance management, risk assessment, mitigation plans, threat identification and regulatory requirements.
Train new resources on technology and process and onboard in production.
Technology Knowledge Areas -
Security Policy Orchestration Management: Cisco Defense Orchestrator (CDO), Checkpoint MDS/MLM, Panorama, AlgoSec.
Firewalls Cisco ASA/Firepower, Checkpoint R80/R81, Palo Alto.
IPS Tippingpoint/Checkpoint/Palo Alto.
IPS - Threat Prevention Modules and Signatures.
VPN Strong knowledge on IPSEC and SSL VPN.
Good understanding of DNS/DHCP services
Routing Good knowledge on Routing concepts.
Automation knowledge on Ansible/Linux shell scripting is an added advantage.
Knowledge on Splunk/Skybox/NetMRI/NetBrain tools is an added advantage.
Knowledge on cloud solutions for Network Security (Azure/AWS)
Technology Experience
Must have hands-on experience in AlgoSec Firewall Analyzer and FireFlow.
Must have hands-on experience in troubleshooting network security related incidents.
Must have hands-on experience in implementation, troubleshooting & administration of Palo Alto firewalls, threat prevention modules, Panorama mgmt.
Hands-on experience in implementation, troubleshooting & administration of Checkpoint firewalls, IPS/threat prevention modules, checkpoint MDS (R80/R81), Checkpoint VSX solutions.
Hands-on experience in implementation, troubleshooting & administration of Cisco ASA/Firepower firewall, Multi-Context firewalls, Cisco Defense Orchestrator (CDO)
Must have hands-on experience in implementation, troubleshooting & administration of TrendMicro Tippingpoint IPS, Tippingpoint SMS mgmt.
Hands on experience into essential routing and switching to deploy/manage firewall solutions.
Experience in managing network infra using monitoring/analytical/management tools like Splunk/Skybox/NetMRI/NetBrain.
Experience in SOAR Security orchestration automation and response tools will be an advantage.
Experience in managing firewall solutions in Cloud infra (Azure/AWS)
Soft Skills
Excellent Written & Verbal Communication
Excellent Analytical & Virtual troubleshooting skills
Desirable
CCNP - Security
CCSA/CCSE
PCNSA/PCNSE