Job description
Role & Responsibilities
· Lead the WW firewall/micro-segmentation projects and make sure that the global standards are defined and implemented.
· Lead the APAC wide User VPN refresh project and ensure smooth migration
· Own the firewall/VPN L2/L3 ticket pools globally and make sure that defined Pool SLAs are met
· Work on external & internal firewall tickets by engaging with the ticket owners from different geos to understand their business requirements
· While doing firewall openings make sure that all defined security policies are followed in terms of security validations and the ports to be whitelisted
· Understand the global IP routing and components involved in it to have a better understanding of firewall openings
· Understand the global SSL VPN architecture and the failover mechanisms to serve the user VPN tickets in an efficient way
· Use the 3DS internal ticketing tool to manage, track, update and close the tickets. Make sure that tickets are updated with all the relevant information periodically.
· Patch/Upgrade firewall firmware periodically across APAC
· Work with remote IT teams to install/replace new firewall appliances as and when it's required
· Be part of the implementation team for any new firewall related projects.
· Create periodic reports on the firewall logs and see if there is any scope for fine tuning in terms of security policies.
· Keep monitoring the firewall performances and proactively intimate the management if there is any upgrade/replacement required.
· Help the automation team with feedback on how to automate the recurring operational tasks and if possible, contribute code in that front
· Be part of on call Process across APAC which include being available on phone during the week nights and weekends as per a pre-defined shift roster which will have additional monetary benefits
Qualifications/Experience
· B.Tech / B.E (CS / IT / E&TC) from premier institutions with good academic track records.
· Overall Industry experience of 7-8 years in the firewall/micro-segmentation domain.
· 5-6 years of hands-on experience on corporate firewalling solutions like Checkpoint/Cisco/Fortinet
· Hands on Experience in Zscaler ZPA & ZIA
· Hands on Experience in micro-segmentation solutions like VMWare NSX-T
· Hands on experience on Pulse Secure VPN gateways is preferred
· Good understanding of different firewall blades and their functionalities
· An Evangelist in terms of cyber security and its latest happenings around the globe
· Good understanding of routing protocols like BGP, OSPF etc.
· Basic understanding of Ansible, Python, rest API etc.
· Knowledge on Akamai load balancer will be an added advantage
· Experience in working in an international team
· Experience on an SLA oriented ticketing tool
· Strong Problem-solving skills and ability to troubleshoot complex firewall issues.
· Adaptability, ability to learn faster, independent, responsible and diligent.
· Good team spirit and interpersonal skills
· Excellent written & verbal communication skills and analytical skills
· Achieves performance goals and objectives in line with the team strategy.