Firewall Network Security Engineer

Description

Provide monitoring support for Securian’s Perimeter Security Operations team to work on incidents, service outages, performance issues
The first line of support is usually provided through chat, phone, and email communications
Analyzing, troubleshooting, and correcting network problems remotely which possibly originate from the Unified Threat Management (“UTM”) devices
Maintaining and administering perimeter security systems such as firewalls and intrusion detection systems
Incident management pertaining to in-scope Palo Alto firewalls and UTM devices
Adhere to change control process for firewall change implementation
Work with approved changes under the agreed change control processes to ensure only authorized changes are made to devices
Monitor system resource utilization, trending, and performance
Maintaining service levels as well as oversight of the day-to-day configuration, administration and monitoring of the network security infrastructure in a 24/7 environment
Packet capture, analysis and follow troubleshooting steps as mentioned Standard Operating Procedure (“SOP”) documentation
Appropriate commenting of rules for better tracking
Implement change requests and push firewall policy
Verify successful policy change
Interaction, if required, with incident and request requestors
Quality control – highlight risky rules and maintain agreed standards
Manage Firewall policies using Panorama
Tufin Alerting for risky rules

Responsibilities

• Understand requirement from Business team and provide improvement suggestion in the network security operations and processes
• Assessment of information provided and sufficiency for path analysis and risk/security analysis in the change request before
• Determination and suggest policy/rules required
• Migrating network links, data center links, firewalls links
• Performing network maintenance and system upgrades including service packs, patches and security configurations
• Firewall ruleset review with full assessment of the configuration of firewall to ensure a secure level of service that is protecting core network infrastructure
• Maintaining and updating of infrastructure security documents
• Perform packet capture, analysis, for troubleshooting
• Responsible for creating technical documentation, as-build network diagrams, inventory control documentation, and security documentation
• Investigate, isolate, and resolve UTM, firewall & intrusion prevention system (“IPS”) incidents with root cause analysis
• Coordinate with L1 support team, other IT support teams, application support teams to jointly troubleshoot and fix the high priority/ severity incidents
• Creation and update of SOPs
• Closure of compliance and audits points as per agreed timelines
• Supporting incident monitoring and incident analysis/response initiatives
• Day to day Business as Usual (“BAU”) configuration changes
• Conducting daily performance checks on devices, periodic audits, and compliance.
• Performing immediate troubleshooting as the situation dictates for all network outages as reported by users, sensors, and/or operational personnel
• Implement, and maintain network security policy, standards, and procedures
• Deploying and maintaining access-list and firewall policies
• Co-ordination with OEMs, and L3 support for firewall related issues, replacement & reconfiguration of faulty Firewalls/NIPS/UTMs