Job Description – Network Security (L3) Mandatory skill set: Choice 1 - Firewall - Checkpoint NAC - Aruba Clearpass Mandatory skill set: Choice 2 - Firewall - Checkpoint WAF - Cloudflare Responsibilities Manage day-to-day Operations according to customer environment Organizational Functions Develop and implement network security architecture, policies, and procedures to protect against threats. Provide L3 level support on critical/Outage situations and drive end to end until resolution. Good understanding of network protocols (HTTP, HTTPS, DNS, TCP/IP). Strong expertise in: Implementing and maintaining Checkpoint firewall and associated software module (VPN, URL Filtering, IPS etc.) infrastructure. Checkpoint VPN (S2S & Remote access). Deep understanding of Cloudflare CDN and security solutions, including WAF, bot management, and DDoS protection. RADIUS, TACACS+, 802.1X, EAP methods, and networking protocols. ClearPass Policy Manager (CPPM) installation and configuration, profiling, onboarding, guest services. Resolve complex authentication failures, latency issues, and TACACS+ service issues. Zscaler tools (ZIA, ZPA, ZDX), packet capture analysis, scripting languages (Python, PowerShell) for automation. Design, implement, tune ZIA/ZPA policies for roaming, branch, and third-party users using Zscaler cloud security concepts. Resolve complex L2/L3 connectivity, authentication (SAML, SCIM, Azure AD) and access flow issues. Deep understanding of Zero Trust Network Access (ZTNA), Firewalls, IPSec/SSL VPNs. Maintain email security gateway platforms for filtering. Investigate, quarantine, remediate malicious or suspicious emails. Build and maintain scalable infrastructure to analyze email patterns and detect anomalies in real time with Abnormal AI. Create and maintain comprehensive documentation related to network security infrastructure and procedures following NIST and CIS standards. Identify inefficiencies in operations and propose solutions to improve efficiency. Own and drive improvements in Operations, technology, advisory and customer satisfaction. Stay up to date on emerging security threats, technologies, and industry trends. Manage and mentor a team of network security engineers and analysts. Identify automation capabilities, their execution, within the network security products and processes and deliver across multiple customer environments. Cross-skill across multiple technologies covering products like Firewalls, Web-Proxies, cloud security products (AWS, Azure, GCP, etc.). Prepare weekly and monthly performance reports across multiple customer environments (people, technologies, Process Gaps, Risk, RAG status, etc.). Conduct internal training to address skill gaps and motivate the team to obtain technical certifications. Core Functions Focus on technologies and bring automation capabilities. Regular reporting on the state of the customer delivery. Maintain KPIs for the teams and report on Service Improvement Areas to senior management. Identify risks and maintain compliance with submission of client-facing reports. Follow industry-based practices and configuration and guide the team to follow the same. Individual Performance Measurement Criteria Bring quality in service delivery and work on cross killing people to increase productivity. Quality and effectiveness in communications and engagement with stakeholders. Low/Zero Escalation from the customers. Driving Innovation to improve Service standards & Quality. Technical Skills Understanding of the different security technologies. Experience in deploying, configuring and troubleshooting: 1. Firewalls (Checkpoint) 2. NAC – Aruba Clearpass 3. Web application Firewall – Cloudflare 5. Email Security – Abnormal AI 6. Load balancer – F5 BIG-IP Security Change Management Rule Base Reviews & Optimization Security Incident Management (Standard & Critical) Understanding of different Security Architectures. Communication and Organizational Skills Good command of the English language, excellent written and verbal skills. Proactive in communication and appropriate selection of audience according to topic. Highly organized and capable of tracking a variety of tasks to closure. Good time management principles and effective in prioritizing workloads. Cultural Requirements Works collaboratively with other teams and builds positive working relationships. Able to learn quickly and apply common sense to new situations, but understand when appropriate to engage others for advice. Open and transparent style and approach with others. Places a significant level of importance on personal & team development and understanding then improving upon weakness. Accepting feedback from managers, peers, and clients regarding work performance. Utilizes a goal-oriented approach, drives self-improvement personally and professionally and drives the teams. Takes initiative to work on tasks outside immediate scope and encourages others to do the same. Experience Required Minimum overall experience of 8-12 years. • Minimum of 8 years’ experience in Information Security. • Minimum of 6 years’ experience in running a Security Operations Center for a large organization. Certifications Required Industry-recognized certifications such as CCSA/CCSE, CCIE, or equivalent highly desirable. Education Qualifications Preferably Graduate with Science/Eng. “We are an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.” #J-18808-Ljbffr