Palo Alto Network Security Engineer
Exp- 9 to 12 yrs
Np- 15days to Immediate
Roles and Responsibilities:
Experience in DC network security design, implementation, and operation - especially on Palo Alto and Cisco ASA firewalls.
Strong hands-on experience and an in-depth knowledge of designing, implementing and operation of Palo Alto and Cisco ASA firewalls.
In-depth experience with Firewall rule migration - preferably from Cisco to Palo Alto Firewalls.
Expert in troubleshooting, implementing, and configuring Panorama, Palo Alto firewalls.
Should have sound knowledge in Cisco or Arista Switching, Routing, Meraki SDWAN appliance.
Hands on Experience on Cisco Meraki firewall Product range - including MX, MS, MR product.
Network integration L2/L3, routing protocols.
Analysing the current Palo alto and Prisma environment and providing recommendations and implementation plans to upgrade the code, App-ID.
Health Monitoring, Attack vector monitoring, Indicators of Compromise monitoring and blocking, Dynamic ACL monitoring and blocking
Configuring Panorama and managing the firewalls using Panorama or cisco ASDM.
Configuring and troubleshooting Prisma cloud solutions like DLP, SASE, CASB, SSPM modules
Familiar with Device groups Templates, pre-rules, post rules security profiles, the centralized push of security policies
VPN: Good knowledge on SSL VPN, IPSEC, Remote Access VPN, GRE, IPSEC VPN, Client VPN
Responsible for development of Palo alto NextGen Network Security Components and Protocols for State-of-the-art firewalls deployed at Enterprise, Data Center, Cloud, and Service Provider environments.
Palo Alto Firewall threat updates on periodic basis.
Good knowledge of Panorama, Wildfire, Global Protect, and other Palo Alto features including and not limited to SSL decryption.
Incident management, Change Management for different severity levels and following escalation matrix for ensuring SLA adherence.
P1, P2 and P3 incidents monitoring and coordination with stakeholders for timely resolution.
Expert in configuring routing protocols and documenting on Palo alto or Cisco ASA firewalls.
Develop scalable flow architecture for tunnelling protocols, mobility protocols, high availability solution for Stateful Failover
Experience knowledge of Global protect VPN.
Hands on experience in Qradar, SolarWinds monitoring tool - NPM, NTA.
Experience in Packet capturing tool - Wireshark etc.
Hands-on experience in security devices like Cisco (FTD) Firepower Threat Defense, Cisco Umbrella.
Hands-on experience in configuring IPsec VPN tunnel, SSL remote VPN (AnyConnect).
Implementing security appliance like ASA firewall or Palo Alto, WEB sense, IDS and IPS.
Product visionary, ideas on the competitive edge, Effective decision-maker, take ownership and independently drive, lead tasks and assignments.
Assess tools, applications, systems, and infrastructures to ensure compliance security best practices, and that established baselines are maintained.
Improve enterprise security architecture, designing and implementing remediation technologies, techniques, and processes.
Monitor information security alerts and collaborate with other technical teams to respond, triage, and escalate as needed. Alerts include logs from firewalls, IDS, OS, Antivirus, databases, web application firewalls, and web servers.
Audit the system environment and provide actionable information about risk discovery and create and maintain complex event alerts and summary reports.
Participate in meetings with Vendors and stakeholders in-line with Project requirements.
Able to handle multiple tasks and prioritize work under pressure.
Participate and provide input to Root Cause Analysis.
Working on Service request, changes to build new request for the requirement of the clients.
Experience in ITIL is MUST
Proficient with Microsoft Office products including Visio, Word and Excel, PowerPoint.
Strong interpersonal and problem-solving skills.
Excellent verbal and written communication skills, good customer service skills, and a proven ability to work with various teams.
Be a self-motivated, highly ethical individual with a demonstrated ability to work as independently as well as with a team.
PCNSE or PCNSA (Palo Alto) or equivalent knowledge.
CCNP Security or equivalent knowledge.
Magna Infotech is a division of USD 400 + million Quess Group (quesscorp.com) which in turn is a subsidiary of USD 37+ billion - Canadian Multinational, Fairfax Financial Holding Group. Magna Infotech is the largest staff Augmentation and Solutions Company in India, USA and APAC regions. We are a ...