Job Description

Work Locations: Hyderabad/ Bangalore/ Mumbai/ Pune/ Gurgaon/ Kolkata/ Chennai

Required:

• Bachelors degree in engineering, computer science, information security, or information systems
• Candidate should have minimum 5-7 years of experience in Cybersecurity engineering & operations with experience in supporting infrastructure operations, SOC management, or similar domains
• Experience in multi-cloud environments (e.g., AWS, GCP, Azure), specifically around log storage, analytics, and data storage technologies
• Understanding of the Palo Alto Networks platform including Cortex Data Lake for log ingestion, Strata Cloud for SASE solutions, or NGFW firewall architecture
• Experience with common scripting languages (Python, HTML, JavaScript) for automation, playbook creation and infrastructure as code (IaC) scripting
• Experience with data queries, log aggregation and function of the Palo Alto Cortex Data Lake and understanding of integration to SIEM solutions like Splunk
• Strong understanding of next generation firewall features including DNS, SSL VPN, multi-factor authentication and IPS technologies
• Excellent communication/planning/organizing skills to create an efficient work environment, one conducive to teamwork and collaboration, and encourage good communication between client, employees and management.
• Concise and clear written and verbal communication skills
• Understanding of common threat vectors, vulnerabilities and up to date with latest cybersecurity trends and relevant threat intelligence
• Created process documents, SOPS and runbooks for managing day-to-day operations
• Experience on coordination and collaboration with multiple vendors for existing on-going issues and for new upcoming technology enhancements
• Excellent knowledge of ITIL and having strong capability to define, execute and enforce key ITIL processes like incident, problem and change management.
• Able to plan, schedule, track and report on simple project timelines/milestones using collaboration tools such as ServiceNow / Jira.
• Excellent Logical and Practical understanding of SSDLC
• Ability to create, plan, and execute advanced Network Security trainings and drive proof of concepts involving emerging technologies

Preferred:

• Experience with SASE/SSE concepts including, Firewall-as-a-service (FWaaS), Cloud Application Security Broker (CASB) and WAN technologies
• Splunk Core Enterprise Architect, Palo Alto Networks PCNSE, Cisco CCNP or other intermediate to expert level applicable certification
• Experience with architecture of network, security or similar domain solutions for enterprise, datacenter, or complex environments
• Experience with SASE/SSE solutions across leading vendors within that space (Palo Alto Networks, Netskope, ZScaler)
• Experience with Public Cloud Networking (Azure, AWS, GCP)
• Experience with Zero Trust frameworks, implementation, and maturity
• Experience with data governance aligned to common frameworks including NIST, CISA, FISMA, etc.
• Strong understanding of PowerBI, Tableau or other analytics and reporting tools
• Contributed as Subject Matter Expert (SME) role on network security technologies, toolsets or capabilities
• Experience with onboarding data sources to Splunk Cloud and developing Splunk dashboards using Splunk SPL (Search Processing Language)
• Prepared and ensured the standards, procedures are in place for the work of his or her team
• Possesses a thorough understanding of data networking & security technologies and network implementations by current applications.
• Broad exposure to security domains, including SOC transformation, data analytics, and infrastructure

Employement Category:

+ View Contact

Keyskills:   firewall splunk palo alto prisma access cortex data lake sase