Firewall SME

Job Title: Firewall SME (Subject Matter Expert)

Role Overview:

The Firewall SME is responsible for the design, implementation, optimization, and maintenance of enterprise firewall solutions. This role ensures robust network security by managing firewall policies, monitoring traffic, and responding to threats. The SME collaborates with cross-functional teams to assess risks and enforce security best practices.

Key Responsibilities:

• Design & Implementation
• Lead the architecture and deployment of firewall solutions (e.g., Palo Alto, Check Point, Cisco ASA).
• Design and implement firewall policies, NAT rules, security profiles, and application-based controls.
• Serve as SME for centralized management platforms like Panorama (for Palo Alto).
• Operations & Monitoring.
• Monitor firewall performance and network traffic for anomalies.
• Conduct regular audits and compliance checks.
• Respond to incidents and troubleshoot complex firewall-related issues using diagnostic tools and packet captures.
• Collaboration & Documentation.
• Work with security architects, network engineers, and SOC teams to align firewall configurations with business needs.
• Document firewall configurations, change management records, and operational procedures.
• Provide training and guidance to junior engineers and support teams.
• Security & Compliance.
• Ensure firewall configurations adhere to organizational security policies and regulatory requirements.
• Participate in vulnerability assessments and remediation planning.
• Stay updated on emerging threats and firewall technology advancements.

Required Skills & Experience:

Technical Expertise:

• Deep knowledge of TCP/IP, routing protocols (BGP, OSPF), and VPN technologies.
• Hands-on experience with Palo Alto, Check Point, Cisco ASA, Fortinet firewalls.
• Familiarity with IDS/IPS, proxy services, and DMZ configurations.
• Tools & Platforms:
• Experience with Panorama, Cisco FMC, or similar centralized management tools.
• Proficiency in log analysis and SIEM integration.
• Scripting & Automation:
• Basic scripting skills (Python, Bash, PowerShell) for automation and reporting.

Soft Skills:

• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.
• Ability to work independently and in team environments.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 5+ years of experience in network security and firewall management.
• Certifications preferred: PCNSE, CCNP Security, CEH, CISSP.