L3 Soc

L3 SOC

LNT/-S/1236925

Data Center BusinessPanvel
- Posted On
- 17 Dec 2024
- End Date
- 15 Jun 2025
- Required Experience
- 12 - 18 Years

**Skills**:
Knowledge & Posting Location
- NETWORK SECURITY
- BGP
- PALO ALTO NETWORKS - FIREWALLS
- FIREWALL

Minimum Qualification

PROGRAM IN PROJECT MANAGEMENT LEVEL -1

**Job Description**:
**Job Overview**

This role involves ensuring the security and network infrastructure operates optimally, analyzing security data, deploying DDoS mitigation strategies, managing network routing protocols, and handling L3 firewall configurations to safeguard the organization's network and data.

**Job Location**

Chennai/Mumbai

**Roles & Responsibilities**

**Palo Alto Administration**:

- ** Firewall Management**: Configure, maintain, and troubleshoot Palo Alto firewalls to ensure optimal performance and security.
- ** Traffic Analysis**: Monitor network traffic and security logs for unusual activity and ensure appropriate filtering of traffic.
- ** VPN Configuration**: Set up, maintain, and troubleshoot VPN solutions, including GlobalProtect and site-to-site VPNs.
- ** High Availability (HA) & Redundancy**: Configure and maintain Palo Alto HA clusters to ensure continuous network security service availability.
- ** Logging & Reporting**: Configure logging and reporting on Palo Alto firewalls, ensuring all security events are captured and integrated into SIEM solutions.

**SIEM Analysis and Management (FortiSIEM)**:

- ** FortiSIEM Administration**: Configure, manage, and optimize **FortiSIEM** for log collection, analysis, and correlation from various security devices, including firewalls, intrusion detection/prevention systems (IDS/IPS), and servers.
- ** Incident Detection & Response**: Analyze FortiSIEM alerts for signs of security incidents, identify threats, and take proactive or reactive actions to mitigate risks.
- ** Log Aggregation & Analysis**: Configure log sources and fine-tune alert thresholds to ensure relevant and actionable security data is captured.
- ** SIEM Optimization & Tuning**: Tune SIEM rule sets, reports, and dashboards to minimize false positives and improve detection accuracy.
- ** Compliance & Reporting**: Generate compliance reports and security metrics using **FortiSIEM**, aligning with regulatory requirements such as GDPR, PCI-DSS, HIPAA, and others.

**DDoS Protection Management (Radware/Imperva)**:

- ** Traffic Monitoring & Analysis**: Continuously monitor network traffic for signs of potential DDoS attacks, leveraging Radware and Imperva to detect and mitigate abnormal traffic patterns.
- ** Incident Response & Mitigation**: Respond to DDoS incidents in real-time, leveraging automated protection mechanisms in Radware and Imperva to minimize service disruption.
- ** Performance Tuning**: Ensure DDoS protection solutions are optimized to balance security and network performance, making necessary adjustments as attack patterns evolve.
- ** Reporting & Documentation**: Generate and review attack reports, documenting incident timelines, mitigation actions, and lessons learned. Ensure reports are accessible for future analysis and compliance purposes.

**Network Infrastructure & Routing (BGP & Network Skills)**:

- ** Network Design & Optimization**: Design, configure, and maintain network infrastructure to ensure high availability, scalability, and security.
- ** BGP Configuration & Management**: Administer and configure **BGP** routing for multi-site or multi-cloud environments, ensuring optimal route selection, failover, and network redundancy.
- ** Routing Protocols**: Configure and troubleshoot routing protocols such as **BGP**, **OSPF**, **EIGRP**, and **Static Routes** to ensure optimal network performance.
- ** Network Performance Monitoring**: Use tools to monitor network performance, diagnose network issues, and ensure high network uptime.
- ** Cloud Networking**: Experience with cloud-based network configurations (AWS, Azure, GCP) and integrating them with on-premise network infrastructure.
- ** IP Subnetting & VLAN Configuration**: Manage and optimize IP address management (IPAM), subnets, VLANs, and ensure proper segmentation within the network infrastructure.

**L3 Firewall Expertise**:

- ** L3 Firewall Configuration**: Configure and manage advanced L3 (Layer 3) firewall policies, including routing and security settings, on multiple firewall platforms.
- ** Traffic Control & Filtering**: Implement and troubleshoot traffic filtering rules for IP traffic, subnets, and protocols, ensuring proper segmentation and control between networks.
- ** Advanced Routing & Firewall Integration**: Configure firewall policies based on routing protocols (such as **BGP**, **OSPF**, etc.) and integrate firewalls with routing protocols for optimized traffic management and security.
- ** Firewall Troubleshooting & Optimization**: Analyze complex firewall configurations, identify issues, and optimize firewall performance by adjusting rules, policies, and