Sr. Security Analyst

Job Description

Company Profile

Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member's contributions and offers a supportive environment for career development. Come, stay, and grow with us.

Job Description

Role Overview:As a Senior Analyst - Security Operations, you will play a critical role in implementing, managing, and optimizing Palo Alto Firewalls, SASE (Secure Access Service Edge) solutions, F5 WAF (Web Application Firewall), and other critical security infrastructure. Your deep understanding of networking, VPN, and cloud security concepts will be essential in ensuring the security, performance, and reliability of our systems. You will work closely with cross-functional teams to design and deploy solutions, monitor network traffic, and provide technical guidance to junior team members.

Key Responsibilities:

- Palo Alto Firewalls: Lead the implementation, configuration, and management of Palo Alto firewalls for network security, ensuring policies, rule sets, and logging mechanisms align with best practices.
- Network Security Management: Implement and monitor network security measures, including VPN, IPSec, SSL VPN, and other secure tunnelling protocols, ensuring compliance with security policies.
- Networking & VPN: Utilize in-depth networking knowledge to manage and troubleshoot VPN technologies, including site-to-site and client-to-site VPN configurations, ensuring secure and reliable remote connectivity.
- Security Incident Response: Collaborate with incident response teams to identify, mitigate, and resolve security incidents related to network vulnerabilities, firewall breaches, and web application attacks.
- Cloud Security Integration: Assist in integrating security policies across cloud environments, working closely with cloud teams to ensure compliance and mitigate risks.
- Documentation & Reporting: Maintain clear, concise documentation of all network security configurations, policies, and changes. Provide regular reports and insights into system performance, security status, and risk assessment.
- Collaboration & Training: Mentor junior security team members, offering technical guidance and fostering a culture of continuous learning. Collaborate with various internal teams on best practices for security implementation.

Qualifications

- Hands-on Experience: Proven experience configuring and managing Palo Alto Firewalls, F5 WAF, and SASE technologies in enterprise environments.
- Networking Knowledge: Strong understanding of networking concepts including IP addressing, routing, switching, VLANs, DNS, and DHCP.
- VPN Expertise: Expertise in implementing and troubleshooting VPN technologies, including IPSec, SSL VPN, and remote access solutions.
- Security Best Practices: Familiarity with network security principles, best practices, and frameworks such as NIST, CIS, and ISO 27001.
- Cloud Security: Experience with securing cloud infrastructure and applications, including AWS, Azure, or GCP environments.
- Analytical Skills: Strong ability to assess network security posture, identify vulnerabilities, and recommend solutions to enhance security operations.
- Communication Skills: Excellent verbal and written communication skills, with the ability to explain complex technical concepts to non-technical stakeholders.

Preferred Qualifications:

- Certifications: Industry certifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), F5 Certified Technology Specialist (F5-CTS), or Certified Information Systems Security Professional (CISSP) are a plus.
- Scripting: Experience with automation and scripting (Python, PowerShell, etc.) to enhance security operations and reporting.
- Advanced Network Security Tools: Familiarity with additional security tools such as IDS/IPS, SIEM systems, or network monitoring platforms is desirable.

---