NETWORK - Firewall and segmentation
2 days ago
Network Segmentation Operations
- Implement and manage segmentation across VLANs, subnets, and security zones (e.g., User, Server, OT/IoT, DMZ, Partner, PCI zones).
- Enforce zone-based policies—least privilege, deny-by-default; maintain inter-zone matrix (who can talk to whom).
- Execute segmentation change requests: policy updates, NAT changes, and group membership changes.
- Maintain asset-to-zone mappings and tagging (e.g., using identity awareness / dynamic objects).
- Validate segmentation efficacy using test plans (ping/TCP checks, app flow validation).
- Solid understanding of TCP/IP, routing, VLANs, NAT, DNS, and VPN technologies.
- Proven experience in Network Segmentation / Micro-Segmentation projects
- Experience performing Network Risk Analysis and mitigation planning.
- Configure, deploy, and manage Checkpoint Next-Generation Firewalls (NGFW) and related security gateways.
Check Point Firewall Administration
- Daily management in SmartConsole (R80.x): access policies, NAT, Application Control/URLF, IPS, Threat Prevention profiles.
- Manage Gateways & Clusters (Gaia OS): HA status, sync, failover readiness, VPN communities.
- Run policy verification (Hit counts, Unused/Shadowed rules, Rule order optimization).
- Maintain objects hygiene: networks, hosts, groups, services, dynamic objects.
- Backups & snapshots of Gaia and SmartCenter; track policy revisions.
Monitoring & Incident Handling
- Monitor logs/SmartEvent for anomalies (deny spikes, drops, high CPU/conn table pressure).
- First-responder for connectivity issues related to segmentation (blocked flows, NAT misconfig, asymmetric routing).
- Perform packet captures (fw monitor, tcpdump) and interpret rule-matching logic.
- Escalate to L3 with structured analysis (flow diagrams, rule references, timestamps, correlations).
Operational Excellence
- Execute change windows with pre/post validation and rollback plans.
- Keep runbooks and as-built documentation updated (zones, policies, rule intent).
- Support audits/compliance (PCI/SOX/ISO): evidence collection, rule attestation, policy reviews.
- Participate in rule life-cycle: request → risk review → implement → recertify → retire
Required Skills & Experience
Technical Skills:
- Solid understanding of segmentation concepts: VLAN, VRF, DMZ, east–west vs north–south traffic, zero-trust principles.
- Hands-on with Check Point (R80.x): SmartConsole, Gaia CLI, policy layers, Threat Prevention, Identity Awareness.
- Networking fundamentals: TCP/IP, routing (static/OSPF/BGP basics), NAT (hide/static), HA clustering.
- Troubleshooting: fw monitor, tcpdump, log analysis, rule hit counts, connection table analysis.
- Familiarity with proxy/DNS/DHCP touchpoints for segmentation changes.
Experience:
- 7–10 years in network security operations or firewall management.
- Exposure to enterprise-scale segmentation projects.
- Certifications (Preferred):
- Check Point Certified Security Administrator (CCSA) or higher.
- CCNA/CCNP or equivalent networking certifications.
-
NETWORK - Firewall and segmentation
2 days ago
Bengaluru, Karnataka, India Zensar Technologies Full time ₹ 12,00,000 - ₹ 36,00,000 per yearNetwork Segmentation OperationsImplement and manage segmentation across VLANs, subnets, and security zones (e.g., User , Server , OT/IoT , DMZ , Partner , PCI zones).Enforce zone-based policies—least privilege, deny-by-default; maintain inter-zone matrix (who can talk to whom).Execute segmentation change requests : policy updates, NAT changes, and group...
-
Checkpoint,Firewall
2 days ago
Bengaluru, Karnataka, India Axiom Software Solutions Limited Full time ₹ 5,00,000 - ₹ 25,00,000 per year• Maintain the network and security architecture of the organization• Analyze and implement new security protocols to improve performance against threats or malfunctions• Resolve existing security issues, including hardware malfunctions• Lead network security design for cloud solutions, including automation to support cloud expansion and network...
-
Network Engineer L2 with firewall
7 days ago
Bengaluru, Karnataka, India CMS It Services Full time ₹ 9,00,000 - ₹ 12,00,000 per yearDear Professional,We are urgently looking for Network L2+ with firewall Role for the Bangalore Location.Network Support L2+ skills:Experience required - 5 Years -11 YearsLocation - BangaloreIf interested, please share your profile at or call Position Overview: A Network Support Engineer at the L2 level is responsible for troubleshooting, maintaining, and...
-
Network Engineer
2 weeks ago
Bengaluru, Karnataka, India Pyramid Consulting, Inc Full time ₹ 4,00,000 - ₹ 12,00,000 per yearRole:- Juniper Network EngineerLocation:- Bangalore and Pune, IndiaMode:- Fully OnsiteKey Responsibilities:Minimum of 4-6 years hands-on experience in enterprise or service provider network engineering with strong emphasis on Juniper platforms.Strong experience with Juniper hardware (e.g., MX, PTX, EX, QFX, SRX) and Junos OS.In-depth understanding of routing...
-
Network Lead
2 days ago
Bengaluru, Karnataka, India ALIQAN Technologies Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob Title Network LeadOrganization Name NEC Corporation India Pvt. Ltd.Reporting Relationship To Report to Senior ManagerRole Summary:Design secure and scalable network architectures for enterprise and government clients across SD-WAN, Core Networking, Firewalls, and Data Centre infrastructure.Configure, deploy, and manage routing, switching, and security...
-
Senior Network Engineer
1 week ago
Bengaluru, Karnataka, India Progress Residential Full time ₹ 8,00,000 - ₹ 16,00,000 per yearPosition Summary The Senior Network Engineer is responsible for advanced support, design input, and operational excellence across a large-scale enterprise network spanning 300+ sites and hybrid cloud environments. This role acts as a Tier 3 escalation point within the India-based NOC and ensures high availability, secure connectivity, and optimal network...
-
Senior Network Engineer
2 weeks ago
Bengaluru, Karnataka, India Pretium Full time ₹ 6,00,000 - ₹ 18,00,000 per yearPosition SummaryThe Senior Network Engineer is responsible for providing advanced support, design input, and ensuring operational excellence across a large-scale enterprise network comprising over 300 sites and hybrid cloud environments. This role serves as a Tier 3 escalation point within the India-based NOC, ensuring high availability, secure connectivity,...
-
Network Security Engineer
1 week ago
Bengaluru, Karnataka, India Aziro Full time ₹ 20,00,000 - ₹ 25,00,000 per yearRole & responsibilitiesKey ResponsibilitiesImplement, audit, and maintain CIS Benchmark compliance across network devices, security platforms, and supporting servers tied to network services.Lead efforts in network and cloud security operations, including firewalls, IDS/IPS, IAM, and vulnerability management.Develop and maintain automation scripts (e.g.,...
-
Sr. Network Engineer
6 days ago
Bengaluru, Karnataka, India Depth Secure Full time ₹ 8,00,000 - ₹ 24,00,000 per yearJob Title: Senior Network EngineerDepartment: Network Security & InfrastructureLocation: BangaloreEmployment Type: Full-Time (Hybrid / Onsite)________________________________________About Depth SecureAt Depth Secure, we are Ahead of Threats — protecting enterprise networks through innovation, resilience, and cutting-edge cybersecurity operations. Guided by...
-
Network Engineer
14 hours ago
Bengaluru, Karnataka, India Astellas Pharma Full time ₹ 20,00,000 - ₹ 25,00,000 per yearDo you want to be part of an inclusive team that works to develop innovative therapies for patients? Every day, we are driven to develop and deliver innovative and effective new medicines to patients and physicians. If you want to be part of this exciting work, you belong at AstellasAstellas Pharma Inc. is a pharmaceutical company conducting business in...
