Security Level 2

Job Title: Security L2 Engineer
Location:
Mumbai Airoli

Experience:
6 to 9 years & Relevant should be 4+ Years in L2

Type:
1+ year Contract to Hire

Overview
We are seeking a highly skilled and experienced Security L2 Engineer to join our team. This individual will be responsible for managing, troubleshooting, and optimizing security infrastructure across various technologies, ensuring the security of our network and data. The ideal candidate will have extensive hands-on experience with firewalls, IDS/IPS, proxies, WAF, and email gateways, specifically with Palo Alto, Juniper SRX, Fortigate, McAfee, Zscaler, Akamai, and Cisco Ironport.

Key Responsibilities

• Firewall Management:

• Configure, manage, and troubleshoot Palo Alto, Juniper SRX, and Fortigate firewalls to ensure optimal security configurations, rule sets, and access control policies.

• Perform regular firewall audits, identify security vulnerabilities, and provide recommendations for improvements.

• IDS/IPS Management:

• Monitor and manage McAfee IDS/IPS systems for intrusion detection and prevention.

• Analyze and respond to security alerts, ensuring timely incident response and escalation where necessary.

• Proxy Management:

• Configure and maintain McAfee and Zscaler proxy solutions to monitor and secure internet traffic.

• Troubleshoot proxy-related issues and ensure that web traffic is being securely filtered according to company policies.

• WAF Management:

• Administer and optimize Akamai Web Application Firewall (WAF) to protect web applications from threats and vulnerabilities.

• Conduct performance tuning and ensure continuous protection for applications against evolving threats.

• Email Gateway Security:

• Manage and maintain Cisco Ironport email gateway for email security, including spam filtering, malware detection, and preventing phishing attacks.

• Monitor email traffic, troubleshoot security issues, and ensure compliance with email security best practices.

• Security Incident Management:

• Respond to and investigate security incidents, conducting root cause analysis and ensuring effective remediation steps are taken.

• Work closely with internal teams and external vendors to mitigate any security threats.

• Security Policy and Procedure Development:

• Assist in the development and enforcement of security policies, procedures, and best practices across the organization.

• Ensure that security policies and procedures are updated in accordance with industry standards and regulations.

• Collaboration and Reporting:

• Collaborate with cross-functional teams to ensure seamless security operations and compliance.

• Prepare and present security reports to senior management, highlighting critical issues and recommending solutions.

• Mentoring and Support:

• Provide guidance and mentoring to junior team members, sharing best practices and knowledge in security management.

• Act as an escalation point for complex security issues and provide advanced troubleshooting support.

Qualifications And Skills

• Experience:

• At least 7 years of hands-on experience working with security technologies, specifically Palo Alto Firewalls, Juniper SRX, Fortigate, McAfee IDS/IPS, McAfee/Zscaler Proxy, Akamai WAF, and Cisco Ironport.

• Experience in managing complex network security infrastructure and ensuring its proper functioning.

• Certifications:

• Palo Alto Networks Certified Network Security Engineer (PCNSE) (preferred).

• Certified Information Systems Security Professional (CISSP) or equivalent (preferred).

• Any relevant certifications for McAfee, Zscaler, Akamai, Juniper, Fortigate, and Cisco Ironport (highly desirable).

• Technical Skills:

• In-depth knowledge of network security protocols and technologies.

• Strong understanding of firewall configurations, IDS/IPS systems, email security, web application firewalls, and proxy solutions.
• Expertise in incident management, vulnerability analysis, and security monitoring tools.

• Strong troubleshooting and analytical skills.

• Soft Skills:

• Excellent communication and interpersonal skills, with the ability to collaborate effectively with both technical and non-technical teams.

• Strong organizational and time management skills, with the ability to handle multiple priorities and meet deadlines.

Technologies
Technologies
Product
Firewall

Palo Alto

Juniper SRX

Fortigate

VPN

CISCO FIREPOWER / ASA

DDoS

Arbor

DNS Security

Cisco Umbrella

NAC

Cisco ISE

Firewall Analyzer

AlgoSec

IDS/IPS

McAfee

Proxy

McAfee / Zscaler

Adv. Threat Protection

FireEye

WAF

Akamai

Email Gateway

Cisco Ironport

Certifications Required –

• PCNSA/PCNSE
• JNCIA/JNCIP Security
• ZIA-A/ZIA-P -Zscaler Internet Access