Hi,
Greetings of the Day!
Profile- Cyber Resilience Infrastructure Based Segmentation (RoW)
Enterprise Network Services (ENS)
Experience- 5 yrs+
Location- Pune/ Bangalore/ Delhi- NCR // (5 days with WFO)
About your role
- You’ll be designing and implementing segmentation landing zones with Palo Alto hardware, ready to accept critical infrastructure workloads, requiring segmentation using advanced next-generation firewall (NGFW) capabilities.
- You’ll be reviewing historic traffic flow logs from migrated critical workloads, aligning to business intent and requirements, determining and rationalizing network flows, and translating this into scalable and maintainable firewall policy.
- You’ll be aligning historical traffic flow logs with enterprise CMDB data sources, to determine application components and composition, ensuring all application components, and only those necessary, are included within the recommended enforcement policies for developers and administrators.
- You’ll be engaging with internal business units, developers, architects and SMEs to validate and rationalize observed traffic flows and interactions, confirming policy prior to implementation.
- You’ll be engaging with internal security stakeholders to assess and determine approval or rejection of certain traffic flows, according to the security and safety of protocol usage, following risk acceptance processes where necessary.
- You’ll be documenting all segmentation instances / application runs, incorporating into application passports attestation, contributing towards cyber KPI’s relating to improvement in cyber posture and risk reduction for critical infrastructure services.
About you
A suitable candidate for this role would have the following skillset:
Subject Matter Expert Skillset
– As part of joining the Engineering function and working on this cyber resilience acceleration project, you’ll be expected to bring a Subject Matter Expert (SME) skillset, specifically for Palo Alto. Palo Alto technology is employed as the NGFW capability to protect the critical infrastructure services, and as such, comprehensive implementation and operation experience of Palo Alto technologies (firewall & Panorama) is essential to be qualified for this role. Underlying network route and switch knowledge is expected, underpinning this SME domains.
Data Analysis & Manipulation
– As part of joining the Engineering function and leading the cyber resilience acceleration project, you will be expected to take a data driven and analytical approach to drive segmentation, to sufficiently de-risk the segmentation process, without breaking application services or business processes. To this end, experience of working with Microsoft Sentinel / Azure Log Analytics / KQL, or other applicable SIEM applications, to harvest and mine log data and drive outcomes is necessary. Experience in taking application flow data sets, analysing, rationalising, manipulating data sets, and translated into recommended policy sets is welcomed, to accelerate the process of translating observed flows into network policy and approved business intent.
Programming / Scripting / Network Automation
– Further to an SME skillset, it’s beneficial that you will bring some level of programming, scripting or automation experience. Examples of toolset experience expected here includes Python, CI/CD Pipelines, Terraform, Ansible, PowerShell, etc – aiding within the data analysis and manipulation job parameters.
Analytical Skills
– As a member of the Engineering function, you’ll be expected to be able to break down complex problems and define technical solutions, based upon your analysis and triage of the problem and expressed requirements. You’ll need to be able to understand the problem domain you’re assigned from a variety of technical implementations and make recommendations for these domains based on vendor and industry best practice.
Creativity
– Brainstorming and creative thinking for developing initatives, solving problems and recommending technical solutions is highly important for working effectively within this role. Being able to think outside the box, being able to drill down to the root core requirement and being able to recommend solutions which meet the most complex of requirements across various stakeholders is essential, in order to deliver scalable and robust solutions.
Stakeholder Management
– Being able to engage with various stakeholders across the business, including but not limited to, Enterprise Network Services colleagues, infrastructure architects, enterprise architects, security engineers and architects, as well as representatives from the various FIL business units is necessary, in order to capture strategy, requirements and general intent / outcome, and allow this to be embedded into Enterprise Network Services assured and engineered solutions. Being able to manage the requirements of stakeholders, the expectations of stakeholders, and the delivery of stakeholder expressed outcome is necessary to ensure stakeholders are continuously informed and kept up to date, as the Engineering function progresses the scheme of work, relating to the stakeholder's original requirement.
