Firewall Migration NCE

The Network Security Migration Engineer is responsible for performing the hands-on migration of security devices from Cisco ASA to ASA or Firepower Threat Defense (FTD). In addition to migrating configurations, this role also includes troubleshooting issues during and after the migration process, ensuring minimal downtime and maximum operational efficiency.

Key Responsibilities

Migration Tasks:

Migrate existing Cisco ASA firewall configurations to new ASA or FTD devices.Translate security policies, ACLs (Access Control Lists), and VPN configurations (site-to-site and remote access) between ASA and FTD.Configure and deploy FTD devices as part of the migration process, ensuring they are properly integrated into the existing network infrastructure.Verify migration accuracy by conducting thorough testing of security policies, connectivity, and access controls.

Troubleshooting And Post-Migration Support

Provide first-line troubleshooting for issues arising during the migration, including connectivity problems, security policy mismatches, and VPN configuration failures.Identify and resolve issues that may arise during the cutover phase, such as policy errors or device configuration issues.Work with the project manager and other technical teams to resolve any network-related issues quickly, minimizing downtime and service interruptions.Perform troubleshooting and fine-tuning after the migration to ensure optimal performance and security.

Documentation And Reporting

Create detailed documentation of the migration process, including configurations, changes made, and issues encountered.Provide post-migration reports detailing the system status, any troubleshooting performed, and recommendations for ongoing support.

Skills & Experience

Minimum 3 years of Hands-on experience with Cisco ASA and Firepower Threat Défense (FTD) configuration, migration, and support.Strong knowledge of security policies, ACLs, NAT, VPNs, and other firewall-related configurations.Experience with troubleshooting network and security issues, including but not limited to VPN issues, device communication failures, and rule mismatches.Familiarity with network protocols (e.g., TCP/IP, DNS, HTTP/S, etc.) and how they interact with security devices.Ability to work under pressure and handle critical issues during and after the migration.

Certifications such as Cisco CCNP Security or equivalent are preferred.

Minimum 5 years of FW and other Security domain project experience.

Additional Requirements

Excellent communication skills for interaction with internal teams, management, and clients.Strong problem-solving skills and the ability to think quickly to resolve complex issues during migration.Ability to work independently and in a team, ensuring migration deadlines are met while maintaining high service quality.Skills: documentation,skills,access,firewall,troubleshooting,migration,security,cisco asa,cisco