ob Description: L3 Network & Security Engineer
Position:
L3 Network & Security Engineer
Location:
(Specify Location)
Experience:
5–10 Years
Industry:
Telecom / Enterprise IT / Managed Security Services
Overview
We are seeking an experienced
L3 Network & Security Engineer
with strong hands-on expertise in managing and supporting enterprise security infrastructure including firewalls, IDS/IPS, WAF, proxy solutions, and secure email gateways. The role requires deep operational experience with advanced security tools such as
FireEye
,
Cisco ASA/Firepower
,
Cisco ISE
,
Arbor DDoS
, and
AlgoSec
. The ideal candidate will be responsible for high-level troubleshooting, incident resolution, configuration changes, and ensuring the overall security posture of the organization.
Key Responsibilities
- Security Infrastructure Operations (L3 Support)
- Provide advanced troubleshooting and escalation support for:
- Firewalls (Cisco ASA, Firepower, Palo Alto, Check Point etc.)
- IDS/IPS platforms
- Web Application Firewalls (WAF)
- Secure Web Proxies (Blue Coat, Zscaler, or others)
- Email security gateways (Cisco ESA/IronPort, Proofpoint, etc.)
- Lead critical incident handling, root cause analysis, and problem management for security infra issues.
- Perform configuration changes, rule updates, and policy optimization on all security appliances.
- Review and fine-tune firewall and IPS/IDS rules for enhanced threat mitigation.
- Operational Security Tools Expertise
- Hands-on experience operating and troubleshooting:
- FireEye NX/EX/ETP (malware detection, incident triage, alert analysis)
- Cisco ASA / Firepower (FTD FMC) (policy creation, troubleshooting packet flow, HA failover)
- Cisco ISE (802.1x, TACACS, posture policies, profiling)
- Arbor DDoS (traffic baselining, attack analysis, mitigation policy creation)
- AlgoSec (firewall rule analysis, change automation, compliance reporting)
- Use these tools for threat detection, investigation, remediation, and reporting.
- Network Security Architecture & Governance
- Work closely with architecture teams to implement secure designs for infrastructure upgrades, new deployments, and environment changes.
- Ensure security configurations meet compliance standards and internal policies.
- Participate in audit reviews, configuration assessments, and vulnerability correction activities.
- Change, Incident & Problem Management
- Manage high-priority change requests for firewall, IPS, ISE, and proxy infrastructure.
- Conduct impact analysis, risk mitigation planning, and pre/post-implementation checks.
- Create and maintain L3 knowledge base articles, SOPs, and process documentation.
- Monitoring, Analysis & Reporting
- Monitor network security events, traffic patterns, and anomalies.
- Analyze logs from FireEye, Firepower, ISE, and other security platforms.
- Prepare daily/weekly security dashboards, incident summaries, and compliance reports.
Technical Skills
Required Skills & Qualifications
- 5–10 years of experience in Network & Security Operations with an L3-level profile.
- Strong hands-on knowledge of:
- Cisco ASA, FTD/Firepower with FMC
- IDS/IPS technologies
- WAF technologies (F5 ASM, Imperva, Akamai, etc.)
- Proxy solutions (Zscaler, Blue Coat/Symantec, Squid)
- Email Security Gateways
- Solid understanding of:
- TCP/IP, Routing, Switching, NAT, VPNs, Certificates
- Threat intelligence & advanced malware detection technologies
- Network Access Control (NAC) via Cisco ISE
Tool Expertise (Mandatory or Strong Preference)
- FireEye
- Cisco ASA / Firepower
- Cisco ISE
- Arbor DDoS
- AlgoSec
Soft Skills
- Strong communication and coordination skills.
- Ability to lead war rooms and manage high-severity incidents.
- Good documentation, auditing, and reporting capabilities.
- Strong analytical and problem-solving skills.
Preferred Certifications
- CCNP Security / CCIE Security (preferred)
- Cisco Firepower Certification (FMC/FTD)
- Palo Alto PCNSE (if applicable)
- FireEye or Network Forensics Training
- ITIL Foundation
Skills: reporting,fireeye,ddos,security,cisco,ise,arbor,infrastructure,cisco asa,algosec
