The Lead Engineer, Information Security is a senior-level role responsible for architecting, implementing, managing, and optimizing enterprise firewall and network security solutions across on-premises datacenters and cloud environments. This position provides technical leadership in firewall governance, advanced troubleshooting, policy management, and incident response. The engineer will also ensure compliance through structured change management (CRQ) and continuous improvement of security controls.
Roles & Responsibilities
-
Firewall Architecture, Deployment & Management:
Design, configure, and maintain enterprise firewalls including Palo Alto Networks, Fortinet FortiGate, Cisco Lead the deployment and optimization of firewall policies, NAT rules, security zones, segmentation, and VPN configurations. Manage firewall operations for both on-premises datacenters and multi-cloud environments.
-
Datacenter Network Security & Troubleshooting:
Provide expert-level troubleshooting of datacenter network and security issues involving firewalls, routing, switching, VPNs, load balancers, and connectivity failures. Lead root cause analysis (RCA) and implement long-term corrective actions for recurring problems. Work closely with network and infrastructure teams to resolve complex cross-functional issues.
-
Firewall Policy Creation & Governance:
Develop, review, and optimize firewall policies to ensure high security, minimal risk, and compliance with organizational standards. Utilize AlgoSec for rule analysis, change automation, risk assessment, and policy lifecycle management. Conduct periodic rule reviews and cleanup activities to maintain streamlined, efficient policies.
-
Cloud Firewall Security (GCP & Azure & OCI):
Implement and manage network security controls in Google Cloud Platform (GCP), including VPC firewall rules, Cloud Armor, and service perimeter configurations. Configure and maintain Azure Firewall, NSGs, ASGs, UDRs, and other cloud-native security controls. Collaborate with cloud engineering teams to integrate security into cloud architectures and deployments.
-
Incident Management & Response:
Lead firewall-related security incidents, including detection, investigation, containment, and remediation. Work closely with SOC, threat intelligence, and vulnerability management teams to assess and mitigate risks. Provide detailed incident documentation, RCA, and follow-up action plans.
-
Change Management (CRQ):
Create, review, and execute Change Requests (CRQs) in accordance with ITIL best practices. Assess change impact, provide technical guidance, and coordinate implementation activities. Ensure all changes are documented, vali , and completed with minimal operational risk.
-
Technical Leadership & Collaboration:
Act as the Subject Matter Expert (SME) for firewall and network security services. Mentor junior engineers and provide guidance on best practices and troubleshooting methods. Partner with infrastructure, cloud, application, and security teams on initiatives requiring security expertise.
Years of Experience
-
10+ years of experience in architecting, implementing, managing, and optimizing network security solutions across on-premises datacenters and cloud environments.
Education Qualification
Skill Set Required
-
Hands-on expertise with:
-
Palo Alto (Panaroma App-ID, Threat Prevention)
-
Fortinet FortiGate
-
Fortimanager, FortiAnalyzer , Panoroma
-
GCP Firewall, VPC security, Cloud Armor
-
Azure Firewall, NSGs, ASGs, network security controls
-
Strong experience with datacenter troubleshooting, network flows, packet capture, and performance analysis.
-
Experience with large-scale migration activities, and optimization and securitization of firewalls and governance
-
Proficiency with AlgoSec or similar firewall policy management tools.
-
Strong background in incident management, RCA, and remediation actions.
-
Experience with CRQ/ITIL change management frameworks.
Secondary Skills
-
Palo Alto PCNSE
-
Fortinet NSE 4/5/7
-
GCP Professional Cloud Security Engineer
-
Azure Security Engineer (AZ-500)
-
ITIL Foundation
-
CISSP, CCSP, or equivalent
