Network Security -L3

Role Overview

The Network Security Engineer (L3) will be responsible for the design, implementation, and escalation-level support of complex security solutions. This role requires expertise in firewall technologies, VPN, IDS/IPS, endpoint security, and security incident response. The engineer will act as a subject matter expert (SME), providing guidance to L1 and L2 teams, ensuring compliance with security standards, and mitigating advanced threats to safeguard the organizations IT infrastructure.

Key Responsibilities

• Manage, configure, and troubleshoot advanced network security solutions (firewalls, IPS/IDS, WAF, proxies, DLP, etc.).
• Provide L3 support for escalated incidents and complex security issues.
• Implement and maintain secure network architectures, VPNs, and segmentation strategies.
• Conduct periodic audits, vulnerability assessments, and risk evaluations.
• Monitor, analyze, and respond to security events from SIEM tools.
• Work closely with SOC and Incident Response teams during security events and breaches.
• Develop and maintain security policies, standards, and documentation.
• Evaluate, recommend, and implement new security technologies.
• Mentor and guide L1 and L2 engineers in security operations.
• Collaborate with IT and business teams to ensure compliance with regulatory and security requirements (ISO 27001, PCI-DSS, GDPR, etc.).

Required Skills & Experience

• 610 years of experience in network and security engineering roles.
• Strong expertise in firewall platforms (Palo Alto, Check Point, Fortinet, Cisco ASA/Firepower).
• Proficiency in VPN (IPSec/SSL), Proxy, NAC, and secure remote access technologies.
• Hands-on experience with IDS/IPS, WAF, DDoS mitigation, and endpoint security tools.
• Solid understanding of TCP/IP, routing, switching, and network protocols.
• Experience with SIEM platforms (Splunk, QRadar, Azure Sentinel, etc.).
• Knowledge of cloud security (AWS, Azure, GCP) preferred.
• Familiarity with compliance and security frameworks (ISO, NIST, CIS).
• Strong troubleshooting, analytical, and problem-solving skills.
• Excellent communication skills and ability to work in a team and customer-facing environment.

Certifications (Preferred)

• CCNP Security / CCIE Security
• Palo Alto PCNSE
• Fortinet NSE 6/7/8
• Check Point CCSE
• CISSP / CISM / CISA (added advantage)
• Cloud Security certifications (Azure Security, AWS Security Specialty)

IF INTERESTED KINDLY SHARE PROFILE ON nilam.patil@cmsitservices.com