Job Description

Description GSPANN is hiring a Firewall Engineer to deploy and manage Palo Alto Next-Generation Firewalls (NGFWs). The role includes configuring security policies, VPNs, Panorama, and advanced threat prevention features.

Role and Responsibilities

  • Design, deploy, and manage both physical and virtual Palo Alto Next-Generation Firewalls (NGFWs).
  • Configure security policies, Network Address Translation (NAT), application control rules, and threat prevention profiles.
  • Support and implement GlobalProtect Virtual Private Network (VPN) and IPSec/SSL tunnel configurations.
  • Use Panorama to centrally administer and manage firewall policies and settings.
  • Analyze logs and alerts, investigate security incidents, and resolve firewall-related issues effectively.
  • Conduct periodic firewall rule reviews, perform clean-ups, and optimize configurations for compliance and performance.
  • Integrate firewalls with Security Information and Event Management (SIEM) platforms, identity management systems, and multi-factor authentication solutions.
  • Manage advanced features such as URL filtering, WildFire malware prevention, Domain Name System (DNS) security, and Secure Sockets Layer (SSL) decryption.
  • Enforce zone-based security architecture and ensure least-privilege access across segmented network zones.
  • Plan and perform firmware upgrades, establish high-availability (HA) environments, and execute disaster recovery (DR) testing.
  • Develop and maintain comprehensive network security documentation, including policies, standard procedures, and topology diagrams.
  • Collaborate closely with Security Operations Center (SOC), Network Operations Center (NOC), and compliance teams to align with regulatory frameworks such as ISO and PCI-DSS.

    • Skills and Experience

  • Bachelor's degree in Computer Science, Information Security, or a related discipline.
  • 5+ years of hands-on experience with Palo Alto NGFWs in enterprise environments.
  • Hold relevant certifications such as PCNSA (Palo Alto Networks Certified Network Security Administrator), PCNSE (Palo Alto Networks Certified Network Security Engineer), and Cisco certifications like CCNA and CCNP.
  • Demonstrate expertise in Palo Alto Firewalls (PA-3000, 5000, 7000 series or VM-Series), Panorama, and advanced security modules including App-ID, User-ID, and Content-ID.
  • Manage SSL decryption, WildFire threat analysis, GlobalProtect VPN, and IPSec tunnels effectively.
  • Understand core networking protocols and technologies including TCP/IP, Border Gateway Protocol (BGP), Open Shortest Path First (OSPF), Virtual LANs (VLANs), NAT, Hot Standby Router Protocol (HSRP), and DNS.
  • Design and support high availability, failover, and load balancing solutions.
  • Perform deep log analysis and packet captures using tools like Wireshark.

    • Apply for this Position

    Ready to join ? Click the button below to submit your application.

    Submit Application