Job Description
Job Description:
Network Operations & Support - Linux firewall engineer
Experience: 6-8 Years
Location: Chennai/Bangalore
Role Summary:
We are looking for a skilled Distributed Perimeter (Linux Firewall Engineer) to design, build and operate secure Linux based perimeter controls. The role requires strong hands on experience with NixOS, nftables and proxy technologies, along with modern networking, container networking, and security observability tools such as Cilium, Suricata, and Zeek. The engineer will be responsible for implementing declarative, scalable, and security focused Linux infrastructure.
Key Responsibilities:
Install, configure, and maintain Linux systems in production environments
Design and implement distributed perimeter security using Linux firewall and proxy technologies
Build and manage systems using NixOS (MUST) with declarative configuration principles
Implement and troubleshoot Linux firewall rules using nftables (MUST)
Deploy, configure, and manage proxy solutions, including:
Squid Proxy (MUST)
Sproxy
Enforce inbound and outbound traffic control using firewall and proxy policies
Deploy and support Cilium for container networking, security, and observability
Configure and operate network security and visibility tools, including:
Suricata (IDS/IPS)
Zeek (network traffic analysis)
Monitor system and network behavior, troubleshoot incidents, and perform root cause analysis
Ensure system hardening, security compliance, and best practices
Collaborate with Security, Platform, and DevOps teams on perimeter and network security improvements
Document firewall rules, proxy configurations, and operational procedures
Mandatory Skills & Experience:
4+ years of hands on Linux administration / engineering experience
Strong experience with NixOS (MUST)
Strong hands on experience with nftables (MUST)
Hands on experience with Squid Proxy (MUST)
Experience working with Sproxy
Strong understanding of Linux networking fundamentals (TCP/IP, routing, packet flow)
Experience implementing firewall and proxy based security controls in production
Good troubleshooting and incident handling skills
Required / Core Skills:
Experience with Cilium for container networking and security
Familiarity with Suricata for intrusion detection/prevention
Familiarity with Zeek for network traffic analysis and visibility
Understanding of distributed or zero trust perimeter concepts
Scripting skills (Bash required Python preferred)
Preferred Skills:
Experience with Kubernetes or containerized environments
Exposure to observability, logging, or SIEM integrations
Experience working in high availability or large scale Linux environments
Security focused Linux deployments
Other Qualification and requirement:
Any degree or relevant education is must. This role requires working at customer locations based on business needs.
About Company
Tata Communications is a digital ecosystem enabler that powers today’s fast-growing digital economy. We enable the digital transformation of enterprises globally, including 300 of the Fortune 500. We carry around 30% of the world’s internet routes and connects businesses to 60% of the world’s cloud giants.
We have been a part of the rich heritage of the internet in India. Over the last 25 years, enterprise-enabled services have been essential to the adoption of digital services in the country. Connectivity is an essential fabric of sustenance for the economy. We are committed to enabling Industry leaders in this New World of Communications™, with our unique promise of delivering secure connected digital experiences.
In 2020, we announced the launch of ‘Secure Connected Digital Experience’ (SCDx), a proposition intended to meet this growing, worldwide demand for new ways of operating, which includes far higher levels of working from home, rising security risks, a shift to digital commerce, and more contactless experiences. It will help companies currently relying on short-term fixes by providing holistic, secure, enterprise-level digital solutions that address current challenges and are fit for the long term.
