Key Responsibilities:
- Firewall Management & Configuration: Configure, monitor, and maintain firewalls (including next-gen firewalls) to safeguard the organization's network infrastructure from unauthorized access, threats, and breaches.
- WAF Deployment & Configuration: Implement and manage Web Application Firewall (WAF) solutions to protect web applications from vulnerabilities such as SQL injection, cross-site scripting (XSS), and DDoS attacks.
- Security Incident Response: Investigate, analyze, and respond to security incidents related to firewall or WAF events, ensuring that critical issues are addressed promptly and appropriately.
- Traffic Filtering & Rules Definition: Develop, review, and update firewall rulesets and WAF policies to ensure optimal traffic filtering, access control, and security measures are in place.
- Threat Detection & Mitigation: Monitor network traffic and logs for suspicious activities and potential threats using firewalls and WAF systems. Take action to block malicious traffic and mitigate potential attacks.
- Network Segmentation: Design and implement network segmentation strategies to ensure that different parts of the network are appropriately isolated and secured.
- Compliance & Reporting: Ensure that firewall and WAF configurations align with security standards and compliance regulations (e.g., GDPR, PCI-DSS, HIPAA). Generate reports on security incidents, firewall performance, and WAF effectiveness for management and compliance audits.
- Vulnerability Management: Regularly review firewall and WAF configurations to identify and address vulnerabilities. Conduct risk assessments and security audits to ensure the organization's infrastructure remains secure.
- Collaboration with Other IT Teams: Work closely with other teams (e.g., Network, DevOps, Application Security) to integrate firewall and WAF solutions with other security tools and systems.
- System Updates & Patching: Regularly update firewall and WAF systems with the latest patches, firmware updates, and security fixes to protect against new vulnerabilities.
- Training & Documentation: Create and maintain detailed documentation for firewall and WAF configurations, incident response protocols, and security procedures. Provide training to team members on firewall and WAF security best practices.
- Optimization & Tuning: Continuously optimize and tune the firewall and WAF systems for performance, ensuring minimal false positives and optimal traffic filtering.
Required Qualifications & Skills:
- 3-5 years of experience in network security, specifically with firewalls and WAF technologies.
- Hands-on experience with leading firewall technologies (e.g., Palo Alto, Fortinet, Cisco ASA, Check Point, Juniper).
- Proven expertise in Web Application Firewall (WAF) solutions, such as F5, AWS WAF, Akamai Kona Site Defender, or Cloudflare.
- Solid understanding of network protocols (e.g., TCP/IP, HTTP, SSL/TLS, DNS) and how they relate to firewall and WAF security configurations.
- Familiarity with DDoS mitigation techniques and tools.
- Experience with SIEM tools (e.g., Splunk, LogRhythm) for analyzing firewall and WAF logs.
- Strong understanding of network security concepts, including VPNs, IDS/IPS, NAT, and ACLs.
- Ability to troubleshoot and resolve network connectivity and security issues related to firewalls and WAF.
- Familiarity with industry standards and frameworks such as OWASP, NIST, ISO 27001, and PCI-DSS.
- Strong analytical, problem-solving, and incident response skills.
- Excellent written and verbal communication skills, with the ability to produce security reports and document procedures.
- Ability to work effectively in a collaborative team environment and communicate security concepts to non-technical stakeholders.
