Location- Bengaluru.
Experience - 8 to 11 Years.
We are seeking a highly experienced and certified Senior Network Security Architect with deep expertise in managing enterprise firewalls (Palo Alto, Check Point, Fortinet) and SASE solutions (Palo Alto Prisma Access, Zscaler, Netskope). The ideal candidate will have a proven track record in large-scale firewall and SASE deployments, migrations, and architecture design, with a strong understanding of integrated SASE offering (SSE + SD-WAN) from leading vendors Palo Alto, Zscaler, Netskope.
Key Responsibilities
- Architect, deploy, and manage advanced firewall solutions across hybrid environments (on-premises, cloud, hybrid).
- Lead end-to-end migration projects for firewalls and SASE platforms, including planning, execution, and post-migration optimization.
- Design and implement SASE architecture with a focus on Palo Alto Prisma Access (SSE + SD-WAN), Zscaler, or Netskope.
- Integrate SASE solutions with existing security infrastructure and ensure seamless policy enforcement.
- Perform configuration, upgrades, and maintenance of firewall platforms (Palo Alto, Check Point, Fortinet).
- Exposure to WAF solutions, perform network log analysis to fine tune WAF.
- Exposure to micro-segmentation solutions (Guardi core, Illumio, color tokens) and able to perform network traffic log analysis / troubleshooting to write precise rules.
- Conduct deep-dive assessments of network security posture and recommend improvements.
- Collaborate with cross-functional teams to align security architecture with business and compliance requirements.
- Provide technical leadership to troubleshoot firewall-related issues (incident response), provide timely resolution and mentoring to junior engineers
- Maintain documentation for architecture, configurations, and operational procedures (change management).
- Stay current with emerging security technologies and threat landscapes.
Required Qualification / Certifications
- Minimum 810+ years of experience in managing enterprise firewalls (Palo Alto, Check Point, Fortinet).
- Hands-on experience with SASE platforms (Prisma Access, Zscaler, Netskope).
- Deep understanding of Palo Alto's SASE architecture including SSE (CASB, SWG, ZTNA).
- Strong expertise in firewall and SASE migration and deployment strategies.
- Proficiency in routing, switching, VPNs, NAT, and network segmentation.
- Experience with centralized management tools (Panorama / SCM / SLS, FortiManager, SmartConsole).
- Strong analytical and troubleshooting skills.
- Palo Alto Networks Certified Network Security Engineer (PCNSE)
- NSE4 or higher (Fortinet)
- Check Point Certified Security Expert (CCSE)
- SASE-related certifications (e.g., Prisma Access, Zscaler Certified Professional, Netskope Certified Cloud Security Administrator)
- Good to have experience with Microsegmentation & WAF solutions
