Network Security Engineer - Firewall & WAF L3

Job Title

L3 Firewall & Network Security Engineer

Location

Hybrid / Onsite / Remote (as applicable)

Note : Candidate should be available for f2f interview (1st round) in Mumbai location

Experience

6–10+ Years

Job Summary

We are seeking a highly skilled L3 Firewall & Network Security Engineer with strong expertise in Cisco, Palo Alto, Cloud Security, IDS/IPS, and F5 WAF technologies. The candidate will be responsible for designing, implementing, troubleshooting, and optimizing enterprise network security infrastructure while ensuring high availability, compliance, and threat protection.

Key Responsibilities

• Manage and support enterprise firewall infrastructure including:
• Cisco Firewalls
• Palo Alto Networks Firewalls
• Perform advanced L3 troubleshooting for security incidents and network outages.
• Configure, maintain, and optimize:
• IDS/IPS solutions
• VPNs (Site-to-Site & Remote Access)
• NAT, ACLs, Security Policies
• Administer and manage:
• Cloud-native security controls
• Cloud IDS/IPS solutions in AWS/Azure/GCP
• Deploy and manage:
• F5 WAF policies
• Web application protection and bot mitigation
• Conduct firewall rule reviews, policy optimization, and compliance audits.
• Analyze security logs, incidents, and alerts
• Should have experience in handling security audit observations, compliance remediation, and audit point closure activities related to firewall and network security infrastructure.
• Support change management, DR activities, and security hardening initiatives.
• Collaborate with SOC, Cloud, Network, and Application teams for issue resolution.
• Provide RCA (Root Cause Analysis) for critical incidents.
• Ensure adherence to security best practices and enterprise standards.
  
  

Required Skills

Firewall & Network Security

• Strong hands-on experience with:
• Cisco ASA / Firepower
• Palo Alto Firewalls
• Expertise in:
• Routing & Switching
• TCP/IP
• BGP / OSPF
• VPN Technologies
• High Availability
  
  

IDS / IPS

• Experience with:
• Cisco Firepower IPS
• Palo Alto Threat Prevention
• Cloud IDS/IPS solutions
  
  

Cloud Security

• Experience in:
• AWS Security Groups / NACLs
• Azure Network Security
• Cloud-native firewall/security services
• Understanding of Zero Trust and cloud security architecture.
  
  

F5 WAF

• Hands-on expertise in:
• F5 ASM / Advanced WAF
• WAF policy tuning
• Application security
• SSL offloading and LTM basics
  
  

Monitoring & Tools

• SIEM tools (Splunk, QRadar, Sentinel, etc.)
• Packet analysis tools (Wireshark)
• Vulnerability assessment tools
  
  

Preferred Certifications

• Cisco CCNP Security / CCIE Security
• Palo Alto PCNSE
• F5 Certified Administrator
  
  

Educational Qualification

• Bachelor's degree in Computer Science, IT, Electronics, or related field.
  
  

Soft Skills

• Strong analytical and troubleshooting skills
• Excellent communication and documentation abilities
• Ability to work in 24x7 support environments if required
• Incident handling and stakeholder management experience
  
  

Good to Have

• Automation using Python/Ansible
• Experience with SOC operations
• Knowledge of compliance standards like ISO 27001, PCI-DSS
  
  

Skills: security,firewall,waf,f5,network security,ips,ids