Senior Delivery Manager - Enterprise Network

Location Name: Pune Corporate Office - Mantri

Job Purpose

• JOB PURPOSE
  
  

We are seeking a highly experienced Network Security Lead (GB06) to drive enterprise-wide network security strategy, operations, automation, and compliance across On-Premise and Multi Cloud platforms (Azure, AWS, OCI, GCP).

The role will own end-to-end firewall security (Palo Alto, Fortigate, Cisco, and Native Cloud Security), ensure policy governance, automation of rule lifecycle management, and audit readiness, while leading initiatives around Zero Trust, segmentation, and security transformation.

This position is critical in ensuring secure, scalable, and compliant network environments, while actively managing security audits, regulatory requirements, and risk posture improvement.

________________________________________

• ORGANISATIONAL CHART
  
  

(Attach as per IT Infra Network structure.)

Comments

•  Numerical figure represents the total number of incumbents in the role
  
  

Duties And Responsibilities

• PRINCIPAL ACCOUNTABILITIES
• Minimum Required Accountabilities for this Role (Mandatory)
  
  

Enterprise Firewall & Security Operations

•  Own and manage enterprise firewall infrastructure across:
  
  

o On-Prem: Palo Alto, Fortigate

o Azure: Azure Firewall, NSGs

o AWS: Security Groups, NACLs, Network Firewall

o GCP: Firewall Rules

o OCI: Security Lists, NSGs

•  Oversee security policy lifecycle management including:
  
  

o Rule creation, approval workflows, optimization, and decommissioning

o NAT policies (DNAT/SNAT), VPN configurations

o Zone-based segmentation and micro-segmentation

Cloud & Hybrid Network Security

•  Drive secure network architecture across multi-cloud and hybrid models.
•  Manage security for VNet/VPC/VCN architectures, peering, ingress/egress control, and traffic inspection.
•  Ensure secure routing and controlled connectivity across on prem to cloud environments.
  
  

Automation & Rule Governance

•  Lead automation initiatives for:
  
  

o Firewall rule review and recertification automation

o Compliance validation and configuration drift detection

o Policy deployment via Terraform/Ansible/API integrations

•  Implement policy standardization frameworks and automated governance controls.
  
  

Security Compliance & Audit Management

•  Own and manage network security audits (internal, external, regulatory).
•  Ensure adherence to organizational policies, ISO, PCI-DSS, RBI or relevant compliance frameworks.
•  Conduct:
  
  

o Periodic firewall rule audits

o Access control validation

o Segmentation and compliance checks

•  Drive closure of audit findings and maintain documentation for audits.
  
  

Monitoring & Incident Management

•  Implement centralized monitoring of firewall logs, traffic flows, and threat alerts.
•  Lead incident response for security breaches, SOC and DDoS events, unauthorized access, and policy violations.
•  Conduct RCA and implement preventive security improvements.
  
  

________________________________________

• Additional Accountabilities (Strategic / Leadership Expectations)
  
  

Security Architecture & Strategy

•  Define and implement enterprise network security architecture across multi-cloud.
•  Drive Zero Trust Network Architecture (ZTNA), segmentation, and identity-aware access.
•  Establish secure patterns for ingress/egress, API security, and east-west traffic inspection.
  
  

DevSecOps & Automation Leadership

•  Integrate network security into DevOps pipelines using Infrastructure-as-Code.
•  Build reusable frameworks for firewall rule automation and compliance tracking.
•  Promote shift-left security practices in network and cloud deployments.
  
  

Threat Management & Security Enhancements

•  Strengthen security posture using:
  
  

o IPS/IDS, Anti-DDoS, threat intelligence feeds

o Behavioral analytics and anomaly detection

•  Integrate firewall and network logs with SIEM/SOAR platforms.|Governance & Leadership
•  Act as L4 escalation point for all network security issues.
•  Define security policies, standards, and best practices across environments.
•  Mentor teams and drive capability building across network/security domains.
•  Work with leadership, audit teams, and regulators for compliance assurance.
  
  

Key Decisions / Dimensions


DECISIONS

•  Approve and govern firewall/security rule implementations and architecture changes.
•  Define automation frameworks and compliance tools.
•  Take critical decisions during security incidents and audit escalations.
•  Recommend strategic investments in security technologies.|DIMENSIONS
  
  

Financial Dimensions

•  Ownership of security tools, firewall licensing, and audit-related costs
  
  

Other Dimensions

•  Total Team Size: ___
•  Direct Reports: ___
•  Indirect Reports: ___
•  Number of Firewalls/Cloud Environments Managed: ___
•  Number of Applications/Services Secured: ___
  
  

Major Challenges


MAJOR CHALLENGES

•  Ensuring consistent security posture across multi-cloud and on-premise environments.
•  Managing complex firewall rule bases and avoiding rule sprawl.
•  Balancing agility (fast deployments) with security compliance requirements.
•  Handling high-impact audits and regulatory scrutiny.
•  Managing evolving threat landscape and zero-day vulnerabilities
  
  

Required Qualifications And Experience

• SKILLS AND KNOWLEDGE
• Educational Qualifications
•  Bachelor's / Master's in Computer Science, IT, Cyber Security, or related field.
• Work Experience & Certifications
  
  

Must Have

•  10–14+ years of experience in network security and firewall management.
•  Strong expertise in Palo Alto, Cisco Firewalls, and Cloud-native security controls.
•  In-depth understanding of multi-cloud networking security (Azure, AWS, GCP, OCI).
•  Experience in security audits, compliance frameworks, and governance.
•  Hands-on experience in firewall rule lifecycle management and optimization.
•  Strong knowledge of networking fundamentals (routing, segmentation, NAT, VPNs).
  
  

Good to Have

•  Certifications: PCNSE, CCNP Security/CCIE Security, CISSP, CISM, Azure/AWS Security.
•  Experience with SASE, ZTNA, CASB, and cloud security posture management (CSPM) tools.
•  Proficiency in Terraform, Python, Ansible for automation.
•  Integration experience with SIEM/SOAR platforms.
  
  

Soft Skills

•  Strong leadership, audit handling, and decision-making skills.
•  Excellent communication with senior stakeholders and auditors.
•  Ability to manage high-pressure environments and critical security incidents.
•  Strategic and governance-focused mindset.