Technical Mandatory At least 10 - 15 years of experience in a technical support environment working with Firewalls - Cisco, Palo Alto, Checkpoint, Juniper and Proxy - BlueCoat, Zscalar, and f5 security products
Experience in managing different Web application firewalls, especially WAF solutions from Imperva, Cloudflare, f5
Cisco CCNP/CCIE Security, Palo Alto PCNSE certified with good working experience in supporting Cisco ASA, FTD/IPS, Client, and AnyConnect VPN
Strong knowledge to support, maintenance and troubleshoot any incident and request on Cisco ASA/Firepower/FTD, Cisco Client,in a complex enterprise environment
Experience in Security Incident management and response, with hands-on exp on SIEM tools mainly Splunk Enterprise SIEM/Logging
Analyse and perform fine-tuning of SIEM rules/policies on a regular basis
Experience in supporting Web gateway technology from Zscaler ZIA, Symantec bluecoat web gateway
Experience in supporting and strong knowledge of VPN technologies from Cisco Any Connect and Zscaler ZPA, Experience in managing Compliance management tools like Algosec, Skybox, Tufin
Good knowledge of routing and switching protocols
Vulnerability Management solutions like Qualys and Tenable experience
Experience in managing Security Incidents detection and response, with knowledge of Mitre Attack and NIST framework
Desirable Knowledge of Mitre framework
Security Tools for AlgoSec, and SIEM solutions Splunk, RSA envision
Vulnerability Management tools like Tenable and Qualys
Experience in managing Compliance management tools like Firemon, Skybox, AlgoSec
Experience in supporting Splunk Log search head, and running query
Experience in managing Security Incidents detect and response, Threat hunt capability with knowledge of Kill chain methodology
Experience in triaging Threat feeds and work towards mitigation and simulation exercise
Experience in reviewing the vulnerability, product bug reports and relating its impact to Clients environment
