Job Description :

Palo Alto and Juniper SRX product.

Certifications: CCNP Route/Switch and/or Security, and JNCIP-SEC, and JNCIS-FWV or better.NetScaler.
These are the minimum qualities I’m looking for:

1. Four or more years on Juniper, Palo Alto and Cisco Nexus enterprise datacenter environments, performing O&M or E&I work. Prefer expert level experience, if available.
2. Proven experience with troubleshooting network connectivity issues.
3. Familiarity with BGP, OSPF, and other routing protocols.
4. Ability to perform log analysis with Splunk or other tools, towards the goal of isolating traffic passing or not passing through a firewall, and then formulating specific rule-bases to either efficiently allow or block such traffic.

These are some of the tasks that the candidate will be expected to fulfill:

1. Provide tier 2 and tier 3 troubleshooting support for failed network connectivity and determine root cause, whether from a firewall access-list, network address translation, route, or other configuration issue. Be able to troubleshoot routers, switches, and other network devices end-to-end in coordination with these activities. Provide recommendations for fix actions and develop follow-on activities to reduce risk by documenting data flows, and implementing standardized rule sets for affected services.
2. Help internal customers design and architect complex firewall rule sets, based on repeatable usage patterns of commonly used software tools, to provide greater speed to service for onboarding new servers and other network devices.
3. Provide support for the development of other firewall rule requests, and identify gaps in compliance with PCI and other standards.
4. Perform firewall rule audits, working with application owners to identify when a rule can be locked down or removed.
5. Implement standards for network objects and perform other standardization activities on firewalls, improving efficiency while driving towards ease of management.
6. Create and update network diagrams, and other documentation.

These are the preferred skills and experience:

1. A diverse background in perimeter security solutions and be able to lead, innovate, and support compliance and security guidance in firewall, IDS/IPS, web proxy, and web application firewalls.
2. Designed or maintained enterprise network firewall architectures in E-Commerce industries, with a demonstrated understanding of firewall topology and zone based methodology.
3. Strong understanding of JUNOS and ScreenOS firewall code along with tools like NSM and Space with Juniper Firewall Certifications a plus, or equivalent experience with Checkpoint/Cisco.
4. Experience with Unified Threat Management (UTM) or Next Generation (NexGen) Firewalls such as Fortinet or PaloAlto.
5. Designed or maintained enterprise intrusion detection systems and prevention systems (IDS/IPS) such as Sourcefire, Snort, Suricata, and Bro, on dispersed high traffic volume networks.
6. Designed or maintained web proxy solutions (Websense or Bluecoat) with SSL inspection.
7. Designed or maintained a web application firewall solution within the Retail or E-Commerce industry to include Imperva, Barracuda, or similar.
8. Strong knowledge of the SDLC process and Information Security Architecture Frameworks
9. Understanding of routing protocols such as OSPF, iBGP, EIGRP, and OSI model.