Job Description :
Hi ,
Hope you are doing well.
Please let me know your interest about this position
1 Role Network Security Specialist
2 Required Technical Skill Set Network Security with expertise in Checkpoint Firewall. IPS, FireEye, Sourcefire, F5 ASM
3 No of Requirements 1
4 Desired Experience Range 5-7 years
5 Location of Requirement Berlin.CT


Desired Competencies (Technical/Behavioral Competency)
Must-Have Technical:
Experience working on multiple Checkpoint versions include R77.30, R77.20, legacy IPSO etc. and upgrades
Experience working on Checkpoint blades including IPS, Threat prevention, Identity awareness, Application & URL filtering
Installation and Rack New Appliance and Migration from Checkpoint legacy version to Current version.
Configure new gateways and getting them into production.
Creation of rules (Access, deny and block) to control traffic.
Firewall Policy enforcement per customer Policy including global policy and objects
Experience in checkpoint cluster configuration including VRRP and ClusterXL
Refining existing rules to minimize the number of rules used.
Software update on all Security Gateways
Study the traffic pattern and modify the roles accordingly.
Troubleshoot calls with users (Generic access) or clients (VPN
Removal of errors (License, rule error) during a policy push.
Documentation of VPN’s, NAT statements and networks diagrams in customer
Maintain firewall hardware configurations (interfaces, routes, arps, ha, etc
Enabling Role based access (Super user, admins, read only
Rule management using Tufin analysis as and when planned.
Verifying the traffic and rules on internet firewalls to avoid bottlenecks.
Follow up with vendors during hardware issues / RMA
Monitoring the health of the firewall CPU utilization, cluster status, interface status
Non-Technical:
Planning and communication skills
Good understanding of the business need of the security and its impact
Strong technical skills in the area of network security, targeted attack etc.
Good-to-Have • Check Point Certified Security Expert (CCSE)
Check Point Certified Security Administrator (CCSA) R77

SN Responsibility of / Expectations from the Role
1 Work independently with the clients/other TCS delivery teams to understand the requirements and provide solution
2 Ownership for end-to-end planning and deployment of new devices in the environment within the agreed timeline
3 Risk based planning and ensure appropriate contingency measures are in place for identified project risks which may impact budget or delivery timelines
Type Details of The Role (For Candidate Briefing)
Reporting To Which Role Network Security Lead
Size of the Team, if any Reporting to this Role 5
On-site Opportunity Yes
Unique Selling Proposition (USP) of The Role Ownership for end-to-end planning and deployment of new devices in the environment
Large and heterogeneous environment with scope for learning.
Details of The Project (A short Briefing on the Project may be attached with this document for candidate- briefing It may be shared with external stakeholders like job-agencies etc. This is project will be part of a large multi-year Managed Security Services Program.