Description
POSITION SUMMARY
Operations & Delivery team performs all the provisioning activities for security platforms. The platform fleet consists largely of Checkpoint Firewalls and includes a Juniper IDS, RSA envision and Tripwire file integrity monitoring platform. The Firewalls are Checkpoint Firewalls built on a range of hardware including DL360 Servers, Nokia IPSO appliances and Crossbeam hardware. The Firewall platforms are managed by a Provider-1 system.
Working under guidance from the Engineering Team and individual platform owners, this role is responsible for Provisioning activities which include adding/modifying/deleting Firewall rules as per Service Request.
The position requires a good knowledge of Firewall technologies, network security principles, design skills and the ability to generate accurate documentation. Good hands-on experience with the configuration of Check point Firewall platforms using Provider-1 is absolutely essential.
The position calls for excellent planning skills and the ability to operate with limited supervision. The role will require good interaction with platform owners & engineering team to ensure service requests are implemented correctly.
ROLE RESPONSIBILITES
- Engineering Team/End Users raise Service Requests for Firewall rules.
- Analyse Service Requests and Perform Impact Analysis of the Request.
- Approve and Implement Service Requests.
- Add/Modify Firewall rules as per Service Request.
- Liaising with engineering groups.
QUALIFICATIONS
Essential:
- A technical qualification (degree) in Telecommunications Engineering or Computer Science (or equivalent)
- Checkpoint Certification CCSA and/or CCSE
- System Administration Certification (Linux, Unix, Windows)
- Good Understanding and working knowledge of Checkpoint Firewalls.
- Experience on Provider-1 R65 to R77.
- Sound knowledge of F5 with AFM,LTM & GTM
- Sound knowledge of Cisco ASA Cisco Security Manager and Firesight
- Sound knowledge of routing (ex. OSPF, BGP, MPLS), VRFs, load balancing, L2/L3 protocols
- Sound knowledge of three Tier security architecture and L3/L4 Firewalling
- Sound knowledge of IPS/IDS
- Sound knowledge of TCP/IP and service provider networks.
- Experience on Crossbeam, UTM, Nokia Platforms.
Desirable:
- Cisco certification
- Knowledge of Tufin
- Other IP Networking related certifications
EXPERIENCE
Essential:
- At least 5 years experience in a Firewall platform management environment
- At least 5 years experience designing, building and configuring Checkpoint Firewall platforms using the Provider-1 Platform
- Performing network designs that comply with internal security policy and engineering standards
- Experience in liaising with middle management.
Desirable:
- Experience in a large scale network environment
- Juniper and Cisco Router configuration experience
PERSONAL & BEHAVIOURAL
- High level of interpersonal skills
- Demonstrated effective written communication skills
- Demonstrated effective verbal communication and presentation skills
- Ability to work on several projects simultaneously
- Customer Focus
- Ability to communicate with diverse audiences
- Ability to work with technical precision under tight deadlines
- Ability to work effectively within a team environment.
- Willingness to accept wide range of responsibilities.