Role Description: ? Working as an L3 Firewall migration engineer and own the firewall migration from Fortinet to Cisco Firepower.? Firewall rules conversion from Fortinet firewall to Cisco firepower through available Cisco firewall rule migration tool.? Analyze the unused rules and address groups from the existing firewall and remove those from the new firewalls.? After analysis the existing firewall rules need to finalize the rules for new firewalls.? Co-ordination to the L2 firewall Engineer for the firewall configuration and plan for the firewall cutover, plan for the change request planning.? Prepare the test plan before cutover and after cutover.? Execute the firewall cutover during the change window.? Prepare the handover document for the operation team and handover the firewall to the operation team for the BAU support.? Serve as a subject matter expert through Analysis and Definition project phases of IT projects.? Review the design and implementation of network security service components and map them to the long-term vision.? Conducts risk assessment and provides recommendations for design.? Conducts encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research.? work group, team, or department- Prepare technical documentation including procedures, manuals, reports and standards.? Exhibit, problem solving, troubleshooting, resolution, communication, and customer service skills.? Follows policies, practices, procedures, standards, and company rules relative to assignments; complies with regulations and procedures required by external agencies.? Analyze network performance, troubleshoot when necessary, and provide resolutions to technical problems.? Review and evaluate the impact of the Network Services, particularly Changes in the Network Environment, on the other IT Functions and other Customer IT Environment Providers.
Competencies: Firewall Administration - Security Management (IT IS), CNS_Network Security_Cisco
Experience (Years): 10 & Above
Essential Skills: ? Network firewall L3 skills in Cisco Firepower and Fortinet firewall, Palo alto, checkpoint firewalls.? Working experience in firewall migration from Fortinet firewall to Cisco Firepower and firewall platform migration.? A deep understanding of network perimeter controls? Experience with Kerberos, SSH, SSL, IPsec, and public key infrastructure.? Ability to develop Network Diagrams, Migration Plans, and Test Plans? Demonstrable understanding of system security, cryptography, and authentication/authorization/audit systems? Experience in network Denial of Service defense/avoidance/protection? Expert knowledge on IT infrastructure technologies, such as operating systems, databases and network technologies? Knowledge of regulatory requirements for IT Security? Ability to communicate effectively and explain concepts and technologies to potential clients, both orally and in writing? By assuring compliance with corporate and regulatory policies and standards industry best practices, the position helps to prevent intrusions, losses, or corruption of information critical to business processes or customer data.? Firewall rules conversion from Fortinet firewall to Cisco firepower and other firewall platform through available Cisco firewall rule migration tool.? Understanding of other firewall rules migration tool? Analyze the unused rules and address groups from the existing firewall and remove those from the new firewalls.? After analysis the existing firewall rules need to finalize the rules for new firewalls.? Co-ordination to the L2 firewall Engineer for the firewall configuration and plan for the firewall cutover, plan for the change request planning.? Prepare the test plan before cutover and after cutover.? Execute the firewall cutover during the change window.? Prepare the handover document for the operation team and handover the firewall to the operation team for the BAU support.? Working experience in Forti manager and Forti analyzer, tuffin and other firewall management tools? Working experience in Cisco FMC and integrate the FTD with FMC? Working experience in Tuffin for firewall rule analysis? Working experience in dynamic routing protocol like EIGRP/OSPF/BGP in Cisco firepower and Fortinet firewall? Working experience in VPN configuration and migration of tunnel from Fortinet to Cisco firepower.? Clear understanding and troubleshooting skills in LAN/WAN/ Data center Network infrastructure.? Experience in working with different vendors like Cisco, Fortinet and RMA process.? Firewall hardening experience to remove vulnerability from the firewall.? Incident, Change, problem request and service request Management.? Good at Technical documentation, Information Security Awareness, Availability, and flexibility as needed, Collaboration, Teamwork, Quick learner.? Candidate must have CCNP certification and other network security certification.
Desirable Skills: Must be able to clearly interact with customers, understand the customer?s requirements and be able to present solutions to customers. Interact with team lead and other team members to improve support quality.