Firewall Engineer

Description GSPANN is hiring a Firewall Engineer to deploy and manage Palo Alto Next-Generation Firewalls (NGFWs). The role includes configuring security policies, VPNs, Panorama, and advanced threat prevention features.

Role and Responsibilities

• Design, deploy, and manage both physical and virtual Palo Alto Next-Generation Firewalls (NGFWs).
• Configure security policies, Network Address Translation (NAT), application control rules, and threat prevention profiles.
• Support and implement GlobalProtect Virtual Private Network (VPN) and IPSec / SSL tunnel configurations.
• Use Panorama to centrally administer and manage firewall policies and settings.
• Analyze logs and alerts, investigate security incidents, and resolve firewall-related issues effectively.
• Conduct periodic firewall rule reviews, perform clean-ups, and optimize configurations for compliance and performance.
• Integrate firewalls with Security Information and Event Management (SIEM) platforms, identity management systems, and multi-factor authentication solutions.
• Manage advanced features such as URL filtering, WildFire malware prevention, Domain Name System (DNS) security, and Secure Sockets Layer (SSL) decryption.
• Enforce zone-based security architecture and ensure least-privilege access across segmented network zones.
• Plan and perform firmware upgrades, establish high-availability (HA) environments, and execute disaster recovery (DR) testing.
• Develop and maintain comprehensive network security documentation, including policies, standard procedures, and topology diagrams.
• Collaborate closely with Security Operations Center (SOC), Network Operations Center (NOC), and compliance teams to align with regulatory frameworks such as ISO and PCI-DSS.

Skills and Experience