GuidePoint SecurityRemote
Network Security Engineer (Firewall) - Mid-Atlantic region
United States of America
Full Time
2 weeks ago
No H1B
Key skills
AzureSplunkNetwork SecurityFirewall
About this role
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. The role involves configuring and auditing firewall rules, validating their necessity, and collaborating with customer teams to ensure optimal security posture.
Responsibilities:
- Cisco ASA/CheckPoint/Palo Alto Firewall Rule Configuration and Audit Consulting:
- Review Existing FireMon Rule Audit Reports and findings with Customer Team (Hit Counts, Unused Rules, etc)
- Determine Process for Rule Owner Identification and Cleanup
- Review of Firewall Rules
- Cisco and Checkpoint Virtual Firewalls
- For each rule, determine current asset owner and document
- For each rule, validate if the firewall rule is still required for all assets covered by rule (consult owners)
- For each rule, if rules contain assets that are no longer in production or policy that is no longer required document finding and schedule change control to remove/clean up rule from existing firewall policy
- Leverage existing Firewall Management Tools for Discovery and Maintenance/Cleanup
- Strata Cloud Manager, ASDM/Cisco Defense Orchestrator and FireMon Security Manager
- Determine and Document Process for Validating Rules with Customer Team Members
Requirements:
- 5+ years of Network Security experience (Enterprise network experience preferred)
- Current CCNA Security, CCNP Security or CCIE certification
- Strong/Expert Level Cisco ASA Configuration/Engineering Experience (not FirePower)
- Strong/Expert Level Cisco Defense Orchestrator Experience – Administration/Config
- Strong Routing and Switching with Firewall
- Firewall Rule Cleanup/Audit/Optimization Experience on Large Deployments 50+ Firewalls
- User Experience with Splunk for Auditing Firewall Deny Logs, etc
- Strong/Expert Level Palo Alto Firewall Configuration/Engineering Experience
- User Experience with Palo Alto Networks Panorama for centralized management
- Palo Alto Networks Certified Cybersecurity Associate (PCCSA) or higher certification
- FireMon Security – Security Manager and Other Modules
- Tufin or Similar Firewall Automation Experience
- Checkpoint Firewalls (Virtual)
- Azure Networking Experience
- Experience with Palo Alto Networks Automation Tools (e.g., Palo Alto Networks Automation API)
- Integration experience with Palo Alto Networks and other security solutions (e.g., Threat Prevention, URL Filtering)