Key skills
Palo Alto Networks firewallsTCP/IPBGPOSPFNATSecurity zonesAccess control policiesVPN technologiesIPSecSSLGlobalProtectServiceNowL2/L3 operational supportAlgoSecFirewall policy analysisRisk simulationRule optimizationPCNSA certificationPCNSE certificationITIL FoundationCCNACCNP SecurityChange ManagementNetwork SecurityWAFFirewall
About this role
HCLTech is seeking a Network Security Engineer with strong hands-on experience in Palo Alto firewalls to join their security operations team. The role focuses on incident handling, change execution, troubleshooting, and compliance support in an enterprise managed services environment.
Responsibilities:
- Provide support for Palo Alto Networks firewalls (PA‑Series / VM‑Series) in an enterprise environment
- Perform firewall rule provisioning, modifications, cleanup, and optimization in line with security best practices and change management processes
- Troubleshoot P1/P2 incidents, traffic flow issues, VPN connectivity problems, and security policy failures
- Manage and support Panorama, including policy deployment, logging, and health monitoring
- Handle Site‑to‑Site and Remote Access VPNs (IPSec / SSL / GlobalProtect)
- Perform impact analysis and risk assessment for firewall changes (AlgoSec exposure preferred)
- Work closely with SOC, NOC, and application teams to resolve security and connectivity issues
- Ensure accurate ticket handling, documentation, and SLA adherence using ServiceNow
- Support firewall upgrades, patches, and vulnerability remediation activities
- Maintain operational documentation, SOPs, and audit evidence as required
Requirements:
- Strong hands-on experience with Palo Alto Networks firewalls (configuration, troubleshooting, operations)
- Good understanding of TCP/IP, routing fundamentals (BGP/OSPF – basic), NAT, security zones, and access control policies
- Hands-on experience with VPN technologies (IPSec / SSL / GlobalProtect)
- Experience working in a 24×7 operational / managed services environment
- Strong exposure to ServiceNow for Incident, Change, and Service Request management
- Experience in L2/L3 operational support, handling escalations and RCA
- Experience with AlgoSec for firewall policy analysis, risk simulation, and rule optimization
- 5–8 years of relevant experience in Network / Security Operations
- Willingness to work in 24×7 rotational shifts, including weekends and on-call support
- Prior experience working with Palo Alto TAC (or OEM support teams)
- Exposure to compliance frameworks, audits, and evidence collection
- Experience with other security technologies (Proxy, IDS/IPS, WAF – exposure only)
- PCNSA / PCNSE – Palo Alto Networks (strongly preferred)
- ITIL Foundation
- CCNA / CCNP (Security) – good to have