7,270 Security Configuration jobs in India

Job Title: Security L2 Engineer

Location: Mumbai Airoli

Work Mode: Work from Office (5 Days Working - General Shift)

Budget: 18 LPA

Overview:

We are seeking a highly skilled and experienced Security L3 Engineer to join our team. This individual will be responsible for managing, troubleshooting, and optimizing security infrastructure across various technologies, ensuring the security of our network and data. The ideal candidate will have extensive hands-on experience with firewalls, IDS/IPS, proxies, WAF, and email gateways, specifically with Palo Alto, Juniper SRX, Fortigate, McAfee, Zscaler, Akamai, and Cisco Ironport.

Key Responsibilities:

Firewall Management:

• Configure, manage, and troubleshoot Palo Alto, Juniper SRX, and Fortigate firewalls to ensure optimal security configurations, rule sets, and access control policies.
• Perform regular firewall audits, identify security vulnerabilities, and provide recommendations for improvements.

IDS/IPS Management:

• Monitor and manage McAfee IDS/IPS systems for intrusion detection and prevention.
• Analyze and respond to security alerts, ensuring timely incident response and escalation where necessary.

Proxy Management:

• Configure and maintain McAfee and Zscaler proxy solutions to monitor and secure internet traffic.
• Troubleshoot proxy-related issues and ensure that web traffic is being securely filtered according to company policies.

WAF Management:

• Administer and optimize Akamai Web Application Firewall (WAF) to protect web applications from threats and vulnerabilities.
• Conduct performance tuning and ensure continuous protection for applications against evolving threats.

Email Gateway Security:

• Manage and maintain Cisco Ironport email gateway for email security, including spam filtering, malware detection, and preventing phishing attacks.
• Monitor email traffic, troubleshoot security issues, and ensure compliance with email security best practices.

Security Incident Management:

• Respond to and investigate security incidents, conducting root cause analysis and ensuring effective remediation steps are taken.
• Work closely with internal teams and external vendors to mitigate any security threats.

Security Policy and Procedure Development:

• Assist in the development and enforcement of security policies, procedures, and best practices across the organization.
• Ensure that security policies and procedures are updated in accordance with industry standards and regulations.

Collaboration and Reporting:

• Collaborate with cross-functional teams to ensure seamless security operations and compliance.
• Prepare and present security reports to senior management, highlighting critical issues and recommending solutions.

Mentoring and Support:

• Provide guidance and mentoring to junior team members, sharing best practices and knowledge in security management.
• Act as an escalation point for complex security issues and provide advanced troubleshooting support.

Qualifications and Skills:

Experience:

• At least 6+ years of hands-on experience working with security technologies, specifically Palo Alto Firewalls, Juniper SRX, Fortigate, McAfee IDS/IPS, McAfee/Zscaler Proxy, Akamai WAF, and Cisco Ironport.
• Experience in managing complex network security infrastructure and ensuring its proper functioning.
• Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE) (preferred).
• Certified Information Systems Security Professional (CISSP) or equivalent (preferred).
• Any relevant certifications for McAfee, Zscaler, Akamai, Juniper, Fortigate, and Cisco Ironport (highly desirable).

Technical Skills:

• In-depth knowledge of network security protocols and technologies.
• Strong understanding of firewall configurations, IDS/IPS systems, email security, web application firewalls, and proxy solutions.
• Expertise in incident management, vulnerability analysis, and security monitoring tools.
• Strong troubleshooting and analytical skills.
• Soft Skills:
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with both technical and non-technical teams.
• Strong organizational and time management skills, with the ability to handle multiple priorities and meet deadlines.

Certifications required –

• PCNSA/PCNSE
• JNCIA/JNCIP Security
• ZIA-A/ZIA-P -ZscalerInternet Access

Note : Face-Face interview is mandatory at ITC Office - Hyderabad Mindspace Hitechcity.

Need Immediate to 15 days joiners.

JD:-

Network with Palo Alto Firewall mandatory.

Network Security Engineer

Location : Hyderabad

Job Description:

• The Network Segmentation Engineer is responsible for designing, implementing, and maintaining secure network segmentation strategies to reduce the attack surface, enhance data protection, and support compliance with cybersecurity standards.
• This role involves close collaboration with network engineering, cybersecurity, compliance, and business units to ensure segmentation supports both security and operational requirements.

1. Networking Knowledge

• Very strong understanding of TCP/IP stack
• Deep understanding of common network ports and protocols: TCP/UDP ports, HTTP/S, FTP, DNS, DHCP, SMTP, SNMP, ICMP, SSH, RDP, SMB, SIP, and more.
• Familiarity with Layer 2 and Layer 3 segmentation (e.g., VLANs, subnets)

2. Security Expertise

• Knowledge of firewall/access technologies (e.g., Palo Alto, Juniper, ACLs on both Cisco and Juniper)
• Experience with Zero Trust architecture and microsegmentation (e.g., Illumio, Guardicore)
• Experience with host based firewalling (e.g., Windows Defender, IPtables)

3. Tools & Platforms

• Network tracing tools (e.g., Wireshark)
• Configuration management tools (e.g., Ansible, Python)
• Network monitoring tools (e.g., NetFlow, FlowMon, SNMP, Grafana, Prometheus)

Soft Skills & Responsibilities

1. Analytical Thinking

• Ability to assess network traffic flows and segment based on application or sensitivity
• Threat modeling and attack surface analysis

2. Documentation & Compliance

• Strong documentation skills for network diagrams, segmentation policies, and change management

3. Project Management

• Support segmentation projects from planning through execution
• Strong communication skills
• Collaborate with different stake holders like security, application owners, application managers and end-users

4. Incident Response & Troubleshooting

• Troubleshoot issues related to misconfigured segments or access
• Participate in incident response related to lateral movement or segmentation failures

RSEC is a cybersecurity research and development company known for its advanced solutions and expert consultation services. We specialize in offering cutting-edge cybersecurity technologies to protect against emerging threats. Our team of skilled professionals is dedicated to providing top-tier security solutions across various industries. Joining RSEC means being part of a forward-thinking organization committed to innovation and excellence in cybersecurity.

This is a full-time remote role for a Network Security Engineer. As a Network Security Engineer, you will be responsible for designing, implementing, and maintaining secure network infrastructures. You will monitor network traffic for unusual activity, conduct security assessments, and collaborate with other IT professionals to safeguard the organization's information. Daily tasks include configuring firewalls, managing security protocols, and responding to security breaches and incidents to ensure the integrity and confidentiality of sensitive data.

• Network Administration and Network Engineering skills
• Expertise in Network Security and Cybersecurity
• Information Security management and implementation skills
• Proficiency with security tools such as firewalls, intrusion detection systems, and encryption software
• Strong analytical and problem-solving abilities
• Excellent communication and teamwork skills
• Bachelor's degree in Computer Science, Information Technology, or related field
• Relevant certifications such as CISSP, CEH, or CompTIA Security+ are a plus

• Maintaining LAN, WLAN and architecture of the server as per the business policy
• As a precautionary measure, analyze and implement new security protocols for greater efficiency against any threat or malfunctions
• Implement a virus detection system beforehand for sound safety.
• Resolving the existing security issue including hardware malfunctions
• Tracking the vulnerable scripts to avert the potential threats
• Generating and maintaining the virtual private network, firewalls , web protocols and email security decorum.
• Reporting the security analysis of findings
• Maintaining the regulatory systems about ISMS policy (Information System Management Systems)
• Investigations of Security breach alert
• Developing the security authentication protocol
• Maintaining server and switches
• Maintaining & implementation of the SOP for Network security
• Status reports of hardware and software products as per designated policies.
• Supervising the installation of new software’s and hardware’s
• Recommend modifications in legal, technical and regulatory areas that affect IT security.
• Knowledge of performing routing protocols (MPLS, HAIPE/IP, QOS and WAN)
• Monitoring of web security gateways, perimeter security, network access controls, endpoint security

Effective Network Security

Assess Your Present Safety Level

Businesses usually are uninformed of how vulnerable their networks and data are to security dangers. By evaluating its existing level of security today, a corporation can develop the suitable Security approach for Future.

Categorize Your Resources

One of the primary things to get right with security resolutions is making the most of the assets you have while preparing sufficiently for the future. When assessing existing security stages, businesses must start by taking into description what A Network Security Engineer required to protect. Serious to this effort is to find out the number of stages, or layers, of defense a system requires.

Information Sharing

Data sharing is a vital step for encouraging workplace partnership inside and outside the corporation. For operative cybersecurity, accountable data-handling practices are requisite to find how shared information is controlled inside and outside of your establishment. We should have the following checklist for the security measures:

• Is internal data secure from outside interference?
• Do internal and external consumers need access to internal information to do their works?
• Can you regulate what consumers have access to the data?
• Can you allocate changed levels of the right of entry to different system handlers?

Get Ready For Next-Gen System Risk

The tools and techniques you choose to defend your network today should be ascendable so that your business should be covered with a single pack of security measures which can be scaled up whenever required. With an upsurge of next-gen, IT dangers creep around on the possibility; your security system should be able to match with the average security tests that future will bring.

Network Security Engineer Career

With the rise of continually evolving threats from hackers, one can see the adoption of IoT (Internet of things). As a network security engineer, IoT field also has a massive demand for the specialist. The demand for the employees is projected to rise to 6 million, worldwide by 2019, with an anticipated shortfall of 1.5 million. Possible future career paths are Security architect , security engineer, security manager, security consultant involved in networking systems.

With the help of performance & subject to organizational growth, you can be elevated to senior network security engineer.

Network Security Engineer Salary

According to Paysa ’s salary estimate, a Network Security Engineer earns an average of $89,215 per annum depending on their experience level and other factors in the United States. At times their job requires traveling from one site to other on demand of organization to oversee the replacement of obsolete equipment, installation of system architecture.

Nowadays, freelance network security engineers are also in much demand as A Network Security Engineer are readily available in the global freelance marketplace . An organization can reap the benefits by utilizing the freelancers keeping in mind the short term scope and cost-effectiveness, which can be a win-win situation for both.

browsing experience better. By using our web

Experience : 4 – 10 Years

Work Location : Hyderabad

Work Mode : Work from Office

Primary Skills :

• Routing & Switching : Strong understanding of L2/L3 networking
• Load Balancers/WAF : Hands-on experience with A10 , F5 , Citrix NetScaler
• Firewalls : Working knowledge of FortiGate , Palo Alto , Cisco ASA , Checkpoint
• Switches : Configuration and troubleshooting on Dell and Cisco switches
• Virtualization Networking : VMware Networking concepts
• Cloud Networking :
• Azure : VNet, Peering, NSG, UDR, VPN (S2S/P2S), Load Balancer, ExpressRoute, App Gateway (WAF), CDN, Azure Firewall, DDOS, DNS, Azure Virtual WAN, Front Door, Bastion, NVA, Network Watcher
• AWS , OCI , GCP : Exposure to networking services on these platforms

Job Responsibilities :

• Design and implement complex network architectures and cloud network solutions
• Actively troubleshoot and resolve customer issues related to on-prem and cloud networks
• Plan and execute deep-dive technical activities and lead network-related projects
• Manage and close support cases efficiently using internal ticketing systems
• Ensure SLA compliance, incident lifecycle management, and knowledge base contributions
• Drive process improvement and maintain documentation in the central repository
• Participate in on-call support rotation
• Collaborate cross-functionally to align network infrastructure with business needs
• Mentor team members and share technical knowledge through how-to guides and meetings

Requirements :

• Hands-on experience in routing, switching , and firewall/load balancer technologies
• Strong background in hyperscale cloud networking (Azure mandatory; AWS, OCI, GCP desirable)
• Exposure to ITIL practices ; ITIL certification is a plus
• Experience working with ticketing tools and monitoring systems
• Excellent communication and presentation skills
• Ability to handle client interactions , understand requirements, and suggest solutions
• Must be self-driven , proactive, and capable of managing deadlines

Certifications (Preferred) :

• Cisco CCNP (preferred) or multiple CCNA certifications
• CCIE (desirable)
• Azure / AWS certifications are an added advantage
• ITIL Foundation certification

Candidate has to manage Palo Alto Firewall and Panorama.

• 3-6 years exp only
• Cyber Security engineers should design, build, and manage the security infrastructure of information technology (IT) systems.
• This includes installing hardware, configuring firewalls, setting up virtual private networks (VPNs), and adding upgrades. Despite the strong technical focus of the job, Cyber Security engineers also engage with clients, relaying information about the project and troubleshooting all issues discovered.
• They are proficient in change management and disaster response, and they actively apply policies and standards to all projects.

Candidate must have knowledge: -

• Good Understanding in Basic Routing and switching concepts.
• Must have expertise in Remote Infrastructure management for network.
• Hands-on experience in configuration and troubleshooting of Palo – Alto, Fortinet, Checkpoint firewalls, or other network security technologies
• Perform day today firewall activities like Administration, Management, monitoring and troubleshooting
• Good knowledge on IOS Upgrades and software strategies.
• Hands on experience in configuring URL filtering, file blocking and security profiles in Palo Alto firewalls.
• Review network security threat logs for intrusions and compromises and provide solutions
• Good knowledge on authentication methods like radius & tacacs.