Senior Network Security Engineer - Zscaler & Cisco ASA

Principal Consultant - Network SecurityLocation: HyderabadExperience: 8-12 years30 days joiners preferredPrimary Skills:Cisco ASAFortinet UTMZscalerLoggingIn this role, The Security Engineer researches, develops and delivers Network as a Service (NaaS) and Security as a Service (SECaaS) products to the automotive market. Incorporates a detailed understanding of internal and industry solutions to analyze business requirements and functional specifications to inform organizational strategy. Meets with stakeholders to determine network/system requirements. Performs gap analysis , documents findings and remediation plans. Provides technical leadership & direction in project planning, cost analysis & vendor comparison. Designs, supports, and troubleshoots highly complex network & computer systems in close coordination with vendors and internal CDK teams. Mentors others and fosters collaboration and innovation.Responsibilities• Research, Design, Test, Pilot, Release & Support LAN/WAN/Cloud network and security solutions including, but not limited to: Advanced Firewall & IPS (NGFW), Secure Web Gateway, EDR, Cloud Security Solutions, Zero Trust, Remote Access VPN, Logging & SIEM, Router, SDWAN, Switch and Customer Identity & Access Management (CIAM) solutions.• Technical Subject Matter Expert on assigned CDK products and underlying industry technologies.• Publishes supporting documentation such as sales design guides, installation guides, and support guides.• Designs wireframes used by developers to create utilities used during product installation, support, and maintenance teams to drive consistency and accuracy.• Develops scalable designs, solutions, standards, and processes used during all phases of the product lifecycle.• Primarily works within a multidisciplined SCRUM value stream team comprised of engineering, development, install, support, and maintenance personnel to deliver new and/or enhanced product value on a consistent basis.• Assists management with product strategy and roadmap planning. Assists with quarterly team feature planning.• Troubleshoots highly complex networking and security problems.• Attends training courses as required and stay abreast of evolving internal processes and industry developments.• Provides other ad hoc support and duties as assigned.• Works independently to accomplish tasks without needing extensive oversight or directionMinimum Qualifications / Skills• BS Degree in Electronics/Communication/Electrical or Computer Science or equivalent experience, or related field with at least 8 years of networking experience.• Security focused certifications such as CISSP, CCNP Security, CEH, and GIAC desired.• Expert experience with Next Generation Firewall (NGFW), Secure Web Gateway, EDR, and Endpoint Agents including policy implementation and capacity management.• Advance knowledge of protocols such as ARP, BGP/EIGRP/OSPF, DHCP, DMVPN, DNS, GRE, HSRP, HTTP(S), ICMP, IP, IPSEC/IKE, IP SLA, NAT, PKI, RADIUS, SAML, (S)FTP, SIP, SNMP, SSH, STP, SYSLOG, TCP/UDP, TACACS+, TFTP, TLS/SSL, VRRP, etc.…Preferred Qualifications/ Skills• Demonstrated experience managing an enterprise-level information security program; Experience managing vendors and service providers and performing oversight for the delivery of security capabilities; Significant technical knowledge of information security programs, concepts, processes, trends, and best practices; Demonstrated knowledge of Enterprise Security administration, data engineering, infrastructure administration, and rule/content development. Familiarization with SOAR platforms and their implementation and management is ideal.• Experience with Cisco ASA/Firepower, FortiGate Firewalls & FortiManager, Zscaler Internet Access, VeloCloud SDWAN, Cisco Catalyst SDWAN, Cisco Secure Access, Cisco Duo, OKTA, Active Directory, and Elastic Search.• Expert or advanced knowledge, understanding and use of logging & auditing capabilities for diagnostics, forensics, or threat detection on a variety of platforms, frameworks, and applications.• Experience in a Security Operations Center, a Security Penetration Testing team, or a Security related role within an IT Infrastructure Team.• Knowledge, understanding, and significant experience writing regex and scripts (e.g. Python, Shell, PowerShell).• Passionate drive for cyber-security, with active interest and knowledge of current trends and emergent threats.• Familiarity, understanding and demonstration of the attacker-mind-set and anatomy-of-a-hack.• Familiarity with data lakes or big data technologies and integrations.• Experience with integrating Active Directory with networking products.• Experience with AWS or Azure cloud environments and solutions.• Familiarity with Security Compliance• Familiarity with Hyper-V PRB