Tata Consultancy Services
Website:
tcs.com
Job details:
Role**: Network Security Engineer
Required Technical Skill Set**: Check Point, Cisco ASA/FTD, Blue Coat Proxy, Imperva WAF, Splunk
Experience: 5+years
Location: Noida, Chennai, Hyderabad, Pune, Bangalore
Job Description:
Must-Have**: Strong firewall expertise (Check Point, Cisco ASA/FTD), proxy/WAF handling, Splunk reporting, troubleshooting skills
Good-to-Have: Zscaler (ZIA, ZPA, ZDX), automation using APIs/scripting, cloud security exposure
- Manage, administer, and support Check Point virtual firewalls, ensuring optimal configuration, policy enforcement, and compliance with security standards. Perform firewall log analysis, rule optimization, troubleshooting, root‑cause analysis, and post‑change validation.
- Administer Cisco ASA / FTD on‑prem firewalls, including configuration and support of NAT, ACLs, VPNs, and High Availability (HA) setups. Proactively monitor firewall health, perform upgrades and patching, and troubleshoot connectivity and security policy issues.
- Oversee Blue Coat virtual proxies, performing regular configuration reviews and policy optimization to maintain secure web access and compliance. Troubleshoot issues related to DNS, proxy behavior, and SSL inspection.
- Implement, configure, and support Imperva WAF, monitoring alerts and logs, tuning protection policies, and mitigating web‑based threats in alignment with organizational security requirements.
- Develop and execute Splunk queries, dashboards, and reports for firewalls, proxies, and WAF platforms. Correlate security events and provide actionable insights to support monitoring, incident response, and investigations.
- Manage Zscaler (ZIA, ZPA, ZDX) end‑to‑end, including SIPA rule configuration, URL whitelisting, and SSL bypass using Cloud App Control. Support ZPA environments with working knowledge of App Connectors, Branch Connectors, and Application Segments, and troubleshoot access and SSL inspection issues.
- Troubleshoot network security incidents across firewalls, proxies, SSL inspection, and DNS layers, identifying root cause through analysis and implementing permanent corrective actions.
- Utilize automation, APIs, or scripting where applicable to improve operational efficiency and support ongoing security improvements.
- Stay current with emerging security technologies and industry trends, adapting to new tools and assuming operational responsibility as technologies evolve.
- Provide end‑to‑end operational support across the security technology portfolio, demonstrating strong subject‑matter expertise in all supported platforms.
Click on Apply to know more.