Website:
Job details:
Job Title: Network Security Engineer – L2/L3
Location: Mumbai
Experience: 6–8 Years
Employment Type: Full-Time
Work Mode: Onsite / Rotational Support (if required)
Job Summary
We are looking for a skilled and proactive
Network Security Engineer (L2/L3) with hands-on experience in
Firewall Security, DDoS Protection, and IDS/IPS technologies. The ideal candidate should have strong expertise in managing enterprise security infrastructure across multi-vendor environments including Cisco, Palo Alto, Check Point, Fortinet, Radware, Trend Micro, and ISP-based DDoS solutions.
The role involves security operations, incident handling, policy management, troubleshooting, and ensuring high availability of enterprise network security infrastructure.
Key ResponsibilitiesFirewall Management & Security Operations
- Configure, manage, and troubleshoot enterprise firewalls:
- Cisco Firepower (FTD/ASA)
- Palo Alto
- Check Point
- Fortinet
- Implement and manage:
- Security policies
- NAT rules
- VPN configurations
- Access control policies
- Perform firewall rule reviews, optimization, and cleanup activities
DDoS Protection & Mitigation
- Monitor and manage DDoS protection solutions:
- ISP-based DDoS mitigation
- Radware DefensePro
- Analyze attack traffic patterns and coordinate mitigation activities
- Handle incident response during DDoS attacks
- Coordinate with ISPs and security teams for traffic diversion and mitigation
IDS/IPS Administration
- Manage and monitor IDS/IPS solutions:
- Trend Micro
- Cisco IDS/IPS
- Investigate intrusion alerts and security events
- Tune IDS/IPS signatures and policies to reduce false positives
- Support threat detection and incident response activities
Security Monitoring & Troubleshooting
- Troubleshoot complex network security incidents and outages
- Perform root cause analysis (RCA) for security-related issues
- Analyze logs, traffic captures, and security alerts
- Work closely with SOC, network, and application teams
Operations & Compliance
- Ensure compliance with security standards and policies
- Maintain documentation for:
- Security configurations
- Change management
- Incident reports
- Participate in change implementation and maintenance activities
- Support 24x7 operational activities when required
Required SkillsFirewall Technologies - Strong hands-on experience with any two or more:
- Cisco Firepower / ASA
- Palo Alto
- Check Point
- Fortinet
DDoS Security
- Experience handling:
- ISP-based DDoS mitigation
- Radware DDoS solutions
- Good understanding of attack vectors:
- Volumetric attacks
- SYN floods
- Application-layer attacks
IDS/IPS Technologies
- Hands-on experience with:
- Trend Micro IDS/IPS
- Cisco IDS/IPS solutions
Networking Skills
- Strong understanding of:
- TCP/IP
- Routing & Switching
- VLANs
- NAT/PAT
- VPNs
- ACLs
Troubleshooting Skills
- Strong analytical and problem-solving capabilities
- Experience in log analysis and traffic troubleshooting
Preferred Certifications
- CCNA / CCNP Security
- PCNSE
- Check Point CCSA/CCSE
- NSE Certification
- CEH or equivalent security certifications
Educational Qualification
- BE / B.Tech / MCA / MSc IT / Computer Science
- Equivalent technical degree from a recognized institution
Key Competencies
- Incident management and escalation handling
- Strong communication and coordination skills
- Ability to work under pressure during critical incidents
- Team collaboration and customer-focused approach
- Good documentation and reporting skills
Skills: troubleshooting,network security,ids,ddos,firewall,ips,management,cisco,mitigation
Click on Apply to know more.