Security Architect-L1 in Royal Leamington Spa

Location: Warwick

Mandatory Skills: Palo Alto Networks - Firewalls. Immediate Joiners Only.

Detailed Job Description:

• Work within an Agile team to configure firewall rules for new Landing Zones on Palo Alto NGFW.
• Able to troubleshoot issues on Palo Alto firewall.
• Basic understanding of Azure or any other public cloud.
• Good understanding of networking concepts.
• Proven experience in configuring, designing, implementing, managing Palo Alto Network next generation firewall at enterprise level.
• Hands-on experience on managing Palo Alto firewalls through Panorama.
• 5-6 years of experience in managing Palo Alto firewall.
• Deploy Firewall with IPS, App-ID, URL filtering features.
• Palo Alto Network & Azure certification is a plus.
• Proven experience in configuring, designing, implementing, managing Firewall Palo Alto Network using (Hardware and Virtual Firewalls) and Cisco Firewalls at enterprise level.
• More than 10-12 years of experience in managing Palo Alto, Cisco for large client bases.
• Technical sound and certified equivalent of CCNP Security.
• Should have managed Migration, Transformation, Implementation Projects.
• Perform planning, designing, deployment, integration, upgradation and monitoring of firewall devices.
• Manage firewall releases that include upgrade of firewall images to N or N-1 version.
• Apply emergency rules on firewalls in case of security or other incidents.
• Maintenance of Firewall devices and management consoles.
• Design and develop enterprise cyber security strategy and architecture.
• Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses.
• Identify risks associated with business processes, operations, information security programs and technology projects.
• Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge.
• Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
• Provide product best fit analysis to ensure end-to-end security covering different facets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations.
• Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc.
• Provide support during technical deployment, configuration, integration and administration of security technologies.
• Demonstrate experience around ITIL or key process-oriented domains like incident management, configuration management, change management, problem management etc.
• Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity.
• Provide solution of RFPs received from clients and ensure overall design assurance.
• Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives.
• Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/architecture.
• Depending on the client's need with particular standards and technology stacks create complete RFPs.
• Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology.
• Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions.
• Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps.
• Evaluate and recommend solutions to integrate with overall technology ecosystem.
• Track industry and application trends and relate these to planning current and future IT needs.
• Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations.
• Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security.
• Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements.
• Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers.
• Provide training to employees on issues such as spam and unwanted or malicious emails.

Performance Parameter Measure:

• Customer centricity: Timely security breach solutioning to end users, internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers.
• Support sales team to create wins: % of proposals with Quality Index >7, timely support of the proposals, identifying opportunities/leads to sell services within/outside account (lead generation), number of proposals led.