HRTMS Job Description Management
| Firewall Sr Engineer J o b D e s c r i p t i o n | | |
Job Profile Title: | Firewall Sr Engineer | Job Code: | 12492 | Business_Title | Sr Firewall Engineer | Profile Title: | 12492 Firewall Sr Engineer | Grade / Band: | IC4 | FLSA Status: | Exempt | The Sr. Network Firewall Engineer will lead solution design, delivery, and support within a highly distributed enterprise environment. The candidate should demonstrate a product management level ownership for netsec solutions positioned to significantly impact our enterprise network's security, resilience, and digital business agility. The Sr Engineer will help deliver a secure connectivity vision, participate in complex incident and problem management, and build a foundation for continuously improving network and application security. The Sr. Network Firewall Engineer will help deliver optimal security posture by managing firewall policies, monitoring for threats, monitoring for healthy application operation, and staying abreast of evolving trends while maintaining compliance with industry best practices and regulations. | | | | | |
Principal Duties & Responsibilities | Maintain a strong understanding of Cisco firewalls and application security best practices for a large, distributed enterprise network | Perform technical analysis and contribute to engineering efforts to deliver highly available, secure, and resilient network designs. Stay updated with the latest industry trends, technologies, and best practices | Monitor the network environment using SNMP, netsec policy management tools, and application observability tools; analyze network traffic and logs to identify security incidents, troubleshoot connectivity issues, and drive proactive awareness of capacity and network security health | Lead preventative maintenance activities and implement complex firewall architectures, including high-availability, clustering, and IPS/IDS tuning, to ensure optimal performance and meet organizational security requirements | Administer and optimize Citrix NetScaler (ADC) for load balancing, SSL/TLS offload, WAF policy enforcement, and secure application delivery | Administer Zscaler solutions (ZIA, ZPA, ZDX) to deliver cloud-based secure internet access, zero-trust private access, and digital experience monitoring | Support Palo Alto firewall policy management, security profile tuning, and threat prevention operations as a supplementary platform within the enterprise environment | Drive complex incident management and problem-solving efforts to address application-layer network security issues efficiently. Contribute to improving vendor governance processes to ensure high-quality, scalable, and cost-effective solutions | Ensure firewall configurations adhere to industry security standards and compliance regulations (e.g., PCI, Gaming Control Boards) | Develop and maintain network security documentation, including firewall policies and procedures. Support security and compliance audits | Lead continuous improvement initiatives to optimize designs for cost, scalability, availability, security, and supportability; conduct regular performance reviews and recommend enhancements | Collaborate with cross-functional teams to ensure network security aligns with overall business goals, while leading continuous improvement initiatives across security design and operations |
Required for All Jobs | Performs other job-related duties as requested | Proof of eligibility to work in the United States |
Education | Education Level | Education Details | Required/
Preferred | Bachelor's Degree | | Preferred | | | | | |
Work Experience | Experience | Experience Details | Required/
Preferred | 5+ Years of Prior Relevant Experience | With network security, and a focus on firewall management and proven experience delivering enterprise technical solutions including operational support | Required | | | | | |
Additional Requirements | Details | Required/
Preferred | Cisco Certified Security Specialist (CCNP Security / CCIE Security) | Preferred | Citrix Certified Professional-Networking (CCP-N) or equivalent NetScaler certification | Preferred | Zscaler Certified Professional (ZCCP-IA, ZCCP-ZPA) | Preferred | CompTIA Security Certifications | Preferred | | | |
Knowledge, Skills and Abilities | KSAs | Ability to approach technical problems from the mindset of "how might we" to constantly find innovative ways to support firm innovation | Ability to translate technical and business requirements into actionable solution designs | Ability to articulate the business value of NetSec designs | Strong communication and interpersonal skills, with the ability to articulate complex technical concepts clearly to diverse audiences | Strong proficiency with quantitative analysis to guide decision-making | Strong project management and leadership abilities | In-depth knowledge of enterprise network technologies | In-depth knowledge of network protocols (TCP/IP, DNS, HTTP/S, VPNs) and core network security concepts (IDS/IPS, VPN, NAT, load balancing) | In-depth knowledge of Cisco firewalls architecture, policy management, HA/clustering, and IPS/IDS tuning | In-depth knowledge of Citrix NetScaler including load balancing, SSL offload, WAF, and application delivery | In-depth knowledge of Zscaler (ZIA, ZPA, ZDX) | Experience with Cisco Catalyst Center, ISE, and other related tools | Proficiency in the design and implementation of monitoring systems to achieve proactive insights | Proficiency in analyzing network traffic and logs to identify security incidents, troubleshoot connectivity issues, and optimize performance | Experience with network automation tools and scripting languages (e.g., Python, PowerShell) for automation of security tasks, including AI-driven lifecycle (AIDLC) and MCP automation, is a plus | Excellent problem-solving, analytical, and diagnostic capabilities | Ability to work independently as an SME and collaboratively as part of a larger cross-functional technical team | Palo Alto, Cisco, Zscaler, Citrix, and other related certifications a plus | Experience with Cisco Catalyst Center, ISE and other related tools | Palo Alto, Cisco, Security, and other related certifications a plus |
Physical Requirements | A thorough completion of this section is needed for compliance with legal standards such as the Americans with Disabilities Act. The physical requirements described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. | Physical Requirement | N/A | Rarely | Occasionally | Frequently | Constantly | Weight/
w.p.m. | Balancing | | | X | | | | Bending | | | X | | | | Carrying 10 pounds | | | X | | | 40 | Clear speech - simple | | | | X | | | Clear speech - complex | | | | X | | | Climbing | | X | | | | | Distant vision | | | | X | | | Driving | | X | | | | | Flexibility - upper body | | | X | | | | Flexibility - lower body | | | X | | | | Hearing/Listening | | | | X | | | Kneeling | | | X | | | | Lifting 10 pounds | | | X | | | 40 | Near vision | | | | X | | | Normal vision | | | | X | | | Pushing/Pulling | | | X | | | | Reaching | | | X | | | | Sitting | | | | X | | | Standing | | | X | | | | Typing | | | | X | | 35 | Walking | | | | X | | | | | | | | | | | | | | | |
Work Environment | While performing the duties of this job, the associate is required to work within the selected work environments. | Work Environment | N/A | Rarely | Occasionally | Frequently | Constantly | Communication - verbal | | | | X | | Communication - written | | | | X | | Confined area | | | | X | | Contacts - works alone | | | | X | | Contacts - works around others | | | | X | | Contacts - works with others | | | | X | | Exposure to dust / dirt | | | X | | | Exposure to fumes / odors | | X | | | | Extreme cold | | X | | | | Extreme heat | | X | | | | Fast pace | | | | X | | Hazardous conditions - chemicals | | X | | | | Hazardous conditions - high structures | | X | | | | Hazardous conditions - high voltage | | | X | | | Indoors | | | | X | | Noise levels - low to moderate | | | | X | | Noise levels - high | | | | X | | Office conditions | | | | X | | Outdoors | | | | X | | Restricted area | | | | X | | Shifts | | | | X | | Smoke | | | X | | | Travel | | X | | | | Wet/Humid | | X | | | | | | | | | | | | | | |
Mental Requirements | While performing the duties of this job, the associate is required to work within the selected mental requirements. | Mental Requirement | N/A | Rarely | Occasionally | Frequently | Constantly | Analytical | | | | X | | Clerical | | | | X | | Comprehension | | | | X | | Crisis incidents | | | | X | | Customer service | | | | X | | Decision making | | | | X | | High pressure | | | | X | | Judgment | | | | X | | Long hours | | | | X | | Math skills - advance | | | | X | | Math skills - basic | | | | X | | Organization | | | | X | | Reading - simple | | | | X | | Reading - complex | | | | X | | Repetition | | | | X | | Tight deadlines | | | | X | | Writing - simple | | | | X | | Writing - complex | | | | X | | | | | | | | | | | | |
|