Cloud Network Security Engineer
HCL Technologies-Bangalore
Total years of experience :12 years, 0 Months
Extensive knowledge in configuring and deploying Palo Alto Next Generation Firewalls including Panorama devices.
Extensive knowledge in configuring and deploying Fortinet firewalls.
Strong knowledge on leveraging advanced firewalls features like APP-ID, User-ID, Wild Fire, NAT policies and Security Profiles.
Implement advanced Palo Alto Firewall features like URL filtering, User-ID, App-ID, Content-ID, SSL decryption on both inbound and outbound traffic.
Profound working knowledge of administration and management of Palo Alto firewalls using centralized Panorama M-100, 200, M-600 and VM devices.
Expert level knowledge on configuring and troubleshooting IPsec VPN and SSL VPN tunnels for connectivity between site-site and remote location users.
Expert level knowledge on performing Firewall migration from one panorama to another.
Deployed new projects infrastructure using Terraform to create VMs, VPC, VPN and routes on the GCP cloud platform.
Balanced traffic across multiple instances to ensure fault tolerance using GCP External Load Balancer (ELB)
Actively participation in GCP-2.0 Cloud design migration.
Leveraged Palo Alto Networks’ Wildfire inspection engine to prevent Zero-Day attacks.
Deployed Active/Standby modes of High Availability (HA) with Session and Configuration synchronization on multiple Palo Alto firewall pairs.
Provided escalated technical support in troubleshooting firewall and network issues.
Periodically perform PANOS upgradation on Palo Alto firewalls and Panoramas.
Periodically Managing & updating SSL certificates in Palo alto firewalls.
Troubleshooting of commit failures, device group and template configuration pushes failures through Panorama.
Troubleshooting of log forwarding to panorama and external syslog servers. Strong knowledge of reading the logs, Pcaps sessions and global counter’s for mitigating the issues.
Scheduled Pre-CAB meeting and attended Change Advisory Board (CAB) meetings to provide approval for change management.
Participating in 24*7 on-call support and implementing changes in different time zones as per the client requirements.
Supported FedRAMP projects.
Remediating SOC findings.
Actively monitoring alerts, analyzing the alert logs and fixing the issues.
Configuring and Managing Cisco & Juniper Switches.
Configuring and Managing Security Firewalls Palo-alto, Cisco ASA, Fortinet, Juniper SRX and Juniper Netscreen.
Configuration and Managing SSL VPN. (Pulse Secure-PSA)
Configuring and Managing Bluecoat Packet shapers
Configuring and Management of Wireless Access Controller Aruba
Configuration of VLANs, Ether-channels, VTP, STP, PVST, RSTP and MSTP.
Implemented 802.1x wired authenticated on network wide devices.
Configuration of HSRP, VRRP and GLBP.
Knowledge and experience on Cloud based proxy technology such as Zscaler.
Configuration & troubleshooting of S2S VPN Tunnel’s in Palo alto & Juniper SRX Firewalls.
Configured and troubleshoot F5 Network Load Balancing BigIP's.
Performing OS upgradation and conduct Resiliency activities for Routers, Switches, Firewalls and Bluecoat Shapers.
Managing the data traffic by creating the class-maps in routers, allocating Bandwidth and monitoring the utilization reports.
ISP vendor management for Link related issues.
Remediating SOC finding.
Analysis of every P1 call and taking preventive action to avoid any repetition and to reduce the time taken to resolve.
Actively participation in network projects and ensure the same are Implemented as per plan and minimum deviation.
Configuring and Managing Cisco ASA & Juniper Netscreen firewalls.
Configuring and Managing Cisco switches
IOS Upgradation for Switches & routers as per NDA standard.
Configuring Vlans and allowing trunk between switches.
Performing periodical Resiliency activities.
Configuring & troubleshooting of Site-Site VPN on ASA Firewalls.
Configuration of Vrouters, Zones and interface level configuration on Netscreen Firewalls.
Logging case with ISP vendors for link related issues.
Performing periodical backup of Routers and Switches.
Installation & Troubleshooting of Operating System for Desktops and Laptops (win7, vista & XP)
Desktop & Laptop Imaging.
Installation & Troubleshooting of Printers, Scanners & Peripherals.
Configuring MS Outlook mail clients and resolving mail access issues.
Configuration and Troubleshooting of VOIP.
Installation and maintenance of Anti-virus suites (Symantec) for all the desktops and ensured 99% desktops are up to date with latest Virus definition.
Supporting Video Conference related issues.
Providing Application Support to project users.
Diploma in Electronics & Communication
PCMB (Physics, Chemistry, Maths, Biology)
SSLC