Security Tech Lead - Firewall/ VPN/ IPS

Introduction
At IBM work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so lets talk.

Your Role and Responsibilities
We are looking for a Security Analyst (L3) to protect organization from cyberattacks by monitoring systems and evaluating threats as they arise.

Responsibilities

• Developing and implementing a comprehensive infrastructure security strategy aligned with the organization’s goals and objectives. This includes defining security objectives establishing security policies and procedures and ensuring compliance with relevant standards and regulations. Collaborating with infrastructure and IT teams to design and implement secure infrastructure architectures.
• Developing and maintaining an incident response plan to effectively respond to security incidents and breaches.
• Overseeing the implementation of security controls across the infrastructure.
• This includes the deployment and configuration of firewalls intrusion detection/prevention systems access control mechanisms encryption technologies and other security solutions.
• Firewall Configuration and Management: Expertise in configuring and managing firewalls to control incoming and outgoing network traffic enforce security policies and prevent unauthorized access.
• This includes configuring firewall rules implementing virtual private networks(VPNs)and conducting regular firewall audits or fine-tuned.
• In-depth Knowledge of Fortinet Products: Strong expertise in Fortinet firewall products including FortiGate firewalls FortiAnalyzer FortiManager and other Fortinet security solutions.
• Understanding the features capabilities and configuration options of Fortinet devices is essential.
• Proficiency in deploying and managing NIPS/HIPS solutions to detect and prevent network-based attacks. This involves configuring and fine-tuning intrusion detection and prevention rules monitoring network traffic for suspicious activity and responding to potential security incidents.
• Technical Lead Responsibilities like -Team Collaboration and Communication Technical Guidance and Direction
• Mentorship and Skill Development Task and Resource Management Performance Evaluation and Feedback
• Addressing conflicts or disagreements within the team Stakeholder Management Staying up-to-date with emerging technologies

Required Technical and Professional Expertise

• 6+ years of work experience information security
• Experience in implementing and managing VPN solutions to establish secure remote connections between networks or remote users. This includes configuring VPN protocols encryption authentication mechanisms and ensuring secure access to network resources.
• Network Access Control (NAC): Familiarity with implementing and managing NAC solutions to enforce access policies and control network access based on user identity device health and compliance requirements. This involves configuring authentication mechanisms creating access rules and monitoring network access activities.
• Network security protocols and technologies such as IPsec SSL/TLS VPNs NAT routing
• protocols VLANs and network segmentation.
• Strong knowledge of network protocols such as TCP/IP DNS DHCP HTTP FTP and SMTP..
• Understanding the fundamental concepts and principles of IAM such as authentication authorization identity lifecycle management least privilege role-based access control (RBAC)and identity federation.
• Understanding of DLP Monitoring and detecting potential data breaches or policy violations.
• Knowledge of AV and Malware Types and Behavior. Types of malwares (viruses worms Trojans ransomware etc.) their propagation methods and common behaviors.

Preferred Technical and Professional Expertise

• Degree in Information Technology or Computer Science or Network / Telecommunications
• Engineer B.Tech. B.E MCA M.Sc. IT.(Mandatory either of these)
• Fortinet certifications such as the NSE 4 (Network Security Professional) and NSE 7 (Advanced
• Proven communication and presentation skills
• Experience in working within highly regulated environments
• Demonstration of interest in Infrastructure and Endpoint Secuity
• Exposure in Automobile Sector will be an advantage.