Firewall Architect

• 6-10 years Experience designing, implementing, and managing firewall architectures within IT and OT environments, ensuring seamless integration of critical systems such as SCADA, ADMS, EMS, OMS, and DMS.
• Skilled in deploying and maintaining secure communication protocols, including Modbus, DNP3, ICCP, and OSM, to support operational technology networks.
• Demonstrated expertise in supporting compliance with NERC regulatory requirements, particularly in environments leveraging smart grid technologies.
• Adept at collaborating with cross-functional teams to ensure the secure operation of critical infrastructure, facilitating interoperability between IT and OT systems while minimizing cybersecurity risks.
• Proven ability to design tailored security solutions for complex systems, enhancing the reliability and protection of data flow across diverse platforms in both enterprise IT and operational technology networks."

CERTIFICATIONS PREFERRED:

• PREFERRED- Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Certified Information Systems Security Professional (CISSP)
• Palo Alto Networks Certified Network Security Engineer (PCNSE)
• Cisco Certified Network Professional Security (CCNP Security)
• Check Point Certified Security Expert (CCSE)
• Fortinet Network Security Expert (NSE) certifications
• 7+ years of experience in network security, firewall architecture, and design.

• Hands-on experience with enterprise firewall technologies such as Palo Alto Networks, Cisco Firepower, Check Point, Fortinet, or similar.
• Knowledge of network protocols, including TCP/IP, DNS, DHCP, and routing protocols (e.g., OSPF, BGP).
• Familiarity with SD-WAN, VPNs, and cloud-based firewall solutions (e.g., AzureFirewall, AWS Security Groups).
• Proficient in designing, implementing, and managing firewalls in complex environments.
• Deep understanding of firewall rule lifecycle management, segmentation, and policy enforcement.
• Knowledge of intrusion detection/prevention systems (IDS/IPS) and threat intelligence.
• Scripting and automation experience using Python, Ansible, or similar tools.
• Understanding of compliance standards (e.g., PCI DSS, NERC CIP, ISO 27001).

RESPONSIBILITIES:

• Design and Architecture: Develop and maintain firewall architecture standards for on-premises, cloud, and hybrid environments.
• Design secure network segmentation strategies to minimize risk and limit attack surfaces.
• Collaborate with stakeholders to create tailored firewall solutions aligned with business objectives.
• Implementation and Management:- Oversee the deployment, configuration, and maintenance of enterprise firewalls.
• Manage firewall policies, ensuring they are optimized for security and performance.
• Implement and monitor access control rules to enforce least privilege principles.
• Security and Risk Management
• Conduct firewall audits to ensure compliance with internal policies and regulatory requirements.
• Analyze network traffic and identify potential vulnerabilities or misconfigurations.
• Implement intrusion prevention systems and other measures to protect against threats.
• Troubleshooting and Support: Investigate and resolve firewall-related issues, providing advanced support to operations teams.
• Monitorperformance metrics and optimize firewall configurations as needed.
• Serve as the subject matter expert (SME) for firewall technologies during incident response.
• Documentation and Reporting
• Maintain detailed documentation of firewall configurations, rule sets, and changes.
• Generate reports on firewall health, performance, and security incidents for stakeholders.
• Provide technical guidance and training to IT teams and end-users.
• Innovation and Continuous Improvement
• Stay current with emerging firewall technologies and threat landscapes.
• Evaluate and recommend new tools or solutions to enhance the organization s network security posture.
• Develop and implement automation for routine firewall management tasks.
• Collaboration: Partner with network, security, and application teams to align firewall solutions with broader IT strategies.
• Work with compliance teams to ensure adherence to standards and regulations.
• Act as a technical advisor for cross-functional projects involving network security.