Network Security Engineer
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
We are seeking a highly skilled Network Security L3 Engineer responsible for designing, implementing, troubleshooting, and optimizing enterprise-level network security solutions. The role requires deep expertise in firewalls, secure access technologies, and incident handling while supporting critical infrastructure and client environments.Technical Skillset:Firewall & Security Platforms:Cisco ASA (CSM)Palo Alto Firewalls (SCM)Cisco FTD (Firepower Threat Defense)Prisma AccessZscaler Internet Access & ZPACisco WSA Proxy and UmbrellaVPN & Secure Access Technologies:GlobalProtect VPNIPSEC VPNPiVPNProxy, Cloud & Network Security Technologies:URL filtering, SSL/TLS decryption, and content securityO365 integrations, proxy bypass, and PAC file managementDNS-layer security (Umbrella)Network Infrastructure:Troubleshoot routing protocols (BGP, OSPF, EIGRP)Manage switching (VLANs, STP, EtherChannel)Change & Incident Management:Execute change management processesHandle P1/P2 incidents and perform RCASecurity Monitoring:Analyze logs and troubleshoot firewall, VPN, and proxy issuesMonitor, manage, and maintain WSA appliances, ensuring high availability and optimal performance.Handle advanced incident management, problem resolution, and root cause analysis for WSA-related issues.Configure and manage:URL filtering policies, access controls, and user authenticationHTTPS decryption policiesApplication and content filtering rulesMalware defense and data security policiesPerform firmware upgrades, patches, and hotfixes on WSA devices.Collaborate with SOC, firewall, and proxy teams for security incident investigations.Implement changes following ITIL change management processes.Maintain documentation for policies, procedures, configurations, and troubleshooting guides.Work with Cisco TAC and other vendors for escalations and advanced troubleshooting.Contribute to automation, optimization, and enhancement of web security operations.Support related security technologies including firewalls, VPN solutions, proxy services, and cloud security platforms as required.Solid understanding of network protocols (HTTP, HTTPS, DNS, TCP/IP).Experience with firewalls (ASA, FTD, Palo Alto), VPN (GlobalProtect, IPSEC), and cloud security platforms (Zscaler, Prisma).Familiarity with email security (ESA) is a plus.Experience with proxy bypass mechanisms, PAC files, and cloud integrations.Knowledge of security frameworks and compliance standards (ISO 27001, NIST, GDPR, etc.).Proficient in ITIL processes (Incident, Problem, Change Management).Strong ability to analyze logs, packet captures, and security reports.Vendor certifications preferred.Client Handling:- Provide L3 support and act as SME- Participate in client calls and technical discussionsNetwork Security Operations:Manage Cisco ASA (CSM tool) and Cisco FTD Firewalls (FMC Console).Manage Palo Alto Firewalls through Strata Cloud Manager.Work on Prisma Access including GlobalProtect, Mobile Users, Service Connections, and Remote Networks.Support and troubleshoot Zscaler (ZIA and ZPA).Configure and support VPN technologies (IPsec, SSL) and Proxy solutions.Manage Cisco ASR/ISR Routers, Nexus 9000 Switches, and Cisco UmbrellaExperience:- 10–14 years in Network Security- Experience in enterprise network environmentsQualifications:- Bachelor's degree in IT or related field- Certifications: CCNP/CCIE Security, PCNSE, Zscaler, ITIL (preferred)DisclaimerHCL is an equal opportunity employer, committed to providing equal employment opportunities to all applicants and employees regardless of race, religion, sex, color, age, national origin, pregnancy, sexual orientation, physical disability or genetic information, military or veteran status, or any other protected classification, in accordance with federal, state, and/or local law. Should any applicant have concerns about discrimination in the hiring process, they should provide a detailed report of those concerns to secure@hcltech.com for investigation.Compensation and BenefitsA candidate’s pay within the range will depend on their work location, skills, experience, education, and other factors permitted by law. This role may also be eligible for performance-based bonuses subject to company policies. In addition, this role is eligible for the following benefits subject to company policies: medical, dental, vision, pharmacy, life, accidental death & dismemberment, and disability insurance; employee assistance program; 401(k) retirement plan; 10 days of paid time off per year (some positions are eligible for need-based leave with no designated number of leave days per year); and 10 paid holidays per year.