Network Security Consultant

Description Of Role

The Security Consultant should have a strong understanding of the emerging security practices and standards. Should be able to consult, engineer and apply security best practices while designing and proposing solutions to our enterprise customers. Should be able to conduct system security, vulnerability analysis and risk assessment, identify security gaps, identify integration issues, study architecture/platform and design security architecture.

Role

A Network Security Consultant undertakes complex work of a high-risk level, often working on several projects. In this role, you will:

• Interact with senior stakeholders across departments
• Reach and influence a wide range of people across larger teams and communities
• Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate design decisions
• Develop vision, principles, and strategy for security architects for one project or technology
• Work out subtle security needs
• Understand the impact of decisions, balancing requirements and deciding between approaches
• Produce patterns and support quality assurance
• Be the point of escalation for architects in lower-grade roles
• Lead the technical design of systems and services
  
  

Qualifications/Experience

• Bachelor’s degree in any stream.
• Minimum 5 years of working experience in Cyber Security Consulting or Advisory.
• Experience only in support and managed services without any consulting and/or advisory, Professional service experience in recent years will be ineligible.
• Successfully delivered at-least 2 (two) Cyber Security consulting and implementation projects as consultant/Architect/Professional services organization in recent years (2 years).
  
  

Certification

Preferred Certification:

• Certified Information Systems Security Professional (CISSP)
• OEM certification on security products (e.g., Palo Alto, Fortinet, Checkpoint, Alogesec/Tufin etc.)
• Certified Information systems Auditor (CISA)
• Certification should be valid
  
  

Responsibilities

Below will be the scope of the role

• Network Penetration testing
• Network Security assessment.
• Security hardening on several network devices
• Network Security Orchestration
• Propose security products and tools to customer.
• Technical documentation.
• Product evaluation, POC.
• Implementation, Migration and Architect of Security Technology and Solution
• Architecture design and implementation for Zero trust Network
  
  

Knowledge And Skills

Candidate should have experience in the below domains

• Network Security Orchestration - Firewall Audit and Optimization, Network Segmentation, Firewall Policy Cleanup & Optimization (Algosec, Tufin, Skybox)
• Knowledge of script development for Network automation task (e.g. Python, Ansible, Chef)
• Web-proxy, WAF, DDoS (e.g., Palo Alto, Imperva, Cloudflare, Zascaler, McAfee, Broadcom etc.)
• Load Balancer, IPDS, API Gateway (F5, Fortinet, CISCO)
• Implementation experience of NAC products (Aruba ClearPass)
• Well versed with WLAN security control implementation
• Familiar with XDR product evaluation and implementation (Falcon, TrendMicro, Carbon Black)
• Public & Private Cloud Network security assessment & recommendation.
• Well depth Architecture knowledge and implementation experience on Zero Trust Network Access, Secure Access Service Edge (e.g., Zscaler, Cato Networks, Aruba)
• Experienced with Breach & Attack Simulation product implementation (e.g., SafeBreach, AttackIQ, Mandiant)
• Good understanding on AWS, AZURE, GCP infrastructure and services
• Good understanding and hands on experience in microsegmentation.
• Good written & verbal communication and analytical skills.
• Good documentation skills.
• Good problem-solving skills.
  
  

Candidate Selection Guide For Screening

Priority1 : Look for candidate who are part of Vendor/OEM’s Professional Services or TAC team (e.g., McAfee/Trellix/Skyhigh, F5 (LTM & GTM), Palo Alto, Checkpoint, Zscaler, Fortinet, Forcepoint, TrendMicro, Algosec/Tufin/Skybox), Micro segmentation, Zerotrust.

Priority2: Look for candidate from ITES/Consulting organization who are playing role of solution integrator. Good understanding of Security assessment based on industry standard (NIST, ISO, CIS). Skill in Complete SASE solution deployment. Good understanding of Network micro segmentation.

(Wipro, HCL, TCS, Mphasis, DXC, Capgemini, Cognizant, KPMG, Accenture, PWC, Aujas, Paladion)