Lead Network Engineer_97619

Key Skills: Fortinet, Firewall, Network Security, Switching, Routing

Roles and Responsibilities:

• Own and lead enterprise network security platforms including Fortinet NGFW (FortiGate) and Zscaler (ZIA / ZPA).
• Define architecture standards, design patterns, and security guardrails for perimeter, internal, and cloud connectivity.
• Lead firewall and SASE design for data centers, cloud workloads, and remote users.
• Ensure high availability, scalability, and resilience of network security services.
• Lead design, deployment, and lifecycle management of Fortinet firewalls, policies, NAT rules, IPS, URL filtering, and SSL inspection.
• Review, approve, and optimize firewall rules to enforce least privilege and segmentation.
• Drive firewall hygiene initiatives including rule recertification, cleanup, and risk reduction.
• Support upgrades, patching, and vulnerability remediation for firewall platforms.
• Lead implementation and operations of Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
• Define secure internet access, zero-trust access, and remote connectivity models.
• Integrate Zscaler with identity platforms (e.g., Entra ID / SSO) and endpoint controls.
• Monitor and tune policies to protect against web-based threats, data exfiltration, and misuse.
• Integrate firewall and Zscaler telemetry with SOC and SIEM platforms for monitoring and incident response.
• Support investigation and containment of network-based security incidents.
• Ensure network security controls align with regulatory and compliance requirements (HIPAA, NIST, ISO).
• Provide technical inputs for audits, risk assessments, and security architecture reviews.
• Provide technical leadership and mentorship to network security engineers.
• Define operational runbooks, standards, and documentation for network security services.
• Drive automation, process optimization, and platform maturity improvements.
• Act as an escalation point for complex network security issues and design decisions.

Skills Required:

• Strong experience in enterprise network security and infrastructure engineering
• Hands-on expertise in Fortinet Firewall (FortiGate) administration and security policies
• Strong knowledge of Network Security principles and perimeter security architecture
• Experience in routing, switching, and core networking concepts (TCP/IP, VLANs, subnets, BGP/OSPF preferred)
• Strong understanding of firewall rule management, NAT, IPS, URL filtering, and SSL inspection
• Experience in firewall design, deployment, and lifecycle management in enterprise environments
• Knowledge of Zscaler (ZIA and ZPA) and SASE architecture (preferred)
• Strong understanding of Zero Trust Network Access (ZTNA) and secure remote connectivity models
• Experience in integration of network security tools with IAM/SSO platforms (e.g., Azure Entra ID)
• Strong knowledge of network segmentation, least privilege access, and security zoning
• Experience in incident response, troubleshooting, and root cause analysis for network security issues
• Familiarity with SIEM/SOC integration for security monitoring and alerting
• Strong understanding of security compliance frameworks (ISO 27001, NIST, HIPAA)

Education: Bachelor's degree in any branch

Note: This role is open for both Hyderabad and Bangalore locations. Candidates currently based in Bangalore who are open to relocating to Hyderabad are also encouraged to apply.