Key Responsibilities: What is the role accountable for and what are its key responsibilities? Describe the key result areas for this role specifically, rather than those for the team or role family where this role works.
• When it is not technically feasible to install monitoring, member will monitor the data stream coming from device.
• Initiate additional time-based checks if contact with a managed technology/device is lost.
• Create a trouble ticket in the event of a performance problem or potential health issue of the managed
devices/technologies.
• Begin research and investigation of the documented issues.
• If the managed technology is identified as the potential source of a network-related problem, examine the
configuration and functionality for potential issues.
• Display the device health and outage ticket in the tool.
• Follow incident and change management procedures to solve issues and provide business continuity.
• Monitor Service Level Agreements (SLAs) for responsiveness and coverage.
• Provide regular reports and statistics for service management.
• Reviews and assist security assessments.
• Enforces security policy and procedures.
• Other duties related to the technologies managed by the team as assigned.
• Provide Level 1 & 2 support for Firewalls Cisco ASA/Firepower and Palo Alto Firewalls
• Provide Level 1 & 2 support for Illumio micro segmentation technology.
• Provide Level 1 & 2 support for Cisco Umbrella Solution
• Provide Level 1 support for ForeScout technology.
• Provide Level 1 for Akamai WAF and incident triage for akamai.
• Provide L3 support for Microsoft Defender AV, ATP, and Firewall modules.
• 24 x 7 operational environments, varied shift schedules may include day, night, and weekend hours
Knowledge: List the professional/academic qualifications required/desired for the role.
• Bachelor’s degree in Cybersecurity, Computer Science, or related engineering field
• Language requirement: English (Required).
• Cisco Certified Network Associate Security (CCNA Security) training or equivalent (Required).
• Palo Alto Networks Certified Network Security Engineer (PCNSE) training (Required).
• Palo Alto Networks Certified Network Security Administrator (PCNSA) training (Required).
• Cisco Certified Network Associate R&S (CCNA) training or equivalent (Desired).
• Network Security Micro segmentation with Illumio technology or equivalent vendor (Desired).
• Cisco Umbrella Security Solution or equivalent vendor (Desired).
• Network Access Control (NAC) with ForeScout or equivalent vendor (Desired).
• End Point Security Protection solutions with Microsoft Defender Suite or equivalent vendor (Desired).
• Akamai Technologies solution knowledge (Desired).
Experience: State the amount of experience required to perform this role effectively. Include the size and scope of the experience (E.g., size of the organisation, number in the team, people management responsibilities etc.).
• 3+ years, hands-on, broad-based information security experience. • 3+ Managing Firewalls Cisco ASA Firewalls/Firepower devices and Palo Alto NGFW • 3+ Managing Firewalls with CDO or Panorama • 3+ Working in a Security Operations Center or Managed Services Team in a Level 2 position or similar experience. • Customer service and ability to remain calm, tolerant, and professional in a stressful and demanding environment. • Familiar with SOX, PCI DSS, ISO 27000, NIST SP 800, ITIL • A self-starter with strong interpersonal skills and the ability to work independently. • Experience of operational security monitoring, metrics, and reporting • Strong verbal and written communication. • Implement best practices for firewall management compliance with internal firewall policies. • Monitoring of service levels for incidents and requests • Incident Response.