**Introduction** In this role, you’ll work in one of our IBM Consulting Security Command Centres to support multiple clients and secure their Cloud and Infrastructure setup, where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology **Your role and responsibilities** We are seeking an experienced Cloud and Network Security Engineer to lead the design, implementation, and maintenance of our network security infrastructure. The ideal candidate will have a strong background in network security, including hands-on experience with firewalls, DMZs, intrusion prevention systems, and other key security technologies. You will play a vital role in ensuring the security and integrity of our network across traditional IT, cloud, and hybrid environments. * Network Security Management: Maintain and optimize network security management solutions, including automation, configuration, and monitoring to ensure robust protection against threats. * Infrastructure Design: Design and implement secure network infrastructures, including DMZs, firewalls, proxy, WAF, IPS, DDoS and security zones, to stabilize and enhance network performance. * Security Operations: Manage and monitor firewalls, IPS, content filtering, antispam, and antivirus solutions across various environments, ensuring comprehensive security coverage. * Cloud and Hybrid Environments: Oversee firewall management and security operations in traditional IT, cloud, and hybrid environments, ensuring seamless integration and protection across platforms. * Manage day to day firewall operations, implementing firewall rule requests, configuration changes. * Assist in troubleshooting and problem solving a wide variety of client IT security related issues (Cisco FTD/Palo Alto/Checkpoint/Fortinet/Azure firewalls, IDS/IPS, VPN, proxy, Bluecoat/Forcepoint/Zscalar Web filtering). * Mentor Tier 1 staff on event handling & response * Continually improve upon skills and ability to learn new technologies * Incorporate and follow all change management processes and procedures as outlined by the customer. * Participate in security and vulnerability risk assessments of the enterprise firewall environment. * Contribute to L2/L3 SOPs/Runbook/KEDB in keeping process & documentation up to date. * Contribute to request/incident/change management improvement process * Ready to learn new technologies through internal trainings * Ready to work 24*7 **Required technical and professional expertise** * Hands-on Experience on minimum 3 Cloud and Infra Security Tools (Firewall / WAF / Proxy / IPS / IDS / DDOS) * Experience on firewall rules and data flow traffic in firewalls. * Experience on clustering and high availability. * Should have good technical expertise in managing minimum 4 vendor device (PaloAlto FW, Fortinet FW, Cisco FW, Checkpoint FW, Juniper FW, Sonicwall FW, Bluecoat Proxy, McAfee Proxy, Forcepoint Proxy, F5 WAF, Forti WAF, Citrix Netscalar WAF) * Should have good technical knowledge and hands on in cloud security solutions (AWS, Azure) like Microsoft cloud native security, PaloAlto, Zscalar * Experience in configuration and implementation of VPN across various vendor perimeter devices. * Experience in routing technologies. * Skilled in analyzing and monitoring network security solutions. * Should possess core understanding of web filtering gateways like BlueCoat, Zscaler or PaloAlto. * Install firmware and patch updates * Install policy for allowing/restricting access to web URL's * Setting up rules for category wise access requests * Managing whitelist and blacklist files * Monitoring web access for users/source * Configuring and managing reverse proxy * Extracting and analyzing web access reports **Preferred technical and professional experience** * Linux Basic knowledge, Advanced preferable. * Basic Scripting knowledge in Python or shell scripting * SASE, CASB * Certificate Management IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.