6+ Firewall Jobs in Chennai | Firewall Job openings in Chennai

Senior Security Architect

The Security Architect leads the design and development of innovative security architectures for protecting data deployed into different types of cloud and cloud/hybrid systems. This position will directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS).

Job Description

The Security Architect will serve as the central point of contact for other Technology teams within the Organization for all matters related to cloud security.

The successful candidate possesses the excellent interpersonal and communication skills required to partner with other leaders across the business to identify opportunities and risks and develop and deliver solutions that support business strategies and protect the intellectual property globally.

Expertise – Collaborate with Application Owners, Technical Owners, Platform Leads, and Information Security teams, to architect and design cloud security solutions.

Knowledge of cloud security services such as Azure and AWS is essential

Delivery – Complete architecture assessments across projects, prove use of security solutions to support new distributed computing solutions that span private cloud and public cloud services.

Security Technology Strategy – Work with engineering, service and business teams to create technology roadmaps.

Responsibilities Include

• Design and develop security architectures for cloud and cloud/hybrid based systems. Possess a firm understanding of the offerings within both Amazon Web Services (AWS) and the Microsoft Azure platforms. Based on business requirements, design and implement cloud-native architecture and design that will allow those requirements to be met with a minimal degree of risk and with appropriate security controls present.

• Represent the Corporate Information Security Office in development and implementation of the overall global enterprise cloud architecture.

• Act as the ambassador and senior technical representative for Information Security while engaging with other senior technical leaders throughout the Organization in design and implementation of cloud and cloud/hybrid based implementations and solutions.

• Work with Engineering, Infrastructure Services, and Application Development organizations to choose appropriate technology solutions and facilitates complete integration. Develops standards in partnership with Engineering, Infrastructure Services, and Application Development.

• Lead training and technical forums, serve as both a formal and informal mentor, and execute other initiatives designed to share knowledge across Security and Technology groups.

• Identify, recommend, coordinate, and/or conduct informal/formal training sessions to deliver timely knowledge to support teams regarding technologies, processes or tools.

• Develop and execute strategies to increase Cloud Security knowledge throughout the enterprise, as well as developing and mentoring more-junior security analysts and engineers.

• 5-8 years of experience with Security Architect and/or Engineering.

• 3-5 years of experience with Cloud platforms such as Microsoft Azure and Amazon Web Services (AWS).

• Experience architecting solutions within Microsoft Azure, Amazon Web Services (AWS) and, preferably, other cloud providers.

• Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.

• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc).

• Experience with deployment orchestration, automation, and security configuration management preferred.

• Experience with service-oriented architecture for cloud-based services.

• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.

• Experience with enterprise applications (architecture, development, support, and troubleshooting).

• Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.

• Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.

• Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.

• Strong interpersonal and communication skills; ability to work in a team environment

• Ability to work independently with minimal direction; self-starter/self-motivated

• Detailed understanding of SSL/TLS protocols and certificate-based solutions

• Technical writing experience

Preferred Qualifications

• Minimum of 15 years of formal education - Graduate / Postgraduate in Computer Science / Information Technology Professional work experience between 10-15 and at least 6-8 years as a Security Architect / Junior Security Architect

• Working Experience with distributed team preferred.

• Relevant industry certifications such as CISSP, CISM, or CCSP

As a Network Engineer at Propel, you will play a vital role in designing, implementing, and maintaining our network infrastructure to ensure optimal performance, security, and scalability. You will work closely with cross-functional teams to develop and support network solutions that align with business objectives and industry best practices.

Responsibilities 

• Design, implement, and maintain network infrastructure, including LAN, WAN, and wireless networks, Site to Site and Client to Site VPN to support business operations and growth.

• Develop and implement network security strategies, including firewall policies, intrusion detection and Prevention (IDS/IPS), access control and CCTV systems, to safeguard company data and resources.

• Configure, troubleshoot, and optimize network devices such as routers, switches, firewalls, High availability, L3/L2/PoE Switches and load balancers, QoS.

• Configure VLan and segregate access between different teams

• Perform hardware troubleshoot such as port failure, system crash, hardware failure etc.,

• Design and implement patch panels and cabling

• Monitor network performance and ensure system availability and reliability. Identify areas for improvement, implementing network optimization and redundancy solutions as needed.

• Perform network maintenance and system upgrades including service packs, patches, hot fixes and security configurations

• Collaborate with other IT teams to evaluate and recommend networking solutions for application and infrastructure projects.

• Implement security tools, policies, and procedures in conjunction with the company’s security team

• Perform network maintenance and system upgrades including service packs, patches, hot fixes, firmware and security configurations

• Monitor system resource utilization, trending, and capacity planning

• Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure.

• Monitor network performance on the availability, utilization, throughput, jitter and latency and test for weaknesses.

• Perform Vulnerability assessment Pen testing at network level and mitigate issues

• Create and maintain network documentation, diagrams, and configurations.

• Knowledge of common security vulnerabilities and OWASP vulnerabilities

• Provide support for critical network incidents on shift basis to support 24x7 model on need basis.

• Exploring automations to integrate for managing networks and provide timely network alerts

• Use ticketing system to document requests, track changes, and explain resolutions

Requirements:

• Bachelor's degree in computer science, Engineering, or a related field.

• 4+ years of experience as a Network Engineer or similar role, with a focus on implementing and managing complex network environments.

• Deep understanding of networking protocols, such as DNS, DHCP, CIDR, IPSEC TCP/IP, BGP, OSPF, and MPLS.

• Proficiency with network hardware, including routers, switches, firewalls, and load balancers from vendors like Fortinet, Cisco etc.,

• Strong knowledge of network security best practices and technologies, such as firewalls, VPNs, and intrusion detection systems.

• Experience with network monitoring and management tools

• Excellent troubleshooting and problem-solving skills and a commitment to continuous improvement.

• Strong communication and collaboration skills, with the ability to work effectively in a fast-paced, agile environment.

Nice-to-Have:  

• Relevant networking certifications, such as CCNP, CCIE, JNCIP, or JNCIE.

• Experience with software-defined networking (SDN) and network automation technologies, such as Ansible, Python, or REST APIs.

Others:

• Common application/ web security and OWASP vulnerabilities

• Encryption algorithms to protect sensitive information

• PII, PCI, HIPPA, and GDPR compliance and how to implement

• Finding the vulnerabilities of the third-party components/ libraries

• Understanding security breaches of data-in-transit and data-at-rest and its implementation

We are seeking a Security Program Manager to effectively drive Privacy & Security Programs in collaboration with cross functional teams. You will partner with engineering leadership, product management and development teams to deliver more secure products.

Roles & Responsibilities:

• Work with multiple stakeholders across various departments such as IT, Engineering, Business, Legal, Finance etc to implement controls defined in policies and processes.
• Manage projects with security and audit requirements with internal and external teams and serve as a liaison among all stakeholders.
• Managing penetration tests and security reviews for core applications and APIs.
• Identify, create and guide on privacy and security requirements considering applicable Data Protection Laws and implement them across software modules developed at Netmeds.
• Brainstorm with engineering teams to figure out how privacy and security controls can be applied to Netmeds tech stack.
• Coordination with Infra Teams and Dev Teams on DB and application hardening, standardization of server images / containerization.
• Assess vendors' security posture before onboarding them and after they qualify, review their security posture at a set frequency.
• Manage auditors and ensure compliance for ISO 27001 and other data privacy audits.
• Answer questions or resolve issues reported by the external security researchers & bug bounty hunters.
• Investigate privacy breaches.
• Educate employees on data privacy & security.
• Prioritize security requirements based on their severity of impact and product roadmap.
• Maintain a balance of security and business values across the organisation.

 Required Skills:

• Web Application Security, Mobile Application Security, Web Application Firewall, DAST, SAST, Cloud Security (AWS), Docker Security, Manual Penetration Testing.
• Good hands-on experience in handling tools such as vulnerability scanners, Burp suite, patch management, web filtering & WAF.

• Familiar with cloud hosting technologies (ex. AWS, Azure). Understanding of IAM, RBAC, NACLs, and KMS.

• Experience in Log Management, Security Event Correlation, SIEM.
• Must have strong interpersonal skills and should be able to communicate complex ideas seamlessly in written and verbal communication.

Good to Have Skills:

• Online Fraud Prevention.
• Bug Bounty experience.
• Security Operations Center (SOC) management.
• Experience with Amazon AWS services (EC2, S3, VPC, RDS, Cloud watch).
• Experience / Knowledge on tools like Fortify and Nessus.
• Experience in handling logging tools on docker container images (ex. Fluentd).

• Must have 6+ years of experience in C/C++ programming language.
• Knowledge of Go programming language and Python programming language is a big plus.
• Strong background in L4-L7 Internet Protocols TCP, HTTP, HTTP2, GRPC and HTTPS/SSL/TLS.
• Background in Internet security related products such as Web Application Firewalls, API Security Gateways, Reverse Proxies and Forward Proxies
• Proven knowledge of Linux kernel internals (process scheduler, memory management, etc.)
• Experience with eBPF is a plus.
• Hands-on experience in cloud architectures (SaaS, PaaS, IaaS, distributed systems) with continuous delivery
• Familiar with containerization solutions like Docker/Kubernetes etc.
• Familiar with serverless technologies such as AWS Lambda.
• Exposure to machine learning technologies and distributed systems is a plus
• B.E/B.Tech/MS degree in Computer Science, or equivalent