Firewall Architect

Description/Comment:
 
The Firewall Architect will play a critical role in ensuring secure network architecture, focusing on firewall design, implementation, and management in a complex enterprise environment. This role involves collaborating with cross-functional teams to enhance network security, optimize firewall performance, and ensure compliance with industry standards.
 
Responsibilities:
1. Design and Architecture:

• Develop and maintain firewall architecture standards for on-premises, cloud, and hybrid environments.
• Design secure network segmentation strategies to minimize risk and limit attack surfaces.
• Collaborate with stakeholders to create tailored firewall solutions aligned with business objectives.

 
2. Implementation and Management:

• Oversee the deployment, configuration, and maintenance of enterprise firewalls.
• Manage firewall policies, ensuring they are optimized for security and performance.
• Implement and monitor access control rules to enforce least privilege principles.

 
3. Security and Risk Management:

• Conduct firewall audits to ensure compliance with internal policies and regulatory requirements.
• Analyze network traffic and identify potential vulnerabilities or misconfigurations.
• Implement intrusion prevention systems and other measures to protect against threats.

 
4. Troubleshooting and Support:

• Investigate and resolve firewall-related issues, providing advanced support to operations teams.
• Monitor performance metrics and optimize firewall configurations as needed.
• Serve as the subject matter expert (SME) for firewall technologies during incident response.

 
5. Documentation and Reporting:

• Maintain detailed documentation of firewall configurations, rule sets, and changes.
• Generate reports on firewall health, performance, and security incidents for stakeholders.
• Provide technical guidance and training to IT teams and end-users.

 
6. Innovation and Continuous Improvement:

• Stay current with emerging firewall technologies and threat landscapes.
• Evaluate and recommend new tools or solutions to enhance network security posture.
• Develop and implement automation for routine firewall management tasks.

 
7. Collaboration:

• network, security, and application teams to align firewall solutions with broader IT strategies.
• Work with compliance teams to ensure adherence to standards and regulations.
• Act as a technical advisor for cross-functional projects involving network security.

 
Qualifications:
Education:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
• Equivalent work experience of 10+ years in lieu of a degree.

 
Certifications (Preferred/Required):

• Certified Information Systems Security Professional (CISSP)
• Palo Alto Networks Certified Network Security Engineer (PCNSE)
• Cisco Certified Network Professional Security (CCNP Security)
• Check Point Certified Security Expert (CCSE)
• Fortinet Network Security Expert (NSE) certifications

 
Experience:

• 7+ years of experience in network security, firewall architecture, and design.
• Hands-on experience with enterprise firewall technologies such as Palo Alto Networks, Cisco Firepower, Check Point, Fortinet, or similar.
• Knowledge of network protocols including TCP/IP, DNS, DHCP, and routing protocols (e.g., OSPF, BGP).
• Experience with firewall rule management and optimization.
• Familiarity with SD-WAN, VPNs, and cloud-based firewall solutions (e.g., Azure Firewall, AWS Security Groups).

 
Technical Skills:

• Proficient in designing, implementing, and managing firewalls in complex environments.
• Deep understanding of firewall rule lifecycle management, segmentation, and policy enforcement.
• Knowledge of intrusion detection/prevention systems (IDS/IPS) and threat intelligence.
• Scripting and automation experience using Python, Ansible, or similar tools.
• Understanding of compliance standards (e.g., PCI DSS, NERC CIP, ISO 27001).

 
Soft Skills:

• Strong analytical and problem-solving skills.
• Excellent communication and documentation abilities.
• Team collaboration and leadership skills for cross-functional projects.

 
Key Outcomes:

• Secure and optimized firewall infrastructure.
• Proactive identification and mitigation of threats.
• Compliance with regulatory and industry standards.
• Efficient rule management and reduced operational overhead through automation.