Title:  Network Firewall Engineer

Job ID:  18934
Location: 

ST Engineering Hub, SG

Description: 

Key Responsibilities

  • Firewall Monitoring & Support: Monitor the health and performance of network firewalls and security appliances, ensuring uptime, throughput, and compliance with security policies.
  • Troubleshooting & Issue Resolution: Diagnose and resolve firewall-related issues including access control, VPN connectivity, and intrusion attempts to minimize operational disruptions.
  • Configuration & Maintenance: Perform routine updates, rule base reviews, firmware upgrades, and configuration backups to maintain optimal firewall performance and security.
  • Incident Management: Respond to security incidents involving firewall breaches or anomalies, escalate as needed, and ensure resolution within defined SLAs.
  • Documentation: Maintain detailed logs of firewall changes, incidents, and maintenance activities. Document standard operating procedures and troubleshooting guides.
  • Collaboration: Work closely with network, security, and IT teams to implement firewall policies, support new deployments, and resolve complex network security issues.
  • Security Management: Enforce network segmentation, access control policies, and threat prevention measures through firewall configurations.
  • Disaster Recovery & Redundancy: Ensure firewall configurations are backed up and tested for failover and recovery scenarios.
  • Asset Management: Track firewall hardware and software inventory, licensing, and lifecycle status.
  • Audit Support: Assist with internal and external audits, including ISMS 27001, by providing firewall logs, configurations, and compliance documentation.
  • Vendor Support: Act as the point of contact with firewall vendors (e.g., Palo Alto, Fortinet, Cisco) for support tickets, patching, and after-hours maintenance.

Qualifications & Requirements

  • Proven experience (typically 2+ years) in network security or firewall administration roles.
  • Strong knowledge of firewall platforms (e.g., Palo Alto, Fortinet, Cisco ASA/Firepower), network protocols, and security best practices.
  • Experience with VPNs, NAT, ACLs, IDS/IPS, and logging/monitoring tools.
  • Familiarity with Windows and Linux systems from a network security perspective.
  • Excellent problem-solving skills and ability to work under pressure.
  • Strong communication skills and ability to collaborate with cross-functional teams.
  • Ability to work independently and manage time effectively to meet deadlines and SLAs.
  • Strong attention to detail, organizational skills, and a proactive attitude.

Preferred Skills

  • Certifications such as:
  • Cisco CCNP Security
  • Experience with scripting or automation tools (e.g., Python, Ansible) for firewall management.
  • Prior experience in managing enterprise-level network security infrastructure.
  • Plus point: Knowledge of ITIL frameworks and best practices for IT service management.
  • Plus point: ISMS 27001 audit knowledge.
  • Plus point: Familiarity with cloud security and firewalls (e.g., AWS Security Groups, Azure NSGs).
  • Plus point: Experience with SIEM tools and log analysis.

Working Conditions

  • The position may require standby and occasional after-hours support depending on operational needs.
  • Work will be performed on-site/remote as per the company policy.