Title: Network Firewall Engineer
Job ID:
18934
Location:
ST Engineering Hub, SG
Description:
Key Responsibilities
- Firewall Monitoring & Support: Monitor the health and performance of network firewalls and security appliances, ensuring uptime, throughput, and compliance with security policies.
- Troubleshooting & Issue Resolution: Diagnose and resolve firewall-related issues including access control, VPN connectivity, and intrusion attempts to minimize operational disruptions.
- Configuration & Maintenance: Perform routine updates, rule base reviews, firmware upgrades, and configuration backups to maintain optimal firewall performance and security.
- Incident Management: Respond to security incidents involving firewall breaches or anomalies, escalate as needed, and ensure resolution within defined SLAs.
- Documentation: Maintain detailed logs of firewall changes, incidents, and maintenance activities. Document standard operating procedures and troubleshooting guides.
- Collaboration: Work closely with network, security, and IT teams to implement firewall policies, support new deployments, and resolve complex network security issues.
- Security Management: Enforce network segmentation, access control policies, and threat prevention measures through firewall configurations.
- Disaster Recovery & Redundancy: Ensure firewall configurations are backed up and tested for failover and recovery scenarios.
- Asset Management: Track firewall hardware and software inventory, licensing, and lifecycle status.
- Audit Support: Assist with internal and external audits, including ISMS 27001, by providing firewall logs, configurations, and compliance documentation.
- Vendor Support: Act as the point of contact with firewall vendors (e.g., Palo Alto, Fortinet, Cisco) for support tickets, patching, and after-hours maintenance.
Qualifications & Requirements
- Proven experience (typically 2+ years) in network security or firewall administration roles.
- Strong knowledge of firewall platforms (e.g., Palo Alto, Fortinet, Cisco ASA/Firepower), network protocols, and security best practices.
- Experience with VPNs, NAT, ACLs, IDS/IPS, and logging/monitoring tools.
- Familiarity with Windows and Linux systems from a network security perspective.
- Excellent problem-solving skills and ability to work under pressure.
- Strong communication skills and ability to collaborate with cross-functional teams.
- Ability to work independently and manage time effectively to meet deadlines and SLAs.
- Strong attention to detail, organizational skills, and a proactive attitude.
Preferred Skills
- Certifications such as:
- Cisco CCNP Security
- Experience with scripting or automation tools (e.g., Python, Ansible) for firewall management.
- Prior experience in managing enterprise-level network security infrastructure.
- Plus point: Knowledge of ITIL frameworks and best practices for IT service management.
- Plus point: ISMS 27001 audit knowledge.
- Plus point: Familiarity with cloud security and firewalls (e.g., AWS Security Groups, Azure NSGs).
- Plus point: Experience with SIEM tools and log analysis.
Working Conditions
- The position may require standby and occasional after-hours support depending on operational needs.
- Work will be performed on-site/remote as per the company policy.