L2 Security Engineer – Perimeter Security

L2 Security Engineer – Perimeter Security
22
Mumbai
Job Views:
Created Date: 2026-07-18T12:00:00.327Z
Experience: 4 - year
Salary: upto
Industry: 38
Openings: 1
Primary Responsibilities :
Incident Response & Containment
- Take ownership of validated security incidents escalated from L1 teams.
- Execute containment actions as per approved SOPs, including:
- Malicious IP blocking
- Firewall policy enforcement
- Traffic mitigation
- Coordinate real-time response during active cyber-attacks.
- Ensure service restoration and post-incident stability.
Perimeter Security Operations
Firewalls (Cisco, Palo Alto, Check Point, Fortinet)
- Implement approved temporary security rules.
- Support emergency firewall and access control changes.
- Troubleshoot firewall-related incidents and policy issues.
IDS / IPS (Trend Micro, Cisco)
- Validate exploit attempts and security alerts.
- Apply temporary signature tuning during incidents.
- Monitor intrusion detection and prevention effectiveness.
DDoS Protection (ISP, Radware)
- Activate mitigation techniques during DDoS attacks.
- Coordinate with ISPs and SOC partners for attack mitigation.
- Monitor attack traffic and ensure service continuity.
Web Application Firewall (F5)
- Apply temporary mitigation and blocking rules.
- Protect web applications against malicious traffic and attacks.
- Support WAF policy optimization.
Proxy & Internet Security
- Investigate suspicious internet traffic.
- Contain infected endpoints and malicious communications.
- Monitor secure web gateway activities.
Micro-Segmentation (GuardiCore)
- Apply containment policies to prevent lateral movement.
- Support network segmentation during security incidents.
- Assist in policy implementation and validation.
Root Cause Analysis & Reporting
- Perform detailed Root Cause Analysis (RCA) for security incidents.
- Prepare technical and executive-level incident reports.
- Support audit, compliance, and security evidence collection.
- Coordinate with OEM TAC and internal Subject Matter Experts (SMEs) for complex issues.
Experience Requirements:
Required Skills
- Enterprise Firewall Management
- Cisco Firewalls
- Palo Alto Firewalls
- Check Point Firewalls
- Fortinet Firewalls
- IDS / IPS Administration
- Trend Micro Security
- Cisco IDS / IPS
- DDoS Mitigation (Radware, ISP Solutions)
- F5 Web Application Firewall (WAF)
- Proxy & Internet Security
- GuardiCore Micro-Segmentation
- Network Traffic Analysis
- Incident Response & Containment
- Root Cause Analysis (RCA)
- Security Operations Center (SOC)
- Network Security
- TCP/IP & Network Protocols
- Threat Analysis
- Security Monitoring
- Incident Reporting
- Stakeholder Coordination
Preferred Certifications
- CCNP Security
- Check Point CCSA / CCSE
- Fortinet NSE 4 / NSE 5
- CEH (Certified Ethical Hacker)
- GCIA (GIAC Certified Intrusion Analyst)
Key Performance Indicators (KPIs)
- Incident Response SLA Compliance
- Mean Time to Contain (MTTC)
- Mean Time to Recover (MTTR)
- Incident Resolution Accuracy
- Recovery Effectiveness
- Firewall & Security Policy Compliance
- DDoS Mitigation Effectiveness
- Root Cause Analysis Quality
- Audit & Compliance Support
- Customer/Stakeholder Satisfaction