- Support and Operate Security Services and offers provided to a vast number of Customers worldwide to secure high quality levels and almost 100% service availability.
- Act as Second level of support and deliver different security services management aspects: incident, change, release, capacity, and vulnerability management.
- Resolve service incidents by troubleshooting & solving reported faults.
- Perform service changes by assessing risk and implementing reported change requests.
- Resolve service problems by performing root cause analysis and designing action plans for unknown errors reported through: Problem Management Dashboard, Monitoring Alarms, Proactive Trouble Tickets, Incidents, or authorized signed emails.
- Monitor & validate alarms coming from intrusion sensors and identify real and false alarms.
- Qualify and solve incidents by analyzing application-level traffic, tracking and investigating intrusions through manual event correlation.
- Escalate technically major security events & incidents to security senior engineers to empower it with better technical skills and more investigation.
- Perform routine actions to help manage and optimize IPS security policies.
- Perform solution releases by authorizing & validating changes, upgrades, updates, patches and migrations as well as implementing it.
- Maintain Security Solutions Configuration Management up-to-date by adding/modifying CI as implied by incident, change, & release processes.
- Manage customers (internal and external) calls and provide them with regular as per each of the service support processes.
- Perform SIPs actions led by Senior Security Engineers and update the action plan of the SIP.
- Perform Technical & management escalation as implied by the escalation process to ensure security tasks are progressing toward resolution and/or completion.
- Mentor newcomers and security associate as well as SOC 1 and provide them with guidance and technical advice.
At least 3 years of experience in Network security trackIn depth experience on most of the following products:Firewalls: Palo Alto & Fortinet, Checkpoint, and JuniperProxies: Bluecoat mainly, Prisma Cloud and Zscaler are a plus.Load Balancers: F5 BIGIP mainlyIntrusion Detection & Prevention: MacAfee IPS mainlyRemote Access Solutions: IPsec, VPN, AAA, CISCO security, PKI, RAS, RADUIS, TACACSOperating Systems: Unix/Solaris & LinuxVery good understanding of networking (TCP/IP, routing OSPF, switching)Very good understanding of application & network security concepts & technologiesNetworking Experience - VPN technologies such as IPSec and VPN clientsAuthentication systems such as LDAP, MS AD etc.Knowledge of protocols such as HTTP, SMTP, FTP, DNSExperience with operating systems such as Linux, Unix and Free BSDCCNA security or Security+ certifiedEnglish fluency is mandatory & French fluency is an asset.Educational background:B.Sc. degree in Computer Science, communications or electronics engineering or equivalentITIL V3PCNSENSE4CISSP is a plus