About the Role
We are hiring for a Security Operations Engineer (L1) to join our security operations team. This is a front-line role responsible for the day-to-day monitoring, first-level administration, and incident triage of perimeter and application security infrastructure — primarily next-generation firewalls, web application firewalls (WAF), and proxy / web-gateway platforms — across managed-services and professional-services engagements. You will work under the guidance of L2/L3 engineers and team leads, building hands-on expertise on leading vendor platforms.
Key Responsibilities
- Provide first-level monitoring and operational support for security devices including Fortinet FortiGate, Palo Alto Networks (PAN-OS / Panorama), and Check Point firewalls.
- Monitor security alerts, logs, and dashboards; perform initial triage and classify incidents based on severity and impact.
- Execute standard, pre-approved firewall policy and rule changes (object creation, rule additions/modifications, NAT entries) following change-management procedures.
- Support administration and monitoring of WAF platforms (e.g., F5 ASM / Advanced WAF, Fortinet FortiWeb, Imperva, Akamai, or Cloudflare) — signature updates, basic policy tuning, and false-positive review under supervision.
- Support proxy and secure web gateway operations (e.g., Zscaler, Forcepoint, Symantec/Broadcom ProxySG, Cisco Umbrella) — URL filtering, category/policy updates, and access troubleshooting.
- Log, track, and update tickets in the ITSM tool (ServiceNow / Remedy / Jira) within defined SLAs; maintain accurate documentation of actions taken.
- Perform health checks, backups, and license/signature validation on managed security devices.
- Escalate complex incidents and unresolved issues to L2/L3 engineers with complete and accurate handover notes.
- Assist with routine reporting — uptime, incident summaries, and compliance reports.
- Follow defined SOPs, runbooks, and security best practices; contribute to keeping documentation current.
Required Skills & Qualifications
- Bachelor's degree in Computer Science, IT, Electronics, or a related field (or equivalent practical experience).
- 1–3 years of hands-on experience in a SOC, NOC, or network/security operations environment.
- Working knowledge of firewall administration on at least one (preferably two) of: Fortinet FortiGate, Palo Alto Networks, Check Point.
- Solid understanding of networking fundamentals — TCP/IP, routing, NAT, VPN (IPsec/SSL), DNS, DHCP, and the OSI model.
- Familiarity with security concepts: firewall rule bases, IDS/IPS, WAF, proxy/web filtering, and threat/log analysis.
- Basic understanding of WAF and proxy / secure web gateway technologies.
- Comfortable working with ITSM/ticketing tools and following ITIL-aligned incident and change processes.
- Good written and verbal communication; ability to document clearly.
- Willingness to work in rotational shifts, including nights and weekends (24x7 SOC coverage).
Good to Have
- Vendor certifications such as NSE 4 (Fortinet), PCNSA (Palo Alto), CCSA (Check Point), or equivalent.
- Foundational certifications: CCNA, CompTIA Security+, or CEH.
- Exposure to SIEM platforms (e.g., FortiSIEM, Splunk, QRadar, Microsoft Sentinel) and basic log correlation.
- Scripting familiarity (Python / Bash) for automation of routine tasks.
- Experience supporting enterprise or service-provider customers in a managed-services model.
Soft Skills
- Strong analytical and troubleshooting mindset with attention to detail.
- Eagerness to learn and grow into L2/L3 security engineering roles.
- Team player who can collaborate across shifts and escalation tiers.
- Calm and methodical under operational pressure.
Pay: ₹500,000.00 - ₹800,000.00 per year
Benefits:
Application Question(s):
- Do you have experience in Proxy technologies?
- Do you have experience in Firewalls (Fortinet, Palo Alto, or Check Point)?
- Do you have experience with WAF?
Work Location: In person