Sr Network Engineer/ Checkpoint Firewall Engineer

Job description: Checkpoint Firewall Engineer - Reporting to the Network Application Manager, the Firewall Engineer is seen as a technical expert in networking security (firewalls), API usage and integration, and threat management.

This is a technical and hands on role, with a primary focus on the holistic design and implementation of the Checkpoint Firewall solution. This specifically includes policy automation, threat policy management and troubleshooting, and API usage & integration. Will be expected to support the network engineering and global threat team(s) with complex troubleshooting of issues as required.

You will have experience of working in high impact, mission critical environments where service matters and exceeding expectations is the norm.

Required Skills

Experience with Check Points API architecture to support automation and orchestration.

Has awareness of recent Checkpoint code levels and able to leverage modern features to solve problems

Has experience with firewall policy automation or leveraging Infrastructure as Code for deployments (Ansible/Terraform)

Has experience with Checkpoint IPS, AV and URL Filtering for threat management and troubleshooting

Describe the Check Point Firewall infrastructure. Create and modify Check Point Rule Base objects. Configuring new and maintaining Security Gateway Clusters.

Understand Smart Console features, functions, and tools. Validate existing licenses and contract requirements for Check Point security products. Monitor Management Server states. Grant permissions and user access.

Experience with Gaia system management procedures. Upgrading a Security Management Server

Understand system management procedures, including how to perform system upgrades and how to install hotfixes.

Familiarity with how Maestro uses Hyperscale Technology. Identify the essential components of the Maestro system

Experience with how the Maestro Orchestrators downlinks, uplinks, management, and sync ports function. Create, delete, and modify Security Groups

Understand the basics of the Dual-Site environment

Describe how the Gaia Command Line Interface (CLI) supports the configuration of MHO appliances

Perform diagnostic troubleshooting using the CLI

Evaluate how traffic flows through a Maestro environment

Demonstrate how to use traffic monitoring commands

Understands Checkpoint consumption of identity service for use in security rules

Understands, implement, and troubleshoot Checkpoint identity service

Advanced to expert capability of scripting in Python 2.7.

Preferred/ Recommended Skills

Describe the Check Point Multi-Domain Security Management solution and its benefits.

Understand the components of MDSM and how they work together to help administrators manage multiple network security environments within a single management framework.

Understand how to install and configure the Multi-Domain Security Management environment.

Describe how to implement Management High Availability within the MDSM environment.

Understand how to manage and view multi-Domain activity logs in Smart Console.

Understand how to configure and implement Global Policy to manage rules for multiple domains

Daily Tasks & Responsibilities