The purpose of this role is to act as Lead SME of network and security technology & provide support in corporate IP infrastructure build/ operation environment. To act as Lead Technology & be an Interface with the Demand team in integration /implementation / UAT-test /transition to IT Operations and to build/manage Technical Management Function (TMF), in coordination with other cross functional team/vendors/OEMs. He will be Technology Leader & represent IT Network Ops/ Build function to business during implementation & setting up governance during transition to IT Operation. Responsible to do assessment of Operate/ Build support function & technology for either service improvement or automation to deliver benefits to network service or business
• Accountable as Lead SME of network and security technology service at build & Operate function of IT Network infrastructure and manage TMS (technical management support) network function within Build/ Ops team
• Must be techno savvy – 6 to 9 years of in depth knowledge & understanding of IP architecture
• Lead critical network & security project delivery activities for complex and critical network infrastructure solutions and services
• Provide critical technical inputs to design team in early stage to ensure new design is consistent with existing technology landscape with design team in early stage and provide inputs on technology, BoQ
• Act as an interface with Solution & Design team for various new requirement to support sharing of ops information, understanding design, support solution team for deployment & integration, test/ UAT of setup until transition of services to network operation along with adequate & accurate documentation
• Maintain, manage & assessment of network infrastructure/ process & highlight key finding which can result benefit to business/infrastructure – bringing continual service improvement plan in Ops/ Build area and ensure better efficiency & effectiveness is in place
• Excellent 360-degree view of infrastructure elements and strong hands on maintaining & managing well designed and highly resilient, cost effective secure IT infrastructure ; mainly Infoblox DHCP, DNS ,IPAM (DDI),NTP technology and solution and lifecycle management
• Maintain & manage well designed and highly resilient, cost effective secure IT infrastructure i.e. Web & Cloud Proxy - BlueCoat, Websense ,forcepoint etc, F5 LTM, F5 GTM, Fortinet, and FirePower modules like Forticache (FCH), Fortigate (FW), FortiWeb (FWB), and Log Analyzer (FAZ), Cisco ASA Firewall, Cisco VPN
• Maintain, manage & implementation of VPN technologies like IPSEC, SSL VPN including 2 factor authentication
• Maintain, manage & implementation intrusion detection/prevention solutions IPS: sourcefire, Cisco wIPS, Unified Thread Management (UTM) & SIEM/SIM products;
• Maintain, manage & implementation of secure authentication architecture like Cisco Authentication Server (ACS or ISE) including Network Admission Control (NAC), 802.1x, Content Filtering, Net flow Analysis & certificate deployment
• Understanding of various routing/switching technology i.e. BGP / OSPF / MPLS, VSS, HSRP/VRRP, Stacking, IP SLA, MST/STP/PVST/RSTP, Cisco 3 tier data centre architecture & different techniques of redundancy, Ether channel, VSS, QoS etc.
• Maintain, manage & implement NBAD (Network Behaviour Anomaly Detection) tools like Lancope
• Maintain, manage & implementation security monitoring & trouble-shooter like packer flow analyser, traffic analyser, sniffer – wireshark & netmon, Tufin policy management tool, solarwind, Sapphire
• Act as SME & Interface with IT, cross function support team, business & principal vendors to analyse, track & review KPI & support mechanism
• Monitor & measure the performance & availability of systems proactively; implement corrective actions identified to improve performance & service level availability.
• Capacity planning of security infrastructure to ensure 24*7 available network, along with Availability Management, Event Management & high availability, proactive forecast of capacity on the base of Capacity Report
• Support service continuity measures i.e., backup/restore procedures & disaster recovery plan.
• Implementing best practices, Create SOPs for repeated tasks & automation, along with continual updation to Knowledge Management
• Work with Service Management Team, Infosec Team & Network TMS Team, to identify, control & resolve key investigations, support SIP (System Improvement Plans) & ensure zero high severity security issue/audit points
• Planning of hardening of all security devices, in coordination with TMS team/ OEM experts & Vendors
• Understanding of ITIL oriented process framework is mandatory - Review MIS data & represent MIS dashboard in monthly review
• Ensure technical resources are trained and deployed to design, build, transition operate and improve the technology to support IT secure architecture
• Flexible person with the ability to manage stressful situations and adapt to rapidly changing environments and requirements.
• Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure
• Support, coordinate & manage regular activity calendar/audit of IT Operation team / Infosec team to ensure necessary documentation, gap finding & closure
• Mentoring & creation of skill/ talent within team
ypical outputs
(Key deliverables & KPIs expected from the role holder)
Impact on Business
(How would the role holder impact/scale of influence Business decisions – strategic/operational)
Interfaces with Customers, Suppliers & Third parties
(Internal and external stakeholder interactions expected of this role )
Leadership & Teamwork
(Leadership Direction and accountabilities towards the Team)
Innovation & Change
(Expectations from this role in driving innovation and change)
Additional Information
• Managing IP technology, technical escalations & issues
• Contribute in enhancing efficiency and user experience for work processes
• Strong client and customer focus and result oriented attitude
• Interface with user/ business to resolve the network Issue
• Interface with functional support teams/ vendors & others behalf of network security function
• Mentoring & creation of skill/ talent within team
Essential:
Technical Qualification i.e. B.E, B.Tech, B.sc./M.Sc – IT or any graduation in science
Certifications on CISCO technology - Cisco CCIE Security or CCIE, Cisco R&S CCNP or CCSP or CCIE practisioner, Fortinet (NSE4/NSE5) Certification - preferred
Mandatory - Cisco Professional/ Expert certification
Desired:
ITIL Certification or understanding of ITIL/ITSM guideline
Fortinet & ASA firewall certification
Working with Network security management tools
Team Leader
• Communication
• Leadership/ Team Handling experience
• Language skills
• Vodafone Way