Delivery Centric is seeking a skilled Security Technical SME – L2 with deep expertise in Palo Alto Global Protect and Cisco AnyConnect. The role focuses on managing and securing enterprise remote access infrastructure, ensuring VPN connectivity is compliant, policy-driven, and aligned with organizational security standards. The ideal candidate will bring hands-on experience in firewall management, VPN governance, authentication integration, and advanced troubleshooting across multi-vendor environments.
Key Responsibilities
- Lead the provisioning and management of SSL VPN profiles for both internal teams and external vendors, ensuring strict role-based access and security compliance.
- Design, implement, and maintain fine-grained routing and firewall rules to support secure and efficient VPN traffic flow.
- Configure and manage Palo Alto GlobalProtect gateways and portals, including HIP profiles and certificate-based authentication.
- Administer and support Cisco ASA/Firepower platforms with AnyConnect configurations, policies, and device posture validation.
- Integrate VPN platforms with enterprise identity systems such as LDAP, RADIUS, SAML, and Azure AD for centralized authentication and access governance.
- Serve as the L3 escalation point for complex VPN incidents, performing root cause analysis and diagnostics using CLI, logs, and packet captures.
- Develop and maintain detailed documentation of configurations, policies, and change management processes to meet ISO 27001, NIST, and GDPR compliance requirements.
- Collaborate with security architects and operations teams to continuously enhance the remote access infrastructure and align it with evolving enterprise security standards.
Qualifications
- Minimum 5 years of hands-on experience in network security or remote access engineering within enterprise environments.
- Proven expertise in Palo Alto Global Protect (portal and gateway configuration, HIP profiles) and Cisco ASA/Firepower (AnyConnect, DAP, access policies).
- Strong technical foundation in SSL/IPsec VPN protocols, firewall rule design, NAT policies, routing logic, and endpoint posture validation.
- In-depth knowledge of authentication protocols (SAML, RADIUS, LDAP) and integration with SIEM platforms for event correlation and monitoring.
- Preferred certifications: PCNSA/PCNSE (Palo Alto Networks), CCNP Security/CCIE Security (Cisco), or CISSP/CCSP/CEH.
- Excellent analytical and troubleshooting skills with a focus on problem resolution, documentation, and process improvement.
At Delivery Centric, you’ll contribute to enterprise-grade network security projects, collaborate with expert engineers, and work in a culture that encourages technical growth and innovation. This role offers the opportunity to enhance your cybersecurity expertise and make a direct impact on strengthening digital infrastructure across complex enterprise environments.