Firewall Engineer

Location : ,

Job Description

Firewall Specialist SP3, 12 + years

On Site 2 Metro Tech, Brooklyn, NY

Scheduled Work Hours: Normal business hours Monday-Friday 35 hours/week


Job Description / Justification:

The NYC Office of Technology and Innovation has been tasked with recruiting a Security Engineer/Architect who will be

required to assist with the design and deployment of firewall security solutions deployed in large, complex networked

environments. The architect/engineer must be highly specialized to provide guidance at various stages of planning and

implementing secure design, processes, and resilient solutions.

This resource will have significant interaction with OTI Infrastructure Management leadership, its engineering and

architecture teams, operations team, and datacenter teams.



Firewalls and Network – Next-Gen Firewall, Routing and Defensive Security,

DNS, DDOS: design, implementation, and configuration



1. Participate in design meetings and reviews from a security and network perspective on assigned priority projects.

2. Propose networking security architecture to meet the business requirements and while adhering to OTI’s best practices guidelines.

3. Collaborate with OTI’s Architect teams for developing operable solutions for Citywide requirements.

4. Complete all requirements for installing new network or firewall devices.

5. Follow OTI process for new devices provisioning of integrated systems.

6. Configure ports, configure firewalls, and apply the base templates configurations, integrate the appliances into production network.

7. Develop and validate base configurations for the new firewall.

8. Follow OTI’s established procedures to successfully replace firewalls and firewall rules.


MANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will

not be considered

1. Minimum 12 years of experience in the field of networking, network security and firewalls

2. Must have hands-on experience with Palo Alto

3. Deep understanding and experience of DNS, NTP, BGP and other critical infrastructure protocols.

4. Must understand BGP, MPLS, OSPF, IS-IS routing protocols in a large environment.

5. Deep understanding on routing, load balancing and networking infrastructure.



1. Hands on experience in Cisco and Palo Alto firewall technology

2. Additional experience in the field of load balancing.

3. Good project management skills

4. Ability to simultaneously work on multiple project