Security Technical SME – L2 – Palo Alto & Cisco

About the job

Delivery Centric is seeking a skilled Security Technical SME – L2 with deep expertise in Palo Alto Global Protect and Cisco AnyConnect. The role focuses on managing and securing enterprise remote access infrastructure, ensuring VPN connectivity is compliant, policy-driven, and aligned with organizational security standards. The ideal candidate will bring hands-on experience in firewall management, VPN governance, authentication integration, and advanced troubleshooting across multi-vendor environments.

Key Responsibilities

• Lead the provisioning and management of SSL VPN profiles for both internal teams and external vendors, ensuring strict role-based access and security compliance.
• Design, implement, and maintain fine-grained routing and firewall rules to support secure and efficient VPN traffic flow.
• Configure and manage Palo Alto GlobalProtect gateways and portals, including HIP profiles and certificate-based authentication.
• Administer and support Cisco ASA/Firepower platforms with AnyConnect configurations, policies, and device posture validation.
• Integrate VPN platforms with enterprise identity systems such as LDAP, RADIUS, SAML, and Azure AD for centralized authentication and access governance.
• Serve as the L3 escalation point for complex VPN incidents, performing root cause analysis and diagnostics using CLI, logs, and packet captures.
• Develop and maintain detailed documentation of configurations, policies, and change management processes to meet ISO 27001, NIST, and GDPR compliance requirements.
• Collaborate with security architects and operations teams to continuously enhance the remote access infrastructure and align it with evolving enterprise security standards.

Qualifications

• Minimum 5 years of hands-on experience in network security or remote access engineering within enterprise environments.
• Proven expertise in Palo Alto Global Protect (portal and gateway configuration, HIP profiles) and Cisco ASA/Firepower (AnyConnect, DAP, access policies).
• Strong technical foundation in SSL/IPsec VPN protocols, firewall rule design, NAT policies, routing logic, and endpoint posture validation.
• In-depth knowledge of authentication protocols (SAML, RADIUS, LDAP) and integration with SIEM platforms for event correlation and monitoring.
• Preferred certifications: PCNSA/PCNSE (Palo Alto Networks), CCNP Security/CCIE Security (Cisco), or CISSP/CCSP/CEH.
• Excellent analytical and troubleshooting skills with a focus on problem resolution, documentation, and process improvement.

At Delivery Centric, you’ll contribute to enterprise-grade network security projects, collaborate with expert engineers, and work in a culture that encourages technical growth and innovation. This role offers the opportunity to enhance your cybersecurity expertise and make a direct impact on strengthening digital infrastructure across complex enterprise environments.