Posted 17 May, 2026
Check point firewall Engineer
Diverse Lynx
Bengaluru,,560063
Full Time
Reference: 365_569689_26-00377
Description:
• Provide L2 operational support for Check Point firewalls in large-scale enterprise environments.
• Monitor firewall health, performance, and traffic in 24x7 production environments.
• Troubleshoot complex issues related to traffic flow, IP reachability, routing, NAT, VPN, and performance.
• Analyze end-to-end traffic flow to identify why traffic is permitted, blocked, or dropped.
• Perform deep log analysis using SmartLog / SmartView to trace allowed and denied traffic.
• Investigate and resolve traffic blocks caused by access control rules, NAT misconfiguration, or security blades.
• Implement and manage security policies, NAT rules, and objects using SmartConsole.
• Work on different Check Point firewall models including Quantum, Maestro, VSX, and virtual firewalls.
• Support Site-to-Site VPN and Remote Access VPN configurations and related traffic issues.
• Perform firewall upgrades, hotfix installation, migrations, and backup/restore activities.
• Participate in change management, maintenance windows, and incident bridge calls.
• Perform root cause analysis (RCA) for recurring issues and suggest preventive measures.
• Coordinate with L3 teams, vendors, network, and application teams for issue resolution.
• Ensure compliance with security policies, audit requirements, and best practices.
• Create and maintain SOPs, run-books, and operational documentation.
Required Technical Skills
• Strong knowledge of Check Point architecture: Security Gateway, Management Server, MDS, and VSX.
• Hands-on experience with SmartConsole, SmartDashboard, SmartView Monitor, SmartLog, and CLI.
• Strong understanding of traffic inspection flow, rule matching, implicit rules, and security blades.
• Expertise in traffic flow analysis, IP reachability testing, and routing validation.
• Experience troubleshooting traffic blocked by IPS, Anti-Bot, Anti-Virus, URL Filtering, and Application Control.
• Good understanding of NAT behavior, asymmetric routing, and VPN traffic flow.
• Experience with High Availability and clustering using ClusterXL.
• Strong networking fundamentals: TCP/IP, VLANs, subnetting, BGP, and OSPF.
• Log correlation and threat investigation skills using firewall and SIEM tools.
Tools & Technologies
• Check Point SmartConsole and Management Servers
• SmartLog / SmartView / CLI (Expert Mode)
• Network monitoring and packet analysis tools
• SIEM tools (Splunk, QRadar, etc.)
• ITSM tools (ServiceNow or equivalent)
Experience & Qualifications
• 8+ years of experience in Network Security with strong focus on Check Point firewalls.
• Hands-on experience in enterprise or service-provider environments.
• Check Point certifications such as CCSA or CCSE are highly preferred.
• Experience working in shift-based or on-call support models.
• Provide L2 operational support for Check Point firewalls in large-scale enterprise environments.
• Monitor firewall health, performance, and traffic in 24x7 production environments.
• Troubleshoot complex issues related to traffic flow, IP reachability, routing, NAT, VPN, and performance.
• Analyze end-to-end traffic flow to identify why traffic is permitted, blocked, or dropped.
• Perform deep log analysis using SmartLog / SmartView to trace allowed and denied traffic.
• Investigate and resolve traffic blocks caused by access control rules, NAT misconfiguration, or security blades.
• Implement and manage security policies, NAT rules, and objects using SmartConsole.
• Work on different Check Point firewall models including Quantum, Maestro, VSX, and virtual firewalls.
• Support Site-to-Site VPN and Remote Access VPN configurations and related traffic issues.
• Perform firewall upgrades, hotfix installation, migrations, and backup/restore activities.
• Participate in change management, maintenance windows, and incident bridge calls.
• Perform root cause analysis (RCA) for recurring issues and suggest preventive measures.
• Coordinate with L3 teams, vendors, network, and application teams for issue resolution.
• Ensure compliance with security policies, audit requirements, and best practices.
• Create and maintain SOPs, run-books, and operational documentation.
Required Technical Skills
• Strong knowledge of Check Point architecture: Security Gateway, Management Server, MDS, and VSX.
• Hands-on experience with SmartConsole, SmartDashboard, SmartView Monitor, SmartLog, and CLI.
• Strong understanding of traffic inspection flow, rule matching, implicit rules, and security blades.
• Expertise in traffic flow analysis, IP reachability testing, and routing validation.
• Experience troubleshooting traffic blocked by IPS, Anti-Bot, Anti-Virus, URL Filtering, and Application Control.
• Good understanding of NAT behavior, asymmetric routing, and VPN traffic flow.
• Experience with High Availability and clustering using ClusterXL.
• Strong networking fundamentals: TCP/IP, VLANs, subnetting, BGP, and OSPF.
• Log correlation and threat investigation skills using firewall and SIEM tools.
Tools & Technologies
• Check Point SmartConsole and Management Servers
• SmartLog / SmartView / CLI (Expert Mode)
• Network monitoring and packet analysis tools
• SIEM tools (Splunk, QRadar, etc.)
• ITSM tools (ServiceNow or equivalent)
Experience & Qualifications
• 8+ years of experience in Network Security with strong focus on Check Point firewalls.
• Hands-on experience in enterprise or service-provider environments.
• Check Point certifications such as CCSA or CCSE are highly preferred.
• Experience working in shift-based or on-call support models.
