• Configure and manage security policies on the firewall, including access rules, traffic filtering, and application control; • Implement and fine-tune firewall rules, defining granular policies aligned with security guidelines and periodically reviewing them to eliminate redundancies or inconsistencies; • Continuously analyze implemented rules to identify obsolete or misconfigured entries, record justifications, and document all changes made to the environment; • Evaluate the impact of rules on critical applications, adjusting them to avoid unintended blocks or network bottlenecks while monitoring the performance of protected services; • Configure specific rules for application and service filtering based on the firewall App-ID, allowing authorized traffic and mitigating risks associated with untrusted applications; • Monitor firewall logs and events to identify suspicious or anomalous activity; • Apply firmware updates and threat signature updates to the firewall according to established guidelines; • Implement hardening practices on the firewall in line with the organization’s security standards; • Perform periodic audits of firewall configurations to verify compliance with internal and regulatory security policies; • Evaluate and adjust NAT (Network Address Translation) and routing configurations on the firewall to ensure correct network operation; • Document security incidents related to the firewall and propose technical recommendations for mitigation; • Collaborate with internal teams in the investigation of incidents involving the firewall; • Prepare technical reports on the firewall security status and performance metrics of implemented policies; • Configure and maintain advanced firewall features such as IPS (Intrusion Prevention System), Threat Prevention, and WildFire; • Conduct periodic scans to detect vulnerabilities in firewall configurations using dedicated tools; • Perform integrity audits of firewall rules and logging systems (logs) within the firewall environment; • Assess the use of privileged accounts and segregation of duties in firewall management during audits; • Implement and manage multifactor authentication (MFA) solutions for firewall access; • Evaluate and configure SSL/TLS traffic control policies on the firewall to prevent encryption-based attacks; • Monitor and respond to security alerts generated by the firewall and integrated with SIEM (Security Information and Event Management) tools; • Configure and manage site-to-site and remote access VPN policies using the firewall’s VPN tools, defining granular rules for authentication and access control based on the environment’s needs (Host Information Profile, split-tunnel traffic, etc.); • Configure segmentation rules for VPN traffic on the firewall, isolating critical networks and limiting lateral access to reduce the spread of threats from remote connections; • Implement SSL/TLS inspection policies for VPN traffic, enabling analysis of encrypted packets without compromising VPN security or performance; • Implement and monitor security policies to protect critical services such as site-to-site and remote access VPNs on the firewall; • Configure and manage access policies based on the Zero Trust Network Access (ZTNA) model; • Monitor and audit access performed via ZTNA; • Perform other information security and firewall-related activities as required by operations.