HamburgerMenu
hirist
AI/ML

Artificial Intelligence

Machine Learning

NLP

Generative AI

Predictive Modeling

Query Segmentation

AI Interface

LLM

Deep Learning

MLOps

Security Architect - AI

Cloud Architect - ML/AI

Data Scientist

Data Modeling

Data Analytics

Data Analytics & BI

Data Engineering

Software Development

Backend Development

Frontend Development

Full Stack

Mobile Applications

Emerging Technologies

DevOps / SRE

CyberSecurity

Quality Assurance

Platform Engineering / SAP/Oracle

Product / Design

Product Management

Business Analysis and Project Management

UI & Design

Others

Semiconductor/VLSI/EDA

Others

L2 Network Engineer - Fortinet

Bolt-on Global Solutions Pvt Ltd.
5 - 10 Years
Bangalore
Routing & SwitchingNetwork ProtocolsNetwork ProgrammingCiscoNetwork SecuritySDWANNetwork Load BalancingFirewallArubaCCNPIP Networking

Posted on: 28/03/2026

Job Description

CANDIDATES FROM BANGALORE LOCATION SHALL ONLY APPLY

This role is open exclusively to candidates based in BANGALORE.

Applications from candidates requiring RELOCATION WILL NOT BE ENTERTAINED.

Education qualifications : ONLY B.E/ B.Tech/ B.Sc IT/M.E/M.Tech or equivalent (MANDATE)

Role Summary :

L2 Network Security Engineers provide advanced operational support for enterprise firewalls and security edge services, handling incident response, complex change implementation, problem management, and service improvements. They act as the primary escalation point from L1 and collaborate with L3/Architecture teams for chronic or design-level issues. They ensure high availability, security posture adherence, and compliance across on prem, hybrid, and cloud-connected networks.

Primary Responsibilities :

Incident Response & Troubleshooting :

- Own P2/P3 incidents endtoend; drive P1 bridges as secondary lead when L3 is engaged.

- Perform deepdive packet flow analysis, policy hitcount reviews, session table inspection, and path isolation across multivendor environments.

- Produce RCA reports with corrective & preventive actions (CAPA) within SLA.

Change & Release :

- Implement mediumtocomplex firewall policy changes, NAT, VPNs (sitetosite & remote access), SDWAN path policies (if applicable), and object/group design.

- Validate changes via prechecks/postchecks, staged rollouts, maintenance windows, and backout plans.

- Maintain standard change templates and runbooks.

Platform Operations :

- Manage device health (CPU/memory/session utilization), HA pairs/clusters, software updates/hotfixes, backup/restore, and configuration baselines.

- Monitor logs, alerts, and security events, tuning noise vs. signal to improve MTTR.

Security Posture & Compliance :

- Enforce leastprivilege, review unused rules, shadow rules, overly broad objects, and age out exceptions.

- Support audits (SOX, ISO 27001, PCIDSS, etc.), provide evidence, close findings, and maintain policy documentation.

Collaboration & Communication :

- Mentor L1 engineers; create KBs, SOPs, and training snippets.

- Communicate clearly with customers/stakeholders during incidents and changes; provide daily/weekly ops reports.

Fortinet - L2 Support

Core Platforms : FortiGate (hardware/VM), FortiManager, FortiAnalyzer, (optionally FortiAuthenticator, FortiSandbox), VDOMbased multitenancy.

Policy & Objects : Centralized ADOM-based policy packages (via FortiManager), policy lookup & hitcount, internet services DB objects, security profiles and inspection modes (flow/proxy).

Security Profiles : IPS, Web Filtering, Application Control, AV, SSL inspection (certificate deployment/pinning impacts), DLP, DNS filter-profile tuning & exceptions.

VPN & SDWAN : IPsec (route vs. policybased), dialup IPsec, ADVPN; SSLVPN (portal/policies); SDWAN members/healthchecks (SLA), performanceSLAs and steering logic.

HA Clustering : FGCP AP/AA, session pickup, override/nonoverride, HA link design, get system ha status analysis and splitbrain prevention.

Upgrades/Maintenance : FortiOS release trains and interim builds, image and config integrity checks, upgrade paths, FortiGuard services (AV/IPS/URL signatures).

Logging/Forensics : FortiAnalyzer event handlers, playbooks, log DB health, analytics, reports; diag debug flow, diag sniffer packet, diag sys top, diag debug crashlog.

CLI/Diagnostics : show | grep, get/config contexts, packetflow stages, session table (diag sys session list), policy lookup (diagnose firewall proute/list).

Required Qualifications :

Experience : 3-6 years in network security operations with at least 2-3 years hands on in Fortinet (L2 depth).

Protocols/Networking : Strong knowledge of TCP/IP, routing (static, BGP/OSPF basics), VLANs, NAT, DNS, DHCP, QoS basics, MTU/fragmentation/PMTUD.

Security Concepts : Stateful inspection, TLS/SSL, certificate chains, threat prevention concepts, VPN crypto suites, Zero Trust basics, microsegmentation principles.

Tooling : Wireshark, packet captures, syslog/SEIM basics, ITSM tools (ServiceNow/Jira), version control for configs (Git or builtin platform revisions).

Soft Skills : Incident communication, stakeholder updates, RCA writing, mentoring L1.

Preferred Certifications :

Fortinet : NSE 4 (minimum), NSE 5 (FortiManager/Analyzer) preferred; NSE 6 modules are a plus.

General : ITIL v3/4 Foundation, CCNA/Network+ (or equivalent), any SOC/Blue Team exposure

info-icon

Did you find something suspicious?

Similar jobs that you might be interested in

Posted by

Ranjana sharma

HR Advisor at Bolt-on Global Solutions Pvt Ltd.

Last Active: 1 Apr 2026

Job Views:  
1214
Applications:  142
Recruiter Actions:  113

Posted in

CyberSecurity

Functional Area

Network Administration

Job Code

1624514

Jobs by location

Interview Questions for you

View All
Blog for regisnation

How to Write Leave Application for Urgent Work: Format & Samples (2025)

Blog for regisnation

Top 90+ Machine Learning Interview Questions and Answers

Blog for regisnation

Top 40+ Deep Learning Interview Questions and Answers