Sr. Network Security Engineer (F5)

Total-TECH Co

The Job Description

• Strong expertise in F5 Advanced WAF and BIG-IP (LTM: VIPs, Self IPs, SNATs, HA).
• Identify and clean unused/orphaned IPs on F5 load balancers to improve performance.
• Review and remove unused, duplicate, or obsolete firewall policies across HQ/DR while maintaining security and compliance.
• Ensure all changes align with HA and DR requirements.
• Assess devices, applications, and network components using public IPs.
• Analyze dependencies and evaluate impact of changes.
• Classify firewall rules and DNS entries by usage and business criticality.
• Plan cleanup/migration (timelines, sequencing, rollback).
• Design private IP ranges aligned with architecture.
• Audit and clean DNS records without service impact.
• Perform secure, controlled changes with minimal downtime.
• Coordinate with cross-functional teams (SOC, apps, ops).
• Conduct post-change validation for availability, security, and performance.
• Establish periodic reviews for firewall, F5, IP, and DNS.
• Maintain detailed documentation for audits and compliance.

Requirements:

• Hands-on NGFW, NAT, and access control management.
• Strong knowledge of IP addressing, DNS, routing, and security architecture.
• Experience in HA/DR, mission-critical environments, and change management.