Senior Check Point Firewall Engineer R80+ VSX

About The Position

Requirements

• 6+ years of enterprise network or security engineering experience.
• Strong hands‑on Check Point experience in production (R80+); VSX experience required.
• Hands-on experience with Check Point Maestro (deployment, Security Group management, orchestration, scaling, and troubleshooting)
• Deep Layer 2 / Layer 3 networking and TCP/IP troubleshooting skills.
• Proven experience designing and supporting VPN solutions.
• Cloud security experience with AWS, Azure, and/or GCP.
• Experience supporting change management and incident response.
• Solid understanding of core security concepts: authentication, authorization, access control.
• Ability to operate independently and lead during critical incidents.
• Strong communication, documentation, and cross‑team collaboration skills.
• Check Point CCSE certification
• Cisco CCNP certification
• AWS Certified Solutions Architect – Associate certification

Nice To Haves

• Experience with firewall policy management tools such as AlgoSec or FireMon.
• Automation or scripting experience (Bash, Python, Ansible, Terraform).
• Familiarity with Governance, Risk, and Compliance (GRC) practices.
• Experience in high‑availability or large‑scale enterprise environments.
• Advanced Check Point certifications (CCCS, CCMS, CCAS, CCVS, CCSM, CCME)
• VMware VCP / VCAP certification
• AWS Solutions Architect – Professional certification
• Azure Solutions Architect certification
• Google Professional Cloud Architect certification
• Cisco CCIE certification
• CISSP or CEH certification

Responsibilities

• Lead operation and support of enterprise firewall and network security platforms in a 24/7/365 environment.
• Design, implement, and enforce firewall policies and security standards across on‑prem and cloud environments.
• Own and support Check Point (R80+), VSX, CloudGuard, VMware NSX‑T / Distributed Firewall, and related platforms.
• Secure cloud environments across AWS, Azure, and GCP; implement cloud‑native and hybrid controls.
• Architect, implement, and maintain site‑to‑site and remote access VPN solutions.
• Act as Tier 3 escalation for complex incidents, changes, and outages; lead post‑incident reviews.
• Partner with infrastructure, cloud, and security teams to design secure solutions and integrations.
• Support audits and compliance initiatives; maintain security documentation and runbooks.
• Mentor junior engineers and drive continuous improvement and best practices.
• Participate in on‑call rotation and provide off‑hours support as needed.

Benefits

• Health coverage for medical, dental, vision
• 401(K) saving plans with company match AND Pension
• Tuition assistance
• Floating holidays and PTO for community volunteer programs
• Paid parental leave
• Wellness programs
• Employee discounts (membership, insurance, travel, entertainment, services and more!)