Sr Network Security Engineer

What you'll Do



* Design, implement, and manage Palo Alto Networks security solutions (Prisma Access, Next Generation FWs, Strata Cloud, GlobalProtect, Cortex XDR) to protect hybrid and cloud environments.


* Develop and enforce network segmentation policies, implementing role-based access control (RBAC) and least privilege across on-prem and cloud infrastructure.


* Configure and optimize GlobalProtect for secure, scalable remote access, ensuring compliance with security best practices and user accessibility requirements.


* Leverage Cortex XDR for advanced threat detection, incident response, and endpoint protection across the organization's IT assets.


* Implement security controls in public cloud environments (AWS, Azure, OCI), including network security groups, identity and access management (IAM), encryption, and multi-factor authentication (MFA).


* Ensure compliance with security frameworks (e.g., NIST, CIS, ISO 27001) through the implementation of appropriate cloud security policies and procedures.


* Collaborate with cloud architects and DevOps teams to integrate security controls into cloud-native applications and services, ensuring secure CI/CD pipelines.


* Monitor and manage security incidents and vulnerabilities within both on-prem and cloud environments, using Palo Alto's suite of tools and cloud-native monitoring services.


* Perform security risk assessments and audits of cloud and network infrastructures, providing recommendations for continuous improvement.


* Document security architectures, policies, and procedures, ensuring they align with industry best practices and regulatory requirements.


* Mentor and guide junior security engineers in Palo Alto Networks and cloud security technologies.


* Knowledge of variety of routing protocols


* Utilizes Subject Matter Expert knowledge in leading daily management and administration of network security controls such as firewalls, web application firewalls, DNS, routers, switches, VPN appliances, and load balancers


* Utilizes an advanced and broad range of skills to identify and troubleshoot different technical platforms including firewalls, servers, networks, Internet and Cloud


* Creates and maintains knowledge base to aid troubleshooting used by support teams


* Evaluates existing processes and policies and recommends enhancements to protect data and information from unauthorized access


* Build and assist with daily requests of changes to firewall policies

What Experience and Education You Need



* Bachelor's degree in information security, Computer Science, or a related field.


* Industry certifications such as PCNSE, PCNSA, PCCSE, CISSP, AWS Certified Security, or Azure Security Engineer are highly desirable.


* Applicable industry certifications include those from Cisco, Palo Alto Networks, AWS, GIAC, etc.


* 5-7 years of experience in security engineering, with hands-on expertise in Palo...