Network Security Engineer/Architect
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
ResponsibilitiesDevelop and implement network security automation including firewall/VPN automationDevelop network security technology strategy and roadmapDevelop and maintain automation scripts and tools using Python to configure network security devices, manage changes, and perform routine tasks.Design and implement end-to-end automation workflows for network provisioning, changes, and upgrades.Gather and document network security requirementsDesign and implement network security solutions, including firewall and VPN architecturesDemonstrate expertise in deploying, configuring, and managing Palo Alto firewall and VPN solutions across on-premises, cloud, and remote access environments, ensuring seamless integration and securityDefine, configure, and optimize firewall policies and rulesDesign and implement segmentation and microsegmentation based on Zero Trust principlesConduct vulnerability assessments and audits to identify and remediate security risksConfigure dynamic routing protocols, including RIP, OSPF, and BGPEnsure compliance with security standards and collaborate with cross-functional teams to resolve network security issuesRequired Skills10+ years of experience in network security engineeringStrong hands-on experience with Palo Alto firewalls and VPNs across on-premises, cloud, and remote access, with leadership capabilitiesExtensive experience configuring Palo Alto Next-Generation Firewalls (NGFW) in on-premises, virtual, or cloud environmentsSolid knowledge of firewall policies and rule optimization (IPS/IDS, Anti-Virus) to enhance security and performanceProficiency in implementing and troubleshooting inbound and outbound SSL/TLS decryptionExperience managing firewalls centrally via Panorama, including policy deployment, log analysis, and updatesExperience managing VPN infrastructure, including portal/gateway configuration, user authentication, and integration with AD, LDAP, and MFAExperience configuring and troubleshooting active/passive and active/active high-availability setups to ensure zero downtimeFamiliarity with dynamic routing protocols (RIP, OSPF, BGP)Knowledge of network segmentation and microsegmentation conceptsUnderstanding of network security architecture, protocols, and best practicesStrong proficiency in scripting (Python, Bash) for scripting and automation.Proficiency in monitoring, troubleshooting, and responding to network security incidents, conducting root cause analysis, and implementing remediation actionsExcellent communication, analytical, and problem-solving skillsNice to have: Certifications such as PCNSE, PCNSA, CISSP, or CCNP