Deliver project-based firewall transformation services across AWS and Azure virtual environments.
Support customer engagements involving dozens to hundreds of virtual Palo Alto firewalls, managed via Panorama and/or Strata Cloud Manager.
Assess and optimize firewall rulebases, identifying redundancies and promoting App-ID-based policy transformation.
Define and contribute to policy architecture frameworks including standards for naming, rule hierarchy, segmentation, and zones.
Participate in the migration and re-platforming of firewalls: Layer 3 to Layer 7 conversions, App-ID enablement, and automation tool integration (where applicable).
Interact with Panorama instances, multiple regions, and federated network/security designs.
Produce high-quality documentation including policy standards, configuration guides, and migration runbooks.
Collaborate with architects, automation teams, project managers, and cross-functional engineering teams across multiple client engagements.
,
8+ years of experience with Palo Alto Next-Gen Firewalls, ideally in cloud-native (virtualized) environments.
Strong command of Panorama, Strata Cloud Manager, and rulebase design.
Deep understanding of App-ID, zone-based firewalls, and best practices for enterprise segmentation.
Familiarity with cloud networking constructs in Azure and/or AWS.
Experience designing or implementing firewall policies for enterprise cloud workloads (IaaS, hybrid, or fully cloud-native).
Strong documentation and stakeholder communication skills.
