Job Description:
Provide senior (Level 3) firewall architecture and engineering expertise to large, complex enterprise LAN and WAN client in predominantly Palo Alto environment.
- Security Architecture and Design: Develop and implement robust security architectures and frameworks to protect our infrastructure and applications.
- Performance Tuning: Optimize firewall performance, ensuring high availability, scalability, and minimal impact on network traffic.
- Incident Response: Investigate and respond to security incidents related to firewall breaches, performing root cause analysis and remediation.
- Policy and Rule Management: Create and enforce firewall policies and access control rules, regularly reviewing and updating them to address new threats and changes in network topology.
- Security Best Practices: Advocate for and enforce security best practices across all stages of the development lifecycle.
- Collaboration: Work closely with development teams to integrate security features and practices into new and existing applications and systems.
- Documentation and Reporting: Maintain comprehensive documentation for security procedures, incidents, and system configurations. Provide regular reports and updates to stakeholders.
- Compliance: Ensure that security practices comply with industry standards, regulations, and company policies.
- Review scripting, planning and execution of Firewall (Palo Alto) Change Management process
- Investigate firewall issues / incidents and bring to resolution within stated SLA parameters
- Working with Incident, Problem, and Change Management
- Provide Root Cause Analysis (RCA) to operations team and customers upon request
- Provide technical leadership (both verbal and written) for Incident and Change – firewall related
- Able to work on network drawings with Visio
- Work and collaborate with other app teams
- Good understanding of BGP / EIRGP routing, NAT/PAT, VPN, and firewall technologies
Education:
4-year Bachelor's Degree or equivalent experience, preferably in Computer Science, Information Systems or Engineering (or) Three years of College or Technical School resulting in an Associate's Degree or equivalent
Accreditation / Certification / Licenses:
- Required Certifications or equivalent experience: Palo Alto Certifications
- Additional desirable certifications / equivalent experience:
- CCNA Enterprise Route/Switch Other Security Certification
Previous Job Experience:
- Network or Firewall build and engineering experience and expertise in a variety of predominantly in Palo Alto firewalls, Panaroma, PRISMA cloud, Cisco LAN and WAN in large, complex, enterprise environment
- Experience implementing/managing firewall rules, policies, PAN-OS upgrades etc.,
- Experience using network analysis, management, and performance monitoring tools to plan for growth, diagnose problems and determine source
- Working on comprehensive projects in complex networking / VPN environment with IPSEC, Meet Me and NAT
Special Knowledge / Skills / Abilities:
- Clear communication skills
- Time Management / Self-Management
- Independent Work Skills
- Presentation skills
- In-depth Routing Protocols experience and operational knowledge: EIGRP & BGP
- Some example platforms in the environment include SDWAN, Palo Alto with virtual firewall contexts / vsys, Nexus 7K/5K/2K, Cisco ASR/ISR routers, and Cisco Catalyst switches
- Familiarity with ITIL based ticketing solution (Service NOW experience a plus)
- HSRP environment experience
- In-depth knowledge of the configuration and maintenance of routers, switches, and firewalls
Work Environment
- Partial US EST hours
- May require late hours and weekends to complete assignments and projects.
