Palo Alto Firewall Engineer (Immediate Joiner)

The ideal candidate will be responsible for the design, implementation, configuration, management, and troubleshooting of our Palo Alto Networks security infrastructure. This role requires a deep understanding of network security principles, advanced threat protection, and best practices for securing enterprise networks. The engineer will play a critical role in maintaining the integrity, confidentiality, and availability of our network assets and data.
Key Responsibilities:

• Design & Implementation:
  • Participate in the design and architecture of network security solutions utilizing Palo Alto Networks firewalls.
  • Implement and deploy Palo Alto Networks firewalls (physical and virtual) across various environments.
• Configuration & Management:
  • Configure, manage, and optimize security policies (Security Rules, NAT, QoS, Policy Based Forwarding, etc.) on Palo Alto firewalls.
  • Administer and fine-tune advanced threat prevention features including Threat Prevention, WildFire, URL Filtering, DNS Security, and Enterprise DLP.
  • Manage VPNs (Site-to-Site, GlobalProtect VPN) for secure remote access and branch office connectivity.
  • Configure and maintain Panorama for centralized management of multiple Palo Alto firewalls.
• Monitoring & Troubleshooting:
  • Monitor firewall logs and alerts for security incidents and performance issues.
  • Perform root cause analysis and troubleshoot complex network security problems related to firewall functionality, connectivity, and performance.
  • Utilize Packet Tracer, traffic logs, and other Palo Alto tools for in-depth analysis.
• Security & Compliance:
  • Ensure firewall configurations adhere to industry best practices, security policies, and compliance requirements (e.g., ISO 27001, NIST, PCI DSS).
  • Conduct regular security audits and vulnerability assessments of firewall configurations.
  • Participate in incident response activities related to network security events.
• Maintenance & Upgrades:
  • Perform regular maintenance, software upgrades, and patch management for Palo Alto firewalls and Panorama.
  • Develop and maintain documentation for firewall configurations, network diagrams, and operational procedures.
• Collaboration & Support:
  • Collaborate with other IT teams (Network, Systems, Applications) to ensure seamless integration of security solutions.
  • Provide expert-level support and guidance to junior engineers and other teams on Palo Alto Networks technologies.

Qualifications:

• Education: Bachelor’s degree in computer science, Information Technology, Cyber Security, or a related field (or equivalent practical experience).
• Experience:
  • Minimum of 3-5 years of hands-on experience designing, implementing, and managing Palo Alto Networks firewalls in an enterprise environment.
  • Proven experience with Panorama for centralized management.
  • Experience with advanced security features such as WildFire, Threat Prevention, URL Filtering, and GlobalProtect.
  • Experience with network protocols (TCP/IP, BGP, OSPF), routing, and switching.
• Technical Skills (Required):
  • Expertise in Palo Alto Networks Next-Generation Firewalls (NGFW).
  • Strong understanding of network security concepts (firewalls, VPNs, IDS/IPS, WAF, DLP, Zero Trust).
  • Proficiency in configuring and troubleshooting VPN technologies (IPSec, SSL VPN).
  • Familiarity with cloud security concepts (e.g., Azure, AWS, GCP) and securing cloud environments with Palo Alto.
  • Experience with scripting languages (e.g., Python) for automation is a plus.
• Certifications (Preferred):
  • Palo Alto Networks Certified Network Security Engineer (PCNSE) - Highly Preferred
  • Palo Alto Networks Certified Network Security Administrator (PCNSA)
  • Other relevant industry certifications (e.g., CompTIA Security+, CCNA Security, CCNP Security) are a plus.