Principal Enterprise Architect

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.
Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Who We Are

We take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced by employees and are brought to life through each of us everyday - from disruptive innovation and collaboration, to execution. From showing up for each other with integrity to creating an environment where we all feel included.

As a member of our team, you will be shaping the future of cybersecurity. We work fast, value ongoing learning, and we respect each employee as a unique individual. Knowing we all have different needs, our development and personal wellbeing programs are designed to give you choice in how you are supported. This includes our FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few!

At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work full time from our office with flexibility offered where needed. This setup fosters casual conversations, problem-solving, and trusted relationships. Our goal is to create an environment where we all win with precision.

Job Description

Your Career

We are seeking a visionary and highly skilled Enterprise Architect with expertise in Next-Generation Firewalls (NGFW), Secure Access Service Edge (SASE), Cloud Security, and Security Operations Centers (SOC). The ideal candidate will possess a robust technical background, proven experience in designing and implementing integrated security platforms, and the ability to align cybersecurity architecture with strategic business goals.

This role demands a proactive approach to designing scalable, resilient, and future-proof security architectures while driving innovation in a rapidly evolving threat landscape. The successful candidate will serve as a trusted advisor to stakeholders, crafting enterprise-wide strategies that enhance security posture and operational efficiency.

Your Impact

Architecture Design & Strategy

• Develop and maintain an enterprise-wide security architecture that integrates NGFW, SASE, cloud security, and SOC platforms to provide end-to-end visibility and control.
• Define and implement a Zero Trust Architecture (ZTA) to secure users, applications, and data across on-premises, hybrid, and cloud environments.
• Lead the development of security platform proposals that incorporate multi-vendor solutions, ensuring interoperability and scalability.
• Establish best practices for secure-by-design principles in system development and infrastructure management.

Cloud Security & SASE Implementation

• Architect secure cloud environments using AWS, Azure, GCP, or private cloud solutions.
• Leverage SASE frameworks to enable secure, reliable connectivity for hybrid and remote workforces.
• Drive the adoption of CASB (Cloud Access Security Broker) and ZTNA (Zero Trust Network Access) to protect cloud workloads and remote users.

Security Operations Center (SOC) Integration

• Collaborate with SOC teams to design and implement a robust SOC architecture, integrating tools such as SIEM, SOAR, XDR, and threat intelligence platforms.
• Optimize incident response workflows, ensuring rapid detection, investigation, and remediation of security threats.
• Propose solutions for SOC automation and orchestration to improve efficiency and reduce response times.

Collaboration & Leadership

• Partner with cross-functional teams, including IT, DevOps, and compliance, to ensure alignment between security architecture and business priorities.
• Serve as a key advisor to C-level executives, translating complex technical concepts into actionable business strategies.
• Mentor junior architects and engineers, fostering a culture of innovation and excellence.

Governance & Compliance

• Ensure compliance with industry standards and regulations, including NIST, ISO 27001, PCI DSS, GDPR, and SOC 2.
• Develop policies and procedures for managing security risks across multi-cloud and hybrid environments.
• Conduct regular security assessments and audits, addressing gaps and vulnerabilities proactively.

Technology Evaluation & Innovation

• Evaluate emerging technologies, such as AI/ML-driven threat detection, container security, and cloud-native security tools, for integration into the enterprise architecture.
• Conduct Proof-of-Concept (PoC) evaluations to identify optimal solutions for evolving security needs.
• Stay ahead of cybersecurity trends and innovations to ensure the organization’s architecture remains resilient and adaptive.

Qualifications

Your Experience:

Architecture Design & Strategy

• Develop and maintain an enterprise-wide security architecture that integrates NGFW, SASE, cloud security, and SOC platforms to provide end-to-end visibility and control.
• Define and implement a Zero Trust Architecture (ZTA) to secure users, applications, and data across on-premises, hybrid, and cloud environments.
• Lead the development of security platform proposals that incorporate multi-vendor solutions, ensuring interoperability and scalability.
• Establish best practices for secure-by-design principles in system development and infrastructure management.

Cloud Security & SASE Implementation

• Architect secure cloud environments using AWS, Azure, GCP, or private cloud solutions.
• Leverage SASE frameworks to enable secure, reliable connectivity for hybrid and remote workforces.
• Drive the adoption of CASB (Cloud Access Security Broker) and ZTNA (Zero Trust Network Access) to protect cloud workloads and remote users.

Security Operations Center (SOC) Integration

• Collaborate with SOC teams to design and implement a robust SOC architecture, integrating tools such as SIEM, SOAR, XDR, and threat intelligence platforms.
• Optimize incident response workflows, ensuring rapid detection, investigation, and remediation of security threats.
• Propose solutions for SOC automation and orchestration to improve efficiency and reduce response times.

Collaboration & Leadership

• Partner with cross-functional teams, including IT, DevOps, and compliance, to ensure alignment between security architecture and business priorities.
• Serve as a key advisor to C-level executives, translating complex technical concepts into actionable business strategies.
• Mentor junior architects and engineers, fostering a culture of innovation and excellence.

Governance & Compliance

• Ensure compliance with industry standards and regulations, including NIST, ISO 27001, PCI DSS, GDPR, and SOC 2.
• Develop policies and procedures for managing security risks across multi-cloud and hybrid environments.
• Conduct regular security assessments and audits, addressing gaps and vulnerabilities proactively.

Technology Evaluation & Innovation

• Evaluate emerging technologies, such as AI/ML-driven threat detection, container security, and cloud-native security tools, for integration into the enterprise architecture.
• Conduct Proof-of-Concept (PoC) evaluations to identify optimal solutions for evolving security needs.
• Stay ahead of cybersecurity trends and innovations to ensure the organization’s architecture remains resilient and adaptive.

Required Qualifications

Education

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related fields (Master’s degree preferred).

Experience

• 10+ years of experience in IT and cybersecurity, including 5+ years in enterprise architecture or a similar strategic role.
• Hands-on experience with NGFW platforms (e.g., Palo Alto Networks, Fortinet, Cisco).
• Proven expertise in SASE frameworks, including deployment and management.
• Strong background in cloud security architectures for AWS, Azure, and GCP.
• Direct involvement in designing and optimizing SOC workflows, tools, and technologies.

Skills & Certifications

Certifications (preferred):

• CISSP, ISO 27001, ISMS-P, CISM, AWS Certified Solutions Architect, or CCSP.
• Deep understanding of network security, identity management, endpoint protection, and data loss prevention.
• Proficiency in DevSecOps practices and CI/CD pipeline integration.
• Excellent problem-solving and communication skills, with the ability to engage both technical and non-technical audiences.

Preferred Qualifications

• Experience implementing Zero Trust Security Models and SASE platforms (e.g., Zscaler, Prisma Access).
• Familiarity with SOC platforms, including SIEM (Splunk, QRadar) and SOAR tools (Cortex XSOAR, ServiceNow SecOps).
• Knowledge of AI/ML applications in threat detection and response.

Key Competencies

• Strategic Vision: Ability to design and implement security architectures that align with business objectives and regulatory requirements.
• Leadership: Demonstrated ability to lead cross-functional teams and influence senior leadership.
• Innovation: Passion for exploring and integrating emerging technologies into existing architectures.
• Collaboration: Strong interpersonal skills to work effectively with diverse stakeholders.

Additional Information

Why Join Us?

• Be at the forefront of cybersecurity innovation, shaping a secure and resilient IT landscape.
• Work in a dynamic, collaborative environment that values creativity and excellence.
• Competitive salary, comprehensive benefits, and opportunities for professional growth and certification.

Our Commitment

We’re problem solvers that take risks and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at  accommodations@paloaltonetworks.com.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.