Network Firewall Engineer

Job Summary

The Palo Alto Certified Firewall Engineer is responsible for overseeing the daily operations and management of the organization's network security infrastructure, with a primary focus on Palo Alto Networks firewall technologies. This role requires deep technical expertise in firewall configuration, policy management, and threat prevention, as well as a strong background in routing and switching within complex enterprise environments.

In addition to proficiency with Palo Alto solutions, the ideal candidate will possess hands-on experience with a broad range of network and security tools, including but not limited to Wireshark, Splunk, ServiceNow, Netcool, SevOne, Cisco Firepower, and ASA. Familiarity with these platforms is essential for effective monitoring, troubleshooting, and incident response.

A key component of this role involves vulnerability management within an IT Service Management (ITSM) framework. The engineer will be expected to proactively identify, assess, and remediate security risks, ensuring the resilience and integrity of the organization's IT infrastructure.

Key Responsibilities:

Firewall Engineering:
• Deploy, configure, and manage Palo Alto Networks Next-Generation Firewalls (NGFW) across enterprise environments.
• Monitor, analyze, and optimize firewall policies and security postures using Palo Alto's Panorama management platform.
• Maintain and troubleshoot IPsec/SSL VPN connections, NAT rules, and security policies for users and site-to-site connectivity.
• Collaborate with IT teams to develop and enforce security policies based on business needs and security requirements.

Network Routing & Switching:
• Configure and manage network routing and switching protocols (BGP, OSPF, EIGRP) in coordination with firewall devices.
• Troubleshoot network connectivity issues related to firewall performance and ensure optimal data flow through security infrastructure.
• Optimize network performance in hybrid cloud and on-premise environments, including integration with AWS, Azure, or Google Cloud using Palo Alto VM-Series firewalls.

Security & Network Monitoring:
• Use Wireshark to perform in-depth network traffic analysis and packet captures to identify and resolve network and security issues.
• Leverage Splunk and Syslog for log management, correlation, and analysis of security events across the network.
• Work with Netcool, SevOne, and other monitoring tools to identify and respond to network performance and security incidents.
• Integrate firewall events into SIEM platforms (e.g., Splunk) for enhanced visibility and incident response.

Vulnerability Management & ITSM:
• Coordinate with security teams to prioritize and address vulnerabilities in line with the organization’s security policies.
• Utilize ServiceNow for tracking security incidents, change management, and documenting firewall configurations and changes within an ITSM framework.
• Conduct regular security posture assessments and maintain up-to-date documentation on firewall configurations and network security standards.

Skills & Tools:

Palo Alto Networks:
o Palo Alto Networks Next-Generation Firewall (NGFW)
o Panorama centralized management
o IPsec/SSL VPN, WildFire, Threat Prevention
o Network Address Translation (NAT) and firewall policy management

Network Routing & Switching:
o BGP, OSPF, EIGRP configuration and troubleshooting
o Network optimization and traffic flow management
o Hybrid cloud connectivity (AWS, Azure, Google Cloud)

Security & Monitoring Tools:
o Wireshark for packet capture and analysis
o Syslog and Splunk for log aggregation and event analysis
o Netcool and SevOne for network performance monitoring

Vulnerability & Incident Management:
o Vulnerability management tools within an ITSM environment (ServiceNow)
o Security incident tracking and resolution
o Change management and compliance reporting

Cisco Technologies:
o Cisco ASA and Firepower appliances
o Migration and integration with Palo Alto firewalls
o Cisco VPN, firewall rules, and network security policies

Qualifications

• Palo Alto Networks Certified Network Security Engineer (PCNSE) or Certified Network Security Administrator (PCNSA) is required.
• Cisco Certified Network Associate (CCNA) or CCNP Security is a plus.
• Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
• 5-7 years of hands-on experience with Palo Alto Networks firewalls, network routing, switching, and Cisco security technologies.
• Solid experience with Wireshark, Syslog, Splunk, ServiceNow, Netcool, SevOne, and related tools.

Preferred Experience:
• Experience in enterprise ITSM environments, handling change management and incident response.
• Familiarity with cloud security principles and hybrid IT infrastructure.
• Demonstrated expertise in vulnerability management and remediation processes.
• Ability to handle network troubleshooting and firewall incident management in large-scale, enterprise environments.
Attributes:
• Strong analytical and problem-solving skills.
• Excellent communication and collaboration skills, especially in multi-vendor environments.
• Ability to work under pressure and prioritize tasks in dynamic, fast-paced environments.
• Willingness to stay up-to-date with emerging security technologies and best practices.

Work Environment:
• On-site or remote, with flexibility for on-call responsibilities including weekends.
• Periodic travel for deployments, training, or conferences may be required.
• Working closely with network engineers, security teams, and management to ensure comprehensive security for the organization.
• This position plays a critical role in safeguarding the organization's network infrastructure, requiring advanced technical proficiency in firewall administration, network routing, and security operations to ensure both security and operational efficiency