Staff Cloud Security Engineer (FEDRAMP - US CITIZENSHIP REQ'D)
Palo Alto Networks, Santa Clara, CA, United States
Our Mission
At Palo Alto Networks® everything starts and ends with our mission:
Being the cybersecurity partner of choice, protecting our digital way of life.
Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.
Who We AreWe take our mission of protecting the digital way of life seriously. We are relentless in protecting our customers and we believe that the unique ideas of every member of our team contributes to our collective success. Our values were crowdsourced by employees and are brought to life through each of us everyday - from disruptive innovation and collaboration, to execution. From showing up for each other with integrity to creating an environment where we all feel included.
As a member of our team, you will be shaping the future of cybersecurity. We work fast, value ongoing learning, and we respect each employee as a unique individual. Knowing we all have different needs, our development and personal wellbeing programs are designed to give you choice in how you are supported. This includes our FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few!
At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work full time from our office with flexibility offered where needed. This setup fosters casual conversations, problem-solving, and trusted relationships. Our goal is to create an environment where we all win with precision.
Job DescriptionYour Career
Palo Alto Networks is disrupting the Cyber Security industry! We are looking for a Senior Cloud and firewall Engineer to join our Infosec team that owns, securing and delivering security for our Enterprise, SaaS, and Public Cloud security services. With your networking, firewall, cloud, and development skills, you’ll design, build automation and integrate along with our secure programs – scale and secure our infrastructure and application in a Google Cloud Platform environment as well as collaborate with other team members. In this role, you will provide technical leadership in the development of Security programs by helping to drive the disruptive vision, technology planning, and estimation. If you are a fast learner and passionate about Cyber Security, this is a great opportunity for you
Your Impact
- Providing advanced operations and engineering support for critical systems and services, including application and security infrastructure on-prem and in the cloud
- Responsible for assessing and reviewing the security and cloud infrastructure on IT and production environment
- Coordinates with various teams to ensure appliances and services are configured with the correct posture to support business requirements
- In-depth knowledge of designing and implementing a Zero-Trust Network Architecture, including segmentation
- Continuous monitoring and improvement on the IT Support and accelerate scalability, reliability, and performance improvement in the product infrastructure
- Assist in maintaining strong oversight with cloud computing solutions to safeguard against undue risk presented by external entities
- Engage the community across multiple channels, looking to share, educate, and inspire - In particular, manage the strategic relationship with key security vendors in the Identity space
- Develop automation using SOAR tool on tasks that could be automated to improve efficiency of the team
- Work with different teams in unison outside the Security Fusion Center such as Vulnerability Mgmt, Network Teams, OS teams, Pen testing
- Understand urgency and security risk and respond to critical vulnerabilities and data exposures
- Perform traffic and port scans during an incident investigation
Your Experience
- 5+ years of experience in core firewall technologies - Must have a working knowledge of Palo Alto NGFW
- 5+ years of experience with cloud service provider eco-system e.g. GCP/AWS/MS Azure
- Experience in designing, building, and maintaining scalable cloud infrastructure and applications
- Working knowledge of IP Networking, Routing, Switching, VPNs, DNS, and load balancing
- Proficiency in virtualization technologies, particularly VMware, and experience with securing virtualized environments
- Experience in deploying secure wireless infrastructure in the enterprise environment
- In-depth knowledge and experience in WiFi security standards, protocols, and solutions
- Working knowledge of Networking dynamic routing protocols e.g. BGP, OSPF
- 2+ years of Experience with REST API, Automation, and Integration using Python, Go
- Ability to assess networking security policies within multiple firewalls
- Working knowledge of microservices technology and experience with CI/CD tools - Jenkins, Gitlab, Chef, and Puppet is a plus
- "Self-starter" attitude and ability to troubleshoot independently
- Handle and respond to all cloud security incidents reported via ticketing platforms (AWS, Azure, Google)
- Strong understanding of certificate management, PKI infrastructure, and associated technologies, including experience with digital certificates, key management, and secure communication protocols
Education
- Bachelor's degree from four-year college or university or equivalent training, education, and experience in information / cyber security, computer systems, IT, etc. or equivalent military experience required
- CISSP, AWS , GCP certifications preferred
- PCNSE certification is a plus
The Team
Think about it, security for an information security company. Working at a high-tech cybersecurity company within the Information Security team is a once in a lifetime opportunity. You’ll be joined with the brightest minds in technology, our global teams on the front line of defense against cyberattacks. We’re joined by one mission – but driven by the impact of that mission and what it means to protect our way of life in the digital age. Join a dynamic and fast-paced team that feels excitement at the prospect of a challenge and feels a thrill at resolving security gaps that inhibit our privacyCompensation Disclosure
The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/commissioned roles) is expected to be between $123000 - $200000/YR. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here.
Our Commitment
We’re problem solvers that take risks and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.
We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com.
Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.
All your information will be kept confidential according to EEO guidelines.
Is role eligible for Immigration Sponsorship? No. Please note that we will not sponsor applicants for work visas for this position.