Staff Offensive Security Engineer at Greenlight, leading offensive security strategies and vulnerability assessments. Collaborating with teams to enhance security measures and ensure safe banking for families.
AS
Hybrid Network Security Engineer, Firewall, Security Architecture – Palo Alto Focus
Posted last month
About the role
- Network Security Engineer specializing in Palo Alto Networks for enterprise firewall and security. Focusing on compliance, cloud security, and infrastructure transformation projects.
Responsibilities
- Design, optimize, and maintain **Palo Alto device group policy structures** across enterprise firewall environments.
- Define scalable policy frameworks to support global segmentation, operational consistency, and governance standards.
- Lead the review and rationalization of firewall rule bases to improve maintainability and reduce risk exposure.
- Drive **Firewall Rule Automation 2.0** initiatives, enabling increased automation, standardization, and lifecycle governance of security policies.
- Perform detailed **compliance reviews** of firewall configurations and security policies against internal standards and regulatory requirements.
- Identify remediation actions and implement corrective measures to close compliance gaps.
- Support audit preparation and documentation related to network security controls.
- Configure, support, and optimize **CASB (Cloud Access Security Broker)** solutions within the broader enterprise security architecture.
- Set up and maintain **AIRs (Automated Incident Response / related security service components)** to strengthen operational security capabilities.
- Ensure proper integration of cloud security controls with network perimeter security.
- Deliver security engineering support for additional **Cyber and Infrastructure Security (CIS) project initiatives**.
- Lead or contribute to **DEV zone segregation projects**, ensuring secure network segmentation between development, production, and sensitive environments.
- Provide technical security consulting for infrastructure transformation projects.
- Advise project teams on network security architecture during infrastructure change initiatives.
- Consult on the **redesign of data center network architecture**, including:
- • Security zoning concepts
- • Traffic flow control
- • High availability design
- • Active / Passive firewall cluster strategies
- Support design and validation of **Active / Passive DC firewall cluster architectures** for resilience and operational continuity.
Requirements
- Strong hands-on experience with **Palo Alto Networks firewalls** in enterprise environments.
- Deep knowledge of firewall policy design, device groups, templates, and rule lifecycle management.
- Proven experience in firewall compliance review and remediation.
- Solid understanding of **network segmentation**, **high availability**, and **data center security architecture**.
- Experience with **CASB platforms** and cloud security controls.
- Familiarity with security automation concepts and firewall rule orchestration.
- Strong understanding of enterprise networking principles including routing, switching, NAT, VPN, and traffic inspection.
- Ability to work independently in project-based and consulting-oriented environments.
- **Preferred Qualifications**
- Palo Alto certifications (PCNSE or equivalent).
- Experience in complex hybrid infrastructure environments.
- Exposure to regulated enterprise environments with strong governance requirements.
- Knowledge of data center transformation and zero trust architecture principles.
- **Core Competencies**
- Analytical and structured problem solving
- Strong stakeholder communication
- Consulting mindset
- High ownership and delivery orientation
- Ability to translate security requirements into scalable technical solutions
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Join NVISO as a Cloud Security Consultant (Jr.) focusing on Azure/Microsoft 365 security solutions. Collaborate to understand and address cyber security requirements for clients.
Information Security Officer responsible for managing company cybersecurity and compliance. Developing security strategies and processes within an IT service provider for the food and beverage industry.
Cyber Security Engineer designing and developing secure web applications and cybersecurity tools for ADI Global Distribution. Collaborating with international teams and continuous professional growth support.
Cyber Security Engineer designing and developing cybersecurity solutions for ADI Global Distribution. Combining secure software development, cloud engineering, and modern testing practices in a supportive environment.
Cybersecurity GRC Lead enhancing Industrial IoT security at Emerson; overseeing EU - wide product safety governance framework.
Senior Cyber Security Engineer within Security Operations leading SOC enhancements and advanced analytics. Focus on driving automation and intelligence - driven operations.
Technical Security Expert at Spendesk enhancing security for one of Europe's fastest - growing fintechs. Collaborating with teams to embed security in every project while staying ahead of threats.
Lead Security Engineer driving security initiatives that embed secure - by - design principles at Pipedrive. Collaborating with teams to strengthen security posture across platforms and products.
Lead Security Engineer driving security initiatives that embed secure - by - design principles at Pipedrive. Over 100,000 companies trust our cloud - based software for sales and marketing.