Hands - on Security Engineer working across multiple layers for a cloud procurement platform. Ensuring security while developing automated workflows in a global team environment.
AS
Hybrid Network Security Engineer, Firewall, Security Architecture – Palo Alto Focus
Posted last week
About the role
- Network Security Engineer specializing in Palo Alto Networks for enterprise firewall and security. Focusing on compliance, cloud security, and infrastructure transformation projects.
Responsibilities
- Design, optimize, and maintain **Palo Alto device group policy structures** across enterprise firewall environments.
- Define scalable policy frameworks to support global segmentation, operational consistency, and governance standards.
- Lead the review and rationalization of firewall rule bases to improve maintainability and reduce risk exposure.
- Drive **Firewall Rule Automation 2.0** initiatives, enabling increased automation, standardization, and lifecycle governance of security policies.
- Perform detailed **compliance reviews** of firewall configurations and security policies against internal standards and regulatory requirements.
- Identify remediation actions and implement corrective measures to close compliance gaps.
- Support audit preparation and documentation related to network security controls.
- Configure, support, and optimize **CASB (Cloud Access Security Broker)** solutions within the broader enterprise security architecture.
- Set up and maintain **AIRs (Automated Incident Response / related security service components)** to strengthen operational security capabilities.
- Ensure proper integration of cloud security controls with network perimeter security.
- Deliver security engineering support for additional **Cyber and Infrastructure Security (CIS) project initiatives**.
- Lead or contribute to **DEV zone segregation projects**, ensuring secure network segmentation between development, production, and sensitive environments.
- Provide technical security consulting for infrastructure transformation projects.
- Advise project teams on network security architecture during infrastructure change initiatives.
- Consult on the **redesign of data center network architecture**, including:
- • Security zoning concepts
- • Traffic flow control
- • High availability design
- • Active / Passive firewall cluster strategies
- Support design and validation of **Active / Passive DC firewall cluster architectures** for resilience and operational continuity.
Requirements
- Strong hands-on experience with **Palo Alto Networks firewalls** in enterprise environments.
- Deep knowledge of firewall policy design, device groups, templates, and rule lifecycle management.
- Proven experience in firewall compliance review and remediation.
- Solid understanding of **network segmentation**, **high availability**, and **data center security architecture**.
- Experience with **CASB platforms** and cloud security controls.
- Familiarity with security automation concepts and firewall rule orchestration.
- Strong understanding of enterprise networking principles including routing, switching, NAT, VPN, and traffic inspection.
- Ability to work independently in project-based and consulting-oriented environments.
- **Preferred Qualifications**
- Palo Alto certifications (PCNSE or equivalent).
- Experience in complex hybrid infrastructure environments.
- Exposure to regulated enterprise environments with strong governance requirements.
- Knowledge of data center transformation and zero trust architecture principles.
- **Core Competencies**
- Analytical and structured problem solving
- Strong stakeholder communication
- Consulting mindset
- High ownership and delivery orientation
- Ability to translate security requirements into scalable technical solutions
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Lead Cyber Security Engineer at GE Vernova focusing on cybersecurity for EHV/HV substations. Involved in system protection, risk assessments, and cross - functional collaboration.
Lead Cyber Security Engineer at GE Vernova designing and implementing crucial cybersecurity measures. Involved in developing renewables project worldwide in a dynamic engineering team.
Information Security Representative/OT Engineer ensuring compliance with ISO standards in OT systems and supporting energy transition. Collaborate in diverse teams for modern, sustainable energy solutions.
Functional Safety Specialist in projects for functional safety within automation technology. Collaborating with clients on safety analyses and documentation while fostering team development in a flexible environment.
Manager of Cybersecurity and Compliance responsible for global cybersecurity and privacy at Hunter Industries. Leading teams, overseeing cybersecurity solutions, and ensuring compliance across the organization.
Security Specialist responsible for security operations at the Hibikinada Offshore Wind Farm. Collaborating with teams to ensure safety and compliance with local regulations.
Director of Partnerships driving revenue growth through podcast advertising and event sponsorships at War on the Rocks. Building and managing a pipeline while collaborating with company leadership.
Non - executive Member supporting governance and strategic direction at Social Security Scotland. Involves contributing to the delivery of devolved benefits across Scotland.
Senior Information and Cyber Security Officer at Social Security Scotland handling risks and providing advice. Leading the risk management activities and contributing to security initiatives to enhance governance.