Staff Cloud Security Engineer (FEDRAMP - SHIP REQD)

$123,000 - $200,000/Yr

PaloAlto Networks - Santa Clara, CA

posted 12 days ago

Full-time - Mid Level
Santa Clara, CA

About the position

The Staff Cloud Security Engineer at Palo Alto Networks is responsible for securing and delivering security for enterprise, SaaS, and public cloud services. This role involves providing technical leadership in the development of security programs, designing and building automation, and integrating secure programs within a Google Cloud Platform environment. The engineer will work collaboratively with various teams to ensure the security and compliance of cloud infrastructure, while also driving continuous improvement in security operations.

Responsibilities

  • Provide advanced operations and engineering support for critical systems and services, including application and security infrastructure on-prem and in the cloud.
  • Assess and review the security and cloud infrastructure on IT and production environments.
  • Coordinate with various teams to ensure appliances and services are configured with the correct posture to support business requirements.
  • Design and implement a Zero-Trust Network Architecture, including segmentation.
  • Monitor and improve IT support to enhance scalability, reliability, and performance of the product infrastructure.
  • Maintain oversight of cloud computing solutions to mitigate risks from external entities.
  • Engage with the community to share, educate, and inspire, managing relationships with key security vendors in the Identity space.
  • Develop automation using SOAR tools to improve team efficiency.
  • Collaborate with teams outside the Security Fusion Center, such as Vulnerability Management and Network Teams.
  • Respond to critical vulnerabilities and data exposures, performing traffic and port scans during incident investigations.

Requirements

  • 5+ years of experience in core firewall technologies, specifically with Palo Alto NGFW.
  • 5+ years of experience with cloud service providers such as Google Cloud Platform, AWS, or MS Azure.
  • Experience in designing, building, and maintaining scalable cloud infrastructure and applications.
  • Working knowledge of IP Networking, Routing, Switching, VPNs, DNS, and load balancing.
  • Proficiency in virtualization technologies, particularly VMware, and experience securing virtualized environments.
  • Experience deploying secure wireless infrastructure in enterprise environments.
  • In-depth knowledge of WiFi security standards, protocols, and solutions.
  • Working knowledge of dynamic routing protocols such as BGP and OSPF.
  • 2+ years of experience with REST API, Automation, and Integration using Python or Go.
  • Ability to assess networking security policies across multiple firewalls.
  • Working knowledge of microservices technology and experience with CI/CD tools like Jenkins, Gitlab, Chef, and Puppet is a plus.
  • Strong understanding of certificate management, PKI infrastructure, and associated technologies.

Nice-to-haves

  • CISSP, AWS, or Google Cloud Platform certifications preferred.
  • PCNSE certification is a plus.

Benefits

  • FLEXBenefits wellbeing spending account with over 1,000 eligible items.
  • Mental and financial health resources.
  • Personalized learning opportunities.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service