SUMMARY:

We are seeking a highly specialized Palo Alto Next Generation Firewall (NGFW) Engineer with expertise in complex environments to join Zermount's team. The Palo Alto NGFW Engineer will play a pivotal role in designing, implementing, and maintaining network security infrastructure tailored for one of our Federal client's complex environments. The Palo Alto NGFW Engineer will configure, implement, administer, & maintain the suite of Palo Alto NGFWs to include SSL decryption & inspection of all inbound & outbound web traffic with inline service chain & traffic forwarding, review & make recommendations on all exceptions to Palo Alto rule configurations & implement as appropriate. Integrate Wildfire analysis into decrypted SMTP traffic flow, and enhance threat detection capabilities by configuring & tuning the NGFW against known & unknown threats. This role demands an exceptional understanding of advanced network security practices and hands-on proficiency in Palo Alto NGFW configurations within intricate settings.

DUTIES & RESPONSIBILITIES:

• Architect, configure and oversee Palo Alto NGFWs, customizing security solutions for the unique requirements of the Federal client.
• Configure, implement, administer, and maintain PA NGFW to include decryption and inspection of all inbound and outbound web traffic with inline service chain and traffic forwarding,
• Craft, administer, and optimize intricate security policies, rules, and access controls specific to Palo Alto firewall settings, addressing the client's complex network architecture.
• Review and make recommendations on all exceptions to Palo Alto NGFW rule configurations and implement them as appropriate.
• Integrate Wildfire analysis into decrypted SMTP traffic flow.
• Enhance threat detection capabilities by configuring and tuning the NGFW against known and unknown threats.
• Expand PA coverage with full implementation for all client's environments. Ensure PA logging ties user-IDs to traffic, and logs are fed into the client's SIEM architecture as well as passive network inspection tools.
• Conduct vigilant monitoring of network traffic and security alerts within the client's context, swiftly responding to and mitigating sophisticated security threats.
• Collaborate closely with cross-functional teams, adapting network security strategies to suit client's multifaceted environment and unique challenges.
• Provide expert technical support and rapid troubleshooting for Palo Alto NGFW-related issues tailored to client's specific setup.
• Troubleshoot and resolve service requests and submit and implement change requests as required.

QUALIFICATIONS:

• 5 years of hands-on experience in network security engineering with 3 years of Palo Alto experience.

EDUCATION:

• A minimum of a bachelor's degree in computer science, Information Technology, or a related field.
  • Experience may be considered as a substitute for the degree requirement.

CERTIFICATIONS:

• A minimum of one (1) Palo Alto Technical (Engineering or Administrator) Certification is required, such as PCNSA.

CLEARANCE:

• Minimum Background Investigation (MBI).

LOCATION:

• Remote (Initial onboarding in Arlington, VA)
• Minimal travel may be required if requested by the agency.

HOURS:

• 8:00 am ET - 4:30 am ET

• Ability to pass a minimum background investigation.