Role: Network Security Engineer (Zscaler To Palo Alto)
Locations: 100% Remote (Client is in TX)
Duration: 12+ Months Contract
About the Role:
• We are seeking an experienced Palo Alto Network Security Engineer to lead and support critical network security efforts in our transition to public cloud infrastructure.
• This role is a key contributor to two main initiatives: migrating Zscaler security policies to Palo Alto firewalls with an emphasis on URL category optimization, and collaborating with SYF PerDef and application teams to implement data-center-extension wave rules.
• Key Responsibilities:
• Zscaler to Palo Alto Policy Migration
• Lead efforts to migrate existing security policies from Zscaler to Palo Alto firewalls, ensuring a seamless transition before the end of the year.
• Analyze current URL filtering policies and implement strategies to optimize and conserve URL category usage, specifically to remain within the 500 URL category limit per vsys.
• Collaborate with network, security, and cloud teams to align policies with organizational security standards and cloud migration goals.
• Develop and maintain detailed documentation of migration processes, configurations, and adjustments.
• Data Center Extension Wave Rules Implementation
• Partner with SYF PerDef to identify, develop, and implement necessary wave rules required for data center extension to the cloud.
• Work closely with application teams to test and validate wave rules, ensuring minimal disruption and performance impact.
• Maintain ongoing management and tuning of Palo Alto firewall policies based on application requirements and evolving threat landscape.
• General Palo Alto Firewall Policy Management
• Manage, optimize, and troubleshoot Palo Alto firewall policies across on-premises and cloud environments.
• Provide technical guidance to security and network teams regarding Palo Alto best practices, performance, and feature utilization.
• Required Qualifications:
• Extensive hands-on experience (5+ years) with Palo Alto Networks firewall administration and policy management in enterprise environments.
• Proven experience in migrating security policies from Zscaler to Palo Alto or similar firewall migration projects.
• Strong understanding of Palo Alto URL Filtering capabilities and constraints, especially managing URL categories and vsys limits.
• Experience working with data center security extension concepts including wave rules or similar traffic segmentation controls.
• Solid knowledge of network security architecture, VPNs, routing, and cloud network integration, preferably with AWS or other public clouds.
• Ability to collaborate effectively with application teams and other stakeholders during rule implementation and testing phases.
• Excellent troubleshooting and problem-solving skills in firewall policy conflicts and rule optimization.
• Strong communication skills and ability to produce clear technical documentation.
• Preferred Qualifications:
• Palo Alto Networks certifications such as PCNSE (Palo Alto Networks Certified Network Security Engineer).
• Experience in financial services or similarly regulated environments.
• Familiarity with Infrastructure as Code (IaC) tools for automating firewall policy deployment.
• Exposure to cloud network security frameworks supporting public cloud migrations.
Thanks
Anil Singh
Technical Recruiter | Empower Professionals
|
-------------------------------------------------------------------------------------------------------------
Fax: |
Certified NJ and NY Minority Business Enterprise (NMSDC)
Apply tot his job
Apply To this Job