Netpace
Sr. Cloud Network Security SME (Azure/GCP/OCI , Palo, Fortinet, R&S)
Design, implement, and manage secure cloud network architectures
in
zure & GCP , including
VNet Gateways, ExpressRoute, VNet Peering, VPNs, and BGP routing . Configure, deploy, and troubleshoot Palo Alto firewalls
(VM-Series, Cloud NGFW) for cloud environments, ensuring optimal security posture. Implement and manage
hybrid connectivity solutions
(ExpressRoute, VPN, Private Peering) with
BGP routing optimizations . Secure cloud environments
using
Network Security Groups (NSGs), Firewall Policies, Private Endpoints, and Zero Trust architectures . Troubleshoot complex network and security issues
related to cloud connectivity, firewall policies, and routing (BGP, UDRs). Design, implement, and optimize BGP routing
for hybrid/multi-cloud architectures, including
route advertisements, ASN configurations, and path selection
in
zure (ExpressRoute/VPN Gateway) and GCP (Cloud Router, HA VPN, Interconnect) . rchitect and secure GCP networking components , including
VPC peering, Shared VPC, Cloud Load Balancing, and Hybrid Connectivity (Partner/Private Interconnect)
with BGP-based dynamic routing. Troubleshoot BGP session flapping, asymmetric routing, and route propagation issues
across cloud and on-prem environments. Required Skills & Qualifications:
8+ years
of experience in
cloud network security , with deep expertise in
zure & GCP . Hands-on experience
with
VNet Gateways, ExpressRoute, VNet Peering, BGP, and hybrid cloud networking . Expert-level knowledge
in
Palo Alto firewalls
(installation, configuration, troubleshooting, policy management). Strong understanding of
cloud security controls
(WAF, DDoS protection, IDS/IPS, SIEM integrations). Certifications preferred:
Palo Alto (PCNSE, PCNSA) zure (AZ-500, AZ-700) GCP (Professional Cloud Security Engineer, Professional Cloud Network Engineer)
Strong problem-solving skills and ability to work in a fast-paced environment. Nice to Have:
Experience with
multi-cloud security architectures
(AWS is a plus). Knowledge of
Kubernetes security (GKE, AKS)
and
service mesh (Istio, Anthos) .
Design, implement, and manage secure cloud network architectures
in
zure & GCP , including
VNet Gateways, ExpressRoute, VNet Peering, VPNs, and BGP routing . Configure, deploy, and troubleshoot Palo Alto firewalls
(VM-Series, Cloud NGFW) for cloud environments, ensuring optimal security posture. Implement and manage
hybrid connectivity solutions
(ExpressRoute, VPN, Private Peering) with
BGP routing optimizations . Secure cloud environments
using
Network Security Groups (NSGs), Firewall Policies, Private Endpoints, and Zero Trust architectures . Troubleshoot complex network and security issues
related to cloud connectivity, firewall policies, and routing (BGP, UDRs). Design, implement, and optimize BGP routing
for hybrid/multi-cloud architectures, including
route advertisements, ASN configurations, and path selection
in
zure (ExpressRoute/VPN Gateway) and GCP (Cloud Router, HA VPN, Interconnect) . rchitect and secure GCP networking components , including
VPC peering, Shared VPC, Cloud Load Balancing, and Hybrid Connectivity (Partner/Private Interconnect)
with BGP-based dynamic routing. Troubleshoot BGP session flapping, asymmetric routing, and route propagation issues
across cloud and on-prem environments. Required Skills & Qualifications:
8+ years
of experience in
cloud network security , with deep expertise in
zure & GCP . Hands-on experience
with
VNet Gateways, ExpressRoute, VNet Peering, BGP, and hybrid cloud networking . Expert-level knowledge
in
Palo Alto firewalls
(installation, configuration, troubleshooting, policy management). Strong understanding of
cloud security controls
(WAF, DDoS protection, IDS/IPS, SIEM integrations). Certifications preferred:
Palo Alto (PCNSE, PCNSA) zure (AZ-500, AZ-700) GCP (Professional Cloud Security Engineer, Professional Cloud Network Engineer)
Strong problem-solving skills and ability to work in a fast-paced environment. Nice to Have:
Experience with
multi-cloud security architectures
(AWS is a plus). Knowledge of
Kubernetes security (GKE, AKS)
and
service mesh (Istio, Anthos) .