Palo Alto Networks
Principal Enterprise Security Engineer
Palo Alto Networks, Santa Clara, California, us, 95053
Principal Enterprise Security Engineer
Palo Alto Networks protects tens of thousands of people every day from Cyber bad-actors, but who protects Palo Alto Networks? The Palo Alto Networks Enterprise Security team has this incredible responsibility and, as a Principal Enterprise Security Engineer, it's your job to protect the team so we can protect the world. Your primary focus will be leading the effort of creating our technology strategy and roadmap, particularly in Identity, Application and Endpoint security. The ideal candidate will have profound technical leadership, strategic and collaboration skills to drive security outcomes. Your Impact Design, build, and implement robust security capabilities and services to safeguard Palo Alto Networks' identity, application, and endpoint infrastructure. Identify, assess, and remediate security architecture gaps across the organization's identity, application, and endpoint domains. Analyze technical risks of existing endpoint, identity, and application architectures (SaaS/PaaS/IaaS and on-premise) against security controls, policies, and risks, then develop appropriate remediation or risk reduction plans. Adopt an automation-first approach to create scalable solutions for continuous security control assessment. Generate and monitor effective, actionable Information Security reports across the InfoSec technical landscape, providing pertinent input for briefing presentations. Evaluate ongoing practices, procedures, technical documentation, and diagrams to ensure appropriate security measure maturity and effectiveness. Lead hands-on Proof of Concepts (POCs) with rigorous benchmarks for security technology innovations and adoptions. Your Experience 10+ years of combined experience as an enterprise security engineer, software engineer, or cloud security engineer Extensive experience in information security, security engineering or architecture roles Deep understanding of Identity & Access Management, application, endpoint, and Infrastructure security in Enterprise environments. Working knowledge of identity & access management platforms, for workforce, non-human identities, privileged access Understanding of AI security (dynamic access control with Just In Time access with least privileges for Agentic AI integrations) In depth knowledge of threat model, cryptography, authentication and authorization Expert level experience performing threat modeling and design reviews to assess security implications and requirements Experience with programming / scripting in any language (Python / Golang / Powershell etc.) Experience in security engineering related to vulnerability management, intrusion prevention, data protection, monitoring, analytical and correlation tools a PLUS Certification in any of the following is a plus: CISSP; CCSP; OSCP; OSCE; Google Cloud Architect; AWS Cloud Architect; GIAC Certified Enterprise Defender (GCED) Education Bachelor's degree from four-year college or university; or equivalent training, education, and experience in information / cyber security, computer systems, IT, etc.
Palo Alto Networks protects tens of thousands of people every day from Cyber bad-actors, but who protects Palo Alto Networks? The Palo Alto Networks Enterprise Security team has this incredible responsibility and, as a Principal Enterprise Security Engineer, it's your job to protect the team so we can protect the world. Your primary focus will be leading the effort of creating our technology strategy and roadmap, particularly in Identity, Application and Endpoint security. The ideal candidate will have profound technical leadership, strategic and collaboration skills to drive security outcomes. Your Impact Design, build, and implement robust security capabilities and services to safeguard Palo Alto Networks' identity, application, and endpoint infrastructure. Identify, assess, and remediate security architecture gaps across the organization's identity, application, and endpoint domains. Analyze technical risks of existing endpoint, identity, and application architectures (SaaS/PaaS/IaaS and on-premise) against security controls, policies, and risks, then develop appropriate remediation or risk reduction plans. Adopt an automation-first approach to create scalable solutions for continuous security control assessment. Generate and monitor effective, actionable Information Security reports across the InfoSec technical landscape, providing pertinent input for briefing presentations. Evaluate ongoing practices, procedures, technical documentation, and diagrams to ensure appropriate security measure maturity and effectiveness. Lead hands-on Proof of Concepts (POCs) with rigorous benchmarks for security technology innovations and adoptions. Your Experience 10+ years of combined experience as an enterprise security engineer, software engineer, or cloud security engineer Extensive experience in information security, security engineering or architecture roles Deep understanding of Identity & Access Management, application, endpoint, and Infrastructure security in Enterprise environments. Working knowledge of identity & access management platforms, for workforce, non-human identities, privileged access Understanding of AI security (dynamic access control with Just In Time access with least privileges for Agentic AI integrations) In depth knowledge of threat model, cryptography, authentication and authorization Expert level experience performing threat modeling and design reviews to assess security implications and requirements Experience with programming / scripting in any language (Python / Golang / Powershell etc.) Experience in security engineering related to vulnerability management, intrusion prevention, data protection, monitoring, analytical and correlation tools a PLUS Certification in any of the following is a plus: CISSP; CCSP; OSCP; OSCE; Google Cloud Architect; AWS Cloud Architect; GIAC Certified Enterprise Defender (GCED) Education Bachelor's degree from four-year college or university; or equivalent training, education, and experience in information / cyber security, computer systems, IT, etc.