Idexcel
Palo Alto Firewall Engineer (Washington)
Idexcel, Washington, District Of Columbia, United States, 20022
Job Title: Palo Alto Network Security - Firewalls
Location: Hybrid - Washington DC
Duration: 16+ Months
Core Platform Expertise Deep experience with Palo Alto Networks firewalls (NGFW, Prisma Access) Proficiency in Strata Cloud Manager for centralized management, policy governance, and visibility Hands-on knowledge of Palo Altos advanced security subscriptions and ability to leverage their full value: AdvancedThreat Prevention AdvancedWildFireAnalysis AdvancedURL Filtering AdvancedDNS Security GlobalProtect / ZTNA capabilities Experience implementing automation and infrastructure-as-code concepts using Palo Alto APIs, scripts, or integrations with tools like Ansible or Terraform
Network & Security Foundations Strong grasp of network security architecture, layered defense concepts, and network routing protocols, including OSPF and BGP Deep understanding of IDS/IPS technologies and tuning for threat detection Experience with Network Access Control (NAC) solutions for device posture and access enforcement Familiarity with Web Application Firewalls (WAF) such as Akamai or Alert Logic Understanding of Data Loss Prevention (DLP) controls and integration into network workflows Working knowledge of SASE frameworks, including cloud-delivered security and policy enforcement Exposure to SIEM platforms and log correlation for network visibility and incident response Ability to perform packet capture, analysis, and troubleshooting for network and security issues Experience with network segmentation and zero trust network architecture (ZTNA) principles
Cloud Network Security Strong understanding of cloud networking and security controls across major providers (AWS, Azure, GCP) Hands-on experience configuring and managing Network Security Groups (NSGs), firewall rules, and routing policies in cloud environments Familiarity with cloud-native security services such as Azure Firewall, AWS Security Groups, and VPC/VNet peering Knowledge of hybrid connectivity models (VPN, ExpressRoute, Direct Connect) and how to secure them with Palo Alto integrations
Additional Strengths Demonstrated ability to expand the value of existing security investments through optimization and automation Strong documentation, analytical, and cross-team collaboration skills Familiarity with IT service and change management, including platforms such as ServiceNow Experience with working in an Agile and/or SAFe environment Certifications such as PCNSE, CCNP Security, or similar are highly desirable
Core Platform Expertise Deep experience with Palo Alto Networks firewalls (NGFW, Prisma Access) Proficiency in Strata Cloud Manager for centralized management, policy governance, and visibility Hands-on knowledge of Palo Altos advanced security subscriptions and ability to leverage their full value: AdvancedThreat Prevention AdvancedWildFireAnalysis AdvancedURL Filtering AdvancedDNS Security GlobalProtect / ZTNA capabilities Experience implementing automation and infrastructure-as-code concepts using Palo Alto APIs, scripts, or integrations with tools like Ansible or Terraform
Network & Security Foundations Strong grasp of network security architecture, layered defense concepts, and network routing protocols, including OSPF and BGP Deep understanding of IDS/IPS technologies and tuning for threat detection Experience with Network Access Control (NAC) solutions for device posture and access enforcement Familiarity with Web Application Firewalls (WAF) such as Akamai or Alert Logic Understanding of Data Loss Prevention (DLP) controls and integration into network workflows Working knowledge of SASE frameworks, including cloud-delivered security and policy enforcement Exposure to SIEM platforms and log correlation for network visibility and incident response Ability to perform packet capture, analysis, and troubleshooting for network and security issues Experience with network segmentation and zero trust network architecture (ZTNA) principles
Cloud Network Security Strong understanding of cloud networking and security controls across major providers (AWS, Azure, GCP) Hands-on experience configuring and managing Network Security Groups (NSGs), firewall rules, and routing policies in cloud environments Familiarity with cloud-native security services such as Azure Firewall, AWS Security Groups, and VPC/VNet peering Knowledge of hybrid connectivity models (VPN, ExpressRoute, Direct Connect) and how to secure them with Palo Alto integrations
Additional Strengths Demonstrated ability to expand the value of existing security investments through optimization and automation Strong documentation, analytical, and cross-team collaboration skills Familiarity with IT service and change management, including platforms such as ServiceNow Experience with working in an Agile and/or SAFe environment Certifications such as PCNSE, CCNP Security, or similar are highly desirable