Principal Site Reliability Engineer- Network...

As a Principal Site Reliability Engineer, you will be responsible for Palo Alto Networks' network and security infrastructure for all enterprise, partner, and customer facing services. We are looking for an analytical, agile, and influential leader who can quickly deliver meaningful results in a fast-paced environment. You will work with a team of senior level IaC Automation Engineers leading projects designing, implementing, and maintaining our global compute infrastructure., + Design, implement and provide support for IT infrastructure compute components

• Install, support and maintain software infrastructure according to best practices, including routers, Load balancers, switches, wifi controllers, and firewalls via terraform/ansible automation

• Perform network security design and integration

• Diagnose problems and solve issues, often under time constraints

• Implement the necessary controls and procedures to protect information systems assets from intentional or inadvertent modification, disclosure, or destruction

• Ensure system uptime and backup for all IT infrastructure

• Provide security incident triage and response, including working with firewall and device logs, investigating security events, protecting forensic value of data and establishing monitoring and incident reporting and response procedures

• Work closely with engineering to help report issues and manage project deliverables and provide status and progress reports

• Provide on-call support for Incident Management

• 8+ years of experience in IAC and infra automation tools, using Terraform & Ansible, CI/CD tools

• Expert knowledge on cloud orchestration via GKE / EKS, etc, preferably on GCP

• Experienced in designing and implementing Business Continuity Plans and Disaster Recovery Plans

• Expert knowledge of firewall technologies (PANW preferred), including VPNs and routing

• Advanced knowledge of shell scripting and programming languages such a PERL, Ruby, PHP, or Python

• Advanced knowledge of DNS and DHCP, and Microsoft AD infrastructure

• Strong analytical skills for interpreting business requirements and translating them into technical specifications

• Strong project management, time management, and organizational skills

• Excellent communication skills, including the ability to write network and security documentation, policies, and guidelines

• Ability to work nights and weekends and provide 24/7 on-call support

• Due to the nature of the role and the requirement for a security clearance, this position is restricted to U.S. Citizens only.

Preferred Qualifications

• BSCS or related field, MS preferred, or equivalent military experience required

• Extensive background in planning and designing projects, and analyzing existing distributed systems and procedures for efficiency and effectiveness

• Experience with Load Balancers, HAProxy, F5, nginx

• Knowledge of data center design, build-out, and best practices

• Knowledge of virtualization platforms, preferably Openshift

• Experience with multi-tier architectures, including best practices around tier isolation (for databases, etc.)

• Extensive knowledge of network security systems, intrusion detection systems, and protocols, including ACE, ACS, VPN, GRE, IPSEC, IKE, TACACS, RADIUS, ACLs, 802.1x, audits, log files, etc.

• Well-versed in commercial InfoSec requirements, guidance, and standards

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/com-missioned roles) is expected to be the annual range listed below. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here (https://benefits.paloaltonetworks.com/) .

$154,000.00 - $249,500.00/yr

Our Commitment

We're trailblazers that dream big, take risks, and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together.