Sr Perimeter Network Engineer
Role details
Job location
Tech stack
Job description
We are seeking a highly skilled Senior Perimeter Network Engineer with deep expertise in Palo Alto Networks firewalls to design, implement, manage, and optimize our perimeter security infrastructure. This role will be responsible for securing enterprise network boundaries, leading firewall architecture initiatives, and ensuring high availability, performance, and compliance across all edge security environments. The ideal candidate is a hands-on technical leader with strong experience in next-generation firewall technologies, threat prevention, and enterprise-scale network security design., Firewall Architecture & Engineering
-
Design, deploy, and maintain Palo Alto Networks NGFWs (physical and virtual).
-
Lead architecture and configuration of:
-
Security zones and segmentation
-
NAT policies
-
Security policies
-
App-ID, User-ID, and Content-ID
-
GlobalProtect VPN
-
Implement and manage Panorama for centralized firewall management.
-
Architect and maintain high-availability (HA) firewall clusters.
-
Manage multi-site and hybrid cloud perimeter environments including Azure and GCP. Security & Threat Prevention
-
Configure and optimize:
-
IPS/IDS
-
URL Filtering
-
WildFire
-
DNS Security
-
SSL decryption
-
Monitor and respond to security alerts and firewall-related incidents.
-
Perform firewall rule reviews, audits, and optimization.
-
Support vulnerability remediation and compliance initiatives. Network Operations & Optimization
-
Ensure high availability and performance of perimeter security infrastructure.
-
Conduct capacity planning and performance tuning.
-
Troubleshoot complex network and firewall issues.
-
Collaborate with NOC/SOC teams for incident resolution.
-
Maintain documentation of architecture, policies, and procedures. Compliance & Governance
-
Participate in security assessments and audits.
-
Ensure adherence to security best practices and standards. Leadership & Collaboration
-
Serve as technical SME for perimeter security.
-
Mentor junior engineers.
-
Partner with cloud, infrastructure, and security teams on new initiatives.
-
Lead firewall migration and upgrade projects.
Requirements
-
7+ years of network engineering experience.
-
5+ years of hands-on experience with Palo Alto Networks firewalls.
-
Strong experience with:
-
Panorama
-
GlobalProtect VPN
-
IPSec and SSL VPNs
-
BGP, OSPF, and routing fundamentals
-
Network segmentation and zero-trust design
-
Deep understanding of:
-
TCP/IP
-
NAT
-
VLANs
-
DNS/DHCP
-
SSL/TLS
-
Experience managing high-availability firewall deployments.
-
Strong troubleshooting skills in complex enterprise environments. Preferred Qualifications
-
Palo Alto certifications (PCNSE preferred).
-
Experience with cloud firewalls (VM-Series).
-
Experience with Prisma Access or SASE solutions.
-
Automation experience (Python, Ansible, REST APIs).
-
Experience with SIEM integrations (Splunk, Sentinel, etc.).
-
Experience in large enterprise or multi-data center environments Soft Skills
-
Strong communication skills (technical and non-technical audiences).
-
Ability to lead technical initiatives independently.
-
Strong documentation and process discipline.
-
Analytical mindset with strong problem-solving skills. Education
-
Bachelor's degree in Computer Science, Information Systems, or related field (or equivalent experience).
Benefits & conditions
_ _ VERSANT Media is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at VERSANT via-email, the Internet, or in any form and/or method without a valid written Statement of Work in place for this position from VERSANT's Talent Acquisition team will be deemed the sole property of VERSANT. No fee will be paid in the event the candidate is hired by VERSANT as a result of the referral or through other means.__
- Compensation $128,000-$128,000 per year