Talent.com
This job offer is not available in your country.
Netoyed - Palo Alto Network Security Specialist - Threat Modeling

Netoyed - Palo Alto Network Security Specialist - Threat Modeling

NetoyedNoida
30+ days ago
Job description

Were hiring a Palo Alto Network Security Specialist to design, implement, and operate next-gen firewall and SASE controls across enterprise and cloud networks.

You will own policy architecture, automation, and incident response for a multi-tenant, high-availability environment using PAN-OS, Panorama, Prisma Access, GlobalProtect, and integrations with SOC tooling (Cortex XDR / XSOAR or equivalents).

What youll do :

Operate & support (L2 / L3) :

  • Manage PAN-OS firewalls in HA; policy design, NAT, VPN (IPsec / SSL), routing (BGP / OSPF), SSL decryption.
  • Triage and resolve P1 / P2 incidents; root-cause analysis with packet captures (tcpdump / Wireshark) and threat logs.
  • Maintain Global Protect, Threat Prevention, URL Filtering, WildFire, DNS security; tune & reduce false positives.
  • Perform backups, config drift checks, and golden-config enforcement.

Deliver projects :

  • Plan and execute upgrades, migrations (to Panorama / device groups), new site turn-ups, and rulebase clean-ups.
  • Author MOPs, run pre / post checks, and execute maintenance-window changes with safe rollback.

    • Governance & hygiene :

  • Drive rule recertification (shadowed / unused / over-permissive rules), object naming standards, tags / expirations.

    • Automation & tooling :

  • Use Panorama APIs / Ansible / Terraform (nice-to-have) for policy-as-code, health checks, and reporting.
  • Integrate with SIEM / SOAR (e.g., Cortex XDR / XSOAR, Splunk) and ticketing (ServiceNow / Jira).

    • What makes you a strong fit :

  • 4 to 8+ years in network security, 3+ years hands-on with Palo Alto (PAN-OS 9 / 10 / 11) & Panorama.
  • Deep knowledge of policy design, NAT / VPN, routing (BGP / OSPF), and platform features (Threat Prevention, Wild Fire, URL Filtering).
  • Strong troubleshooting with logs / pcaps; comfortable leading customer bridges during P1s.
  • PCNSE preferred / PCNSA minimum; solid TCP / IP and Linux fundamentals.

    • Nice to have :

  • Cortex XDR / XSOAR, DNS Security, SD-WAN basics, Prisma Access exposure (as secondary skill only).
  • Scripting / automation (Python, Ansible / Terraform), cloud networking (AWS / Azure).
  • Immediate joiners only.
  • Competitive Salary for the right candidate.
  • Excellent comms and Customer facing ability.

    • (ref : hirist.tech)

    Create a job alert for this search

    Network Security Specialist • Noida