Sr. Firewall Engineer

Seek to join a team of Cloud, Systems, and Network Engineers on our Infrastructure Team. You will be responsible for designing, implementing, and maintaining Network Security based solutions in a Hybrid Data Cloud Environment. You will primarily work with Palo Alto Firewalls, as well as other technologies such as Azure Firewalls, Cisco ASA, and VMware NSX. You will also collaborate with other engineers, developers, and stakeholders to ensure the reliability, security, and scalability of our systems.   This position takes part in an engineering escalation on-call rotation. Responsibilities:

Manage and administer Firewalls including Palo Alto, Azure Firewall, and Cisco ASA

Deploy, configure, and troubleshoot firewall rules, object-groups and IP Groups

Monitor and analyze system metrics, logs, and alerts using tools such as Dynatrace and Splunk

Implement and enforce security best practices and policies for Firewalls, Load Balancers, and Web Application Firewalls

Provide technical support and guidance to other teams and engineers where systems communication and security is paramount

Research and evaluate new technologies and solutions to improve our infrastructure and operations

Document and update system architecture, design, and configuration

Qualifications:

Bachelor’s or Master’s degree in Computer Science, Engineering, or related field

5+ years of experience in firewall administration and firewall rule implementation with Palo Alto

3+ years of experience with cloud firewall technologies

Strong knowledge of Windows and Linux network services including tcp/ip, pki, Kerberos, and Active Directory networking.

Understanding of routing and layer 2 networking

Proficient with hybrid cloud data center technologies

Experience with monitoring and logging tools including Dynatrace and Splunk, syslog, and top

Excellent communication, collaboration, and problem-solving skills

Ability to work independently and as part of a team

Certifications in Palo Alto, Cisco, and Microsoft Azure desired

Familiar with DevOps and CI/CD principles and tools including vscode, Git, Azure DevOps, and ArgoCD

Familiar with Kubernetes CNI framework, and security in a container environment