Career Opportunities: Senior Firewall Architect / Engineer (34791)

Summary

The Senior Firewall Architect / Engineer is responsible for the architecture, design, engineering, and operational lifecycle of enterprise firewall platforms across on‑premises data centers and public cloud environments (AWS and Azure). This role serves as the technical authority for Firewall technologies, ensuring secure, scalable, and resilient network security architectures aligned with enterprise standards and cloud best practices.

Your role in our mission

Firewall Architecture & Design
•    Partner with the CISO office to lead the end to end architecture of firewall solutions across on prem, AWS, and Azure environments.
•    Define reference architectures, design patterns, and standards for Palo Alto firewalls (hardware, VM Series, cloud native integrations).
•    Ensure firewall architectures support high availability, resiliency, segmentation, and zero trust principles.
•    Partner with infrastructure, cloud, and application teams to embed firewall controls into platform and workload designs.
Palo Alto Engineering & Implementation
•    Engineer, and assist Managed Services vendors to deploy and maintain Palo Alto Networks firewalls, including: 
o    Panorama management
o    HA pairs and clustering
o    Virtual firewalls (VM Series)
o    Cloud integrated firewalls and traffic inspection architectures
•    Design and implement security policy frameworks, NAT strategies, routing, and traffic flows across hybrid environments.
•    Lead major firewall initiatives, including new deployments, upgrades, platform migrations, and data center or cloud expansions.
Cloud Firewall Integration (AWS & Azure)
•    Architect firewall solutions integrated with: 
o    AWS VPC / Transit Gateway architectures
o    Azure VNet / Virtual WAN / Hub and Spoke models
•    Implement Palo Alto integrations with cloud native services (load balancers, routing, identity, logging, and monitoring).
•    Ensure firewall designs align with cloud security guardrails, landing zones, and shared services models.
Operations, Automation & Lifecycle Management
•    Establish operational standards for firewall rule lifecycle management, change control, and auditing.
•    Drive automation and Infrastructure as Code approaches for firewall deployments and policy management where appropriate.
•    Define and monitor performance, capacity, and health metrics across firewall platforms.
•    Lead troubleshooting and resolution of complex firewall and traffic flow issues in hybrid environments.
Security & Compliance Alignment
•    Ensure firewall architectures meet enterprise security, regulatory, and compliance requirements.
•    Support security incident response, forensic analysis, and threat containment from a firewall architecture perspective.
•    Partner with GRC and security teams to support audits and continuous control validation.
Technical Leadership
•    Serve as the subject matter expert for firewall technologies across the enterprise.
•    Provide technical guidance, design reviews, and mentorship to network and security engineers.
•    Influence roadmap decisions for firewall platforms, tooling, and architectural evolution.

What we're looking for

• Deep, hands‑on experience with Palo Alto Networks firewalls (physical, virtual, and Panorama).
• Strong expertise designing firewall architectures in on‑premises data centers.
• Proven experience architecting and engineering firewall solutions in AWS and Azure.
• Advanced understanding of:
• Network segmentation and security zoning
• Routing, NAT, and traffic inspection architectures
• High availability and disaster recovery designs
• Experience operating firewall platforms at enterprise scale.

What you should expect in this role

• Remote position (US only)
• Opportunities to travel through your work (0-10%)
• Video cameras must be used during all interviews, as well as during the initial week of orientation
• The deadline to submit applications for this posting is 3/30/2026