About this role
Cywarden Inc. seeks a Network Security Engineer to design, deploy, and manage enterprise network security infrastructure using Palo Alto technologies. The role includes building zero-trust network architecture, running proactive monitoring, and leading security incident response and root cause analysis.
Key Responsibilities
- Design, deploy, and manage Palo Alto Networks firewalls, Panorama, and security policies
- Configure VPNs, IDS/IPS, NAC, and SIEM integrations
- Perform threat analysis, vulnerability assessments, and proactive security monitoring
- Lead network security incident response and root cause analysis
- Collaborate on zero-trust network architecture and maintain compliance with NIST/ISO 27001/CIS
Technical Overview
You will manage Palo Alto Networks firewalls, Panorama, and Prisma Access while configuring VPNs, IDS/IPS, NAC, and SIEM integrations. The job requires deep TCP/IP networking knowledge (BGP, OSPF, VLANs, SD-WAN) and proficiency with network monitoring and packet analysis tools like Wireshark and NetFlow.
Ideal Candidate
The ideal candidate is a senior Network Security Engineer with 4–5+ years of hands-on network security experience and active CCNA (Cisco Certified Network Associate) and CCIE (Cisco Certified Internetwork Expert) certifications. They have proven expertise deploying Palo Alto Networks firewalls with Panorama and Prisma Access, delivering zero-trust network architecture, and handling incident response with packet-level monitoring using Wireshark and NetFlow.
Must-Have Skills
Active CCNA (Cisco Certified Network Associate) certificationActive CCIE (Cisco Certified Internetwork Expert) certificationMinimum 4–5 years of hands-on experience in network security engineeringDemonstrated expertise with Palo Alto Networks firewallsPanoramaand Prisma AccessDeep understanding of TCP/IPBGPOSPFVLANsSD-WANand related networking protocolsExperience with security technologies: VPNNACIDS/IPSSIEMDLPProficiency with network monitoring and packet analysis tools (WiresharkNetFlowetc.)Lead network security incident response and root cause analysis activitiesImplement zero-trust network architecture
Nice-to-Have Skills
Palo Alto Networks Certified Network Security Engineer (PCNSE) certificationexperience with cloud security in AWSAzureor GCP environmentsfamiliarity with automation and scripting (PythonAnsibleTerraform)knowledge of compliance frameworks: NIST CSFCIS BenchmarksISO 27001prior experience in a managed security services or consulting environment
Tools & Platforms
Palo Alto Networks firewallsPanoramaPrisma AccessWiresharkNetFlowVPNNAC (Network Access Control)IDS/IPS (Intrusion Detection System / Intrusion Prevention System)SIEM (Security Information and Event Management)DLP (Data Loss Prevention)AWS (Amazon Web Services)AzureGCP (Google Cloud Platform)PythonAnsibleTerraformNISTISO 27001CIS
Required Skills
Palo Alto Networks firewallsPanoramaPrisma AccessVPNsIDS/IPSNACSIEM integrationsthreat analysisvulnerability assessmentsproactive security monitoringnetwork security incident responseroot cause analysiszero-trust network architecturesecurity standardsrunbookssecurity auditsrisk assessmentsTCP/IPBGPOSPFVLANsSD-WANWiresharkNetFlowDLP
Hard Skills
Palo Alto Networks firewallsPanoramaPrisma Accesssecurity policiesVPNsIDS/IPS (Intrusion Detection System / Intrusion Prevention System)NAC (Network Access Control)SIEM integrationsthreat analysisvulnerability assessmentsproactive security monitoringnetwork security incident responseroot cause analysiszero-trust network architecturenetwork security standardsrunbookssecurity auditsrisk assessmentsTCP/IPBGP (Border Gateway Protocol)OSPF (Open Shortest Path First)VLANs (Virtual Local Area Networks)SD-WAN (Software-Defined Wide Area Network)network monitoringpacket analysisWiresharkNetFlowVPNDLP (Data Loss Prevention)security compliance frameworksNISTISO 27001CIS
Soft Skills
collaboration with cross-functional teamstechnical leadershipmentoring junior engineersdocumentationincident response leadershipproactive communication during audits and risk assessments
Certifications
Required
CCNA (Cisco Certified Network Associate)CCIE (Cisco Certified Internetwork Expert)
Preferred
PCNSE (Palo Alto Networks Certified Network Security Engineer)
Keywords for Your Resume
Network Security EngineerCCNA (Cisco Certified Network Associate)CCIE (Cisco Certified Internetwork Expert)Palo Alto Networks firewallsPanoramaPrisma AccessVPNsIDS/IPSIntrusion Detection SystemIntrusion Prevention SystemNACNetwork Access ControlSIEMSecurity Information and Event ManagementDLPData Loss PreventionTCP/IPBGPBorder Gateway ProtocolOSPFOpen Shortest Path FirstVLANsVirtual Local Area NetworksSD-WANSoftware-Defined Wide Area Networkzero-trust network architecturethreat analysisvulnerability assessmentsWiresharkNetFlowsecurity incident responseroot cause analysisNISTISO 27001CISSIEM (Security Information and Event Management)
Deal Breakers
Active CCNA (Cisco Certified Network Associate) certification, Active CCIE (Cisco Certified Internetwork Expert) certification, Demonstrated expertise with Palo Alto Networks firewalls, Panorama, and Prisma Access, Proficiency with Wireshark and NetFlow
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile