Senior Palo Alto Security Engineer

Bilingual, 5+ years experience, Remote

‍

About Us

NetMidas is a software services company based in Cali since 2007. We have been fortunate to have worked with a broad range of clients, including large corporations (including Apple), startups, and international NGOs. Now we are looking for a Network and Firewall Security Engineer for a long term contract to work directly with an exciting US client.

About Client

Founded in 1921, HomeStreet Bank offers consumer and commercial banking, mortgage lending and loans for residential construction, commercial real estate financing, and insurance products and services on the US West Coast and Hawaii (67 locations). Homestreet Bank is in the process of migrating from a Cisco Network and Security infrastructure to a new Palo Alto solution.

Position Summary

You will form part of the design and implementation team and work ‘hands-on’ to implement, operate, and mentor the network and security team in the all-new Palo Alto infrastructure. You will also collaborate with an external professional service partner.

This is a ‘green field’ deployment that uses state-of-the-art network and security infrastructure. As a Senior Security Engineer, you will need basic knowledge of Cisco products and advanced knowledge of Palo Alto products, specifically Strata Cloud Manager, and will be a member of the security team with direct responsibility for managing Palo Alto's firewalls.

Requirements

Must Haves:

‍Advanced Palo Alto skills:

• Advanced Knowledge of Palo Alto Firewall solutions managed via Strata Cloud
• Required knowledge in Palo Alto SDWAN managed in Strata Cloud
• Required knowledge in Prisma Access managed in Strata Cloud
• Required knowledge in Global Protect managed in Strata Cloud
• Required knowledge in Palo Alto Firewall’s managed in Strata Cloud
• Hands-on experience and knowledge in implementing Cortex XDR for Endpoints
• Experience working with Cortex XSOAR. 

Basic Cisco skills:

• Knowledge of FTD Firewalls
• Proven experience SDWAN
• Knowledge of AnyConnect
• Knowledge of Umbrella Cloud security
• Knowledge of AMP for Endpoints

Also:

• Minimum of 4 years of enterprise experience identifying threats and developing appropriate protection measures.
• Ability to communicate in English (minimum level B2)
• Bachelor’s degree in Computer Science or a related area of study or equivalent work experience in the information security field.
• Extensive technical know-how of security network devices (switches, antivirus, firewalls, cryptography, SIEM) and any other security networking hardware or software tools.

Your duties:

• Administering, and configuring complex network services such as BGP, security policies and profiles, Host-based Intrusion Prevention Systems (HIPS), and SSL Decryption on Palo Alto Network (PAN) appliances at an enterprise level.
• System performance and troubleshooting Software upgrades and patches for emergency patches.
• Creates and maintains information security alerts from cloud services, firewalls, IDS, OS, Anti-Virus, web application firewalls, and servers through the use of an SIEM and related tools to respond, triage, and resolve or escalate as needed.
• Act as an escalation point for alerts generated by a SIEM and other related tools.
• Perform systems and network analysis of intrusions to the network, servers, applications, operating systems, firewalls, proxies, and other infrastructure-related devices.
• Perform in-depth network security analysis and conduct preliminary incident response, event analysis, and threat intelligence.
• Review security events that are detrimental to the overall security posture; analyze and detect sophisticated and nuanced attacks, discern false positives, and provide results to management.
• Review system changes for security implications and recommend improvements.
• Analyze data and prepare reports that document vulnerabilities from network-based attacks and recommend actions to prevent, repair, or mitigate these vulnerabilities.
• Maintain or assist in the maintenance of the confidentiality, integrity, and availability of all data in physical and/or electronic format.

Compensation, Contract, Terms

• 32 USD per hour.
• Contract: Freelance (prestación de servicios) with our company in the US.
• Full time.
• Start date: February 2024.

Application process

• Send your CV to lucero.linares@netmidas.com with the subject ‘Palo Alto Security Engineer’, together with a short text that explains your work history, capabilities, and interests.
• Then you will be invited to take a technical test and a series of interviews and evaluations.
• The interview process will be completed within 10 days of our first conversation!