Network Security Engineer - Firewall jobs in United States
cer-icon
Apply on Employer Site
company-logo

Haden Grey · 3 months ago

Network Security Engineer - Firewall

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$95K/yr - $125K/yr
date7+ years exp

Haden Grey LLC is seeking a Network Security Engineer with expertise in firewall technologies. The role focuses on migrating and designing firewall solutions, optimizing network security policies, and ensuring seamless connectivity across data centers and cloud environments.

Cloud SecurityCyber SecurityPenetration Testing

Responsibilities

Lead migration from Cisco ASA5525 to Palo Alto PA-1410 HA pairs across two data centers
Deploy and configure Palo Alto VM-Series firewalls (25 instances) in virtualized/cloud environments
Integrate firewalls into Strata Cloud Manager for centralized policy, logging, and monitoring
Migrate ASA site-to-site VPNs (crypto maps / policy-based) to Palo Alto route-based VPNs
Redesign VPN architecture with IKEv2/IPSec best practices, Proxy-IDs, and No-NAT rules
Transition remote access VPN users from Cisco AnyConnect to Palo Alto GlobalProtect, including portal/gateway setup, MFA integration, and split-tunnel/DNS design
Implement OSPF and/or BGP for dynamic routing across data centers, VPN tunnels, and cloud providers (AWS, Azure, GCP)
Configure virtual routers and route redistribution between static, OSPF, and BGP peers
Use Palo Alto Expedition tool to convert and optimize Check Point and ASA security policies
Clean up unused/duplicate objects and align rules with Palo Alto’s App-ID and User-ID security model
Implement advanced features such as TLS decryption, WildFire, and Threat Prevention profiles
Develop migration runbooks, testing plans, and rollback strategies
Lead cutover events ensuring minimal downtime for VPN and business-critical traffic
Train internal teams on Palo Alto operations, SCM, and security best practices

Qualification

Palo Alto Networks firewallsNetwork security engineeringIPSecIKEv2OSPFBGPCisco ASA/AnyConnectPolicy migration toolsCloud networking/securityPalo Alto certifications

Required

7+ years of experience in network security engineering with focus on perimeter firewalls, VPNs, and routing
Hands-on expertise with Palo Alto Networks firewalls (PA hardware, VM-Series, Panorama/SCM)
Strong background with Cisco ASA/AnyConnect and prior firewall migration experience
In-depth knowledge of IPSec, IKEv2, TLS/SSL, NAT, and VPN troubleshooting
Proven experience configuring OSPF and BGP on firewalls and integrating with enterprise routing
Familiarity with policy migration tools (Expedition or equivalent) and firewall object modeling

Preferred

Experience with cloud networking/security (AWS, Azure, GCP) is a plus
Palo Alto certifications (e.g., PCNSE) strongly preferred

Company

Haden Grey

twittertwitter
company-logo
HadenGrey is a cybersecurity company.
dateFounded in 2020
location
Centennial, Colorado, USA
people-size51-200 employees
web-link
https://www.hadengrey.com

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Graham Logsdon
Chief Executive Officer, Owner
linkedin
Company data provided by crunchbase