Network Engineer with Palo Alto Firewalls and PCN/OT(Onsite) jobs in United States
cer-icon
Apply on Employer Site
company-logo

LTIMindtree · 2 days ago

Network Engineer with Palo Alto Firewalls and PCN/OT(Onsite)

positionHouston, TX
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$94K/yr - $127K/yr
date15+ years exp

LTIMindtree is a global technology consulting and digital solutions company that enables enterprises across industries to reimagine business models and accelerate innovation. They are seeking a seasoned Network Security professional to lead the design, implementation, and lifecycle management of Process Control Network (PCN) and perimeter security controls across industrial/OT environments.

ConsultingEnterpriseInformation TechnologySoftware
check
H1B Sponsor Likelynote
Hiring Manager
Rahul Sharma
linkedin

Responsibilities

Define and maintain secure PCN/OT network architectures, zoning, and segmentation; design reference patterns for site deployments and interconnects to business networks and cloud edge services
Lead end‑to‑end firewall lifecycle— requirements intake, sizing, solution selection, commissioning, pre‑prod registration, and cutover —in line with our playbook and standards
Establish policy baselines, review and refine rule sets, enforce change management, and drive periodic audits for least‑privilege, App‑ID, User‑ID, NAT, IPS/Threat prevention, URL filtering, and TLS decryption where appropriate
Champion platform standards (e.g., Palo Alto hardware/software selection, supported PAN‑OS versions, and upgrade procedures) and coordinate vendor engagements
Orchestrate commissioning activities (IP addressing/subnets, racking, initial setup, HA pairs, path testing) with OT, Network Assets, and Service Delivery teams per established processes
Oversee day‑to‑day operations, incident response, performance tuning, capacity planning, log analysis, and health monitoring; partner with SOC for threat detection and response
Embed controls aligned to ISA/IEC 62443 and enterprise security policies; prepare for audits and ensure evidence collection, configuration hardening, and continuous compliance
Collaborate with OT engineers, cybersecurity, cloud/network architects, and managed service providers to deliver secure, resilient connectivity
Produce and maintain detailed design docs, runbooks, and diagrams; mentor engineers and drive standardization across plants/sites
Identify modernization opportunities (automation, telemetry, configuration as code, Panorama/Ansible workflows) and lead POCs/rollouts

Qualification

Palo Alto FirewallsNetwork Security EngineeringPCN/OT EnvironmentsTCP/IPFirewall ArchitectureSecurity ControlsISA/IEC 62443Design & DocumentationAutomationNetwork Monitoring ToolsCertificationsCollaboration

Required

15+ years in network security engineering, with 8+ years in industrial/OT/PCN environments and 8+ years of firewall architecture/operations at enterprise scale
Deep hands-on experience with Palo Alto NGFWs (design, policy, HA, upgrades, Panorama), plus working knowledge of one or more of Check Point/Fortinet/Cisco ASA/F5 AFM
Expert-level TCP/IP, routing (OSPF/BGP), switching, VLANs, QoS, NAT, DNS/DHCP, authentication/AAA; strong grasp of segmentation patterns for OT/ICS
Proficiency with IPS/Threat prevention, SSL/TLS decryption, identity-based policies, URL filtering, and logging/telemetry integration (Syslog/SIEM)
Ability to produce high-fidelity architecture diagrams and commissioning documents that include zones, subnets, ports, and application flows, consistent with lifecycle guidance
Familiarity with ISA/IEC 62443, NIST SP 800-82, and enterprise audit/control frameworks
Demonstrated success working cross-functionally with OT, network assets/service delivery, vendors, and managed service partners
Bachelor's in Computer Science, Electrical/Network Engineering, or equivalent. Relevant certifications such as PCNSE (Palo Alto), NSE (Fortinet), CCNP Security, or CISSP are strongly preferred

Preferred

Experience with Panorama multi-tenant policy management; GlobalProtect; application-aware policies (App-ID); micro-segmentation patterns in OT
Exposure to Azure networking (VNets, vWAN, Palo Alto VM-Series), on-prem/cloud secure edge designs
Familiarity with automation (Ansible/REST APIs), config compliance checks, and golden image management
Tooling: Network performance/monitoring (e.g., SolarWinds, NetFlow), ticketing/ITSM, and diagramming/Visio

Benefits

Comprehensive Medical Plan Covering Medical, Dental, Vision
Short Term and Long-Term Disability Coverage
401(k) Plan with Company match
Life Insurance
Vacation Time, Sick Leave, Paid Holidays
Paid Paternity and Maternity Leave

Company

LTIMindtree

twittertwittertwitter
Glassdoor3.6
company-logo
LTIMindtree is a worldwide technology consulting and digital solutions company that empowers businesses in a variety of sectors.
dateFounded in 1996
location
Mumbai, Maharashtra, IND
people-size10001+ employees
web-link
https://www.ltimindtree.com

H1B Sponsorship

LTIMindtree has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2651)
2024 (2855)
2023 (2267)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Venu Lambu
Chief Executive Officer & MD
linkedin
leader-logo
Vipul Chandra
Chief Financial Officer
linkedin

Recent News

GlobeNewswire
ConvaTec Group Product Pipeline Analysis Report 2025 | Emphasizing Innovation in Therapies for Chronic Conditions and Exploiting Market-entry, R&D, and In/Out-licensing Strategies
2026-01-05
Business Standard India
DEI Symposium 2025 Concludes in Mumbai with Launch of DEI Index
2025-12-29
Taiwan Sun
Stock market ends lower as investors remain in selling mode
2025-12-27
Company data provided by crunchbase