SIGN IN
Palo Alto Firewall Architect jobs in United States
info-icon
This job has closed.
company-logo

Danta Technologies · 1 day ago

Palo Alto Firewall Architect

positionSanta Clara, CA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$55/hr - $55/hr
date10+ years exp
Danta Technologies is a company focused on network security solutions, and they are seeking a Palo Alto Firewall Architect. The role involves providing L3-level support for Palo Alto firewalls, managing configurations, and collaborating with teams to enhance security measures.
ConsultingIT InfrastructureMobile AppsStaffing AgencyWeb Development
check
H1B Sponsor Likelynote

Responsibilities

Provide L3-level support for Palo Alto firewalls, including incident response and change management
Perform advanced configuration, rule base management, and policy optimization
Monitor firewall health, performance, and logs; proactively identify and resolve issues
Conduct root cause analysis for recurring or complex firewall/network problems
Manage upgrades, patches, and firmware updates for Palo Alto devices
Collaborate with SOC and IT teams to analyze and respond to security incidents
Mentor and guide L1/L2 support teams
Work with network architects to design secure network segmentation and DMZ architectures
Review and implement change requests, ensuring compliance with security standards and ITIL processes
Maintain detailed documentation for configurations, operational procedures, and troubleshooting guides
Participate in audits and compliance activities related to network security
Design and implement proper device group hierarchy across Palo Alto firewalls; eliminate redundant device groups (e.g., Internet and Internet_Syslog) to improve efficiency and reduce risk; address object limit commit issues and external dynamic list object limit avoidance; deduplicate security policies across device groups
Decommission legacy firewalls (e.g., CCASJC34-LAMR-UTM-1, 2, 3, 4) to reduce hardware footprint and cost; replace end-of-life PA-220 firewalls (3 units) to align with PAN-OS 11.1 standards; eliminate 25 IPS firewall devices and migrate IPS functionality to existing on-prem firewalls
Plan and execute elimination of Prisma Access to reduce cost and complexity; implement India central VM firewall and coordinate with GIS team for network changes; transition internet access for sites currently using Prisma to on-prem solutions
Analyze and recommend improvements for Internet Access Policies (workstations/servers), including on-prem and remote controls; address URL entry issues and provide analysis for a 'closed-door' approach; fix vWire interface configurations to ensure VLAN inspection consistency
Recommend enhancements for operational monitoring and alerting (implementation not in scope); conduct health checks and best practices assessment; provide remediation recommendations

Qualification

Palo Alto Networks PAN-OSSecurity policiesNATVPN (IPSec/SSL)TroubleshootingCentralized management (Panorama)TCP/IPVLANsPCNSE certificationITIL processesAnalytical skillsDocumentation skills

Required

10+ years of experience in network security operations, with at least 8 years focused on Palo Alto firewall administration
Strong expertise in Palo Alto Networks PAN-OS, security policies, NAT, VPN (IPSec/SSL), and threat prevention features
Proficient in troubleshooting complex firewall and network issues (routing, connectivity, performance)
Experience with centralized management platforms (Panorama)
Familiarity with integration of firewalls with SIEM, IDS/IPS, and other security tools
Solid understanding of TCP/IP, VLANs, DMZ, and network segmentation
Knowledge of change management and ITIL processes
Relevant certifications (PCNSE, PCNSA, CISSP, CCNP Security) preferred
Excellent communication and documentation skills
Bachelor's degree in computer science, Information Technology, or related field (or equivalent experience)
Proven experience in device group hierarchy design and policy optimization
Hands-on experience with firewall hardware lifecycle management and migration
Familiarity with Prisma Access and VM firewall deployment
Strong knowledge of PAN-OS, security policies, and object management
Understanding of VLAN configurations and virtual wire interfaces
Ability to analyze and recommend improvements for security posture and operational resilience

Preferred

Palo Alto Networks certifications (PCNSE, PCCSE)
Experience with large-scale firewall deployments and global network environments
Strong troubleshooting and analytical skills

Benefits

The option to elect healthcare insurance (Dental, Medical, Vision)
Major holidays
Paid sick leave as per state law

Company

Danta Technologies

twittertwittertwitter
company-logo
Danta Technologies is a consulting and IT services firm that offers solutions for all levels of IT.
dateFounded in 2013
location
Oceanside, California, USA
people-size51-200 employees
web-link
https://dantatechnologies.com

H1B Sponsorship

Danta Technologies has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (11)
2024 (14)
2023 (12)
2022 (11)
2021 (12)
2020 (26)

Funding

Current Stage
Growth Stage
Company data provided by crunchbase