SIGN IN
Staff Network Security Engineer (Information Security) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Palo Alto Networks · 12 hours ago

Staff Network Security Engineer (Information Security)

positionSanta Clara, CA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$128K/yr - $207K/yr
date5+ years exp
Palo Alto Networks is dedicated to protecting the digital way of life through innovative technology. As a Senior Network Security Engineer, you will play a critical role in securing enterprise and cloud environments by designing and implementing secure network architectures and ensuring compliance with security standards.
Artificial Intelligence (AI)Cloud ComputingCyber SecurityAgentic AICloud SecurityNetwork SecuritySecurity
check
Growth Opportunities
check
H1B Sponsorednote

Responsibilities

Provide advanced network and cloud security engineering support across on-premises and cloud environments (e.g GCP, AWS), ensuring secure, scalable, and compliant infrastructure for enterprise and production systems
Design and implement secure network architectures aligned with Zero Trust principles, including network segmentation, identity-based access controls, secure ingress/egress configurations, and firewall policy management
Support security control implementation and continuous monitoring activities aligned with FedRAMP, NIST 800-53, and other U.S. Government compliance frameworks, ensuring technical safeguards meet Moderate/High baseline requirements
Develop, maintain, and enforce hardened security baselines for infrastructure components (VMs, containers, Kubernetes, firewalls, load balancers, and network devices) in alignment with CIS Benchmarks, STIGs, NIST standards, and internal security policies
Perform regular firewall rule reviews, security group audits, and access control validations to ensure least privilege and proper segmentation across environments
Conduct cloud security posture assessments to identify misconfigurations, reduce risk exposure, and improve compliance with regulatory and internal standards
Partner with GRC and compliance teams to support audit readiness efforts, including evidence collection, documentation updates, POA&M tracking, and control validation for FedRAMP, SOC 2, and ISO 27001
Collaborate closely with Network Engineering, Cloud Engineering, IAM, Vulnerability Management, SRE, and Product Security teams to integrate security controls into infrastructure and deployment workflows
Assist in evaluating third-party and SaaS integrations to ensure alignment with enterprise and regulatory security requirements
Prioritize and remediate critical vulnerabilities and data exposure risks in cloud and network environments using a risk-based approach
Develop and maintain automation using SOAR tools and infrastructure-as-code practices to streamline security operations and improve consistency of control enforcement
Support incident response efforts involving network or cloud security events, including investigation, containment, root cause analysis, and documentation of corrective actions
Contribute to broader enterprise security initiatives, including identity governance, workload security, and secure configuration management

Qualification

Network Security EngineeringCloud SecurityPalo Alto NGFWZero Trust ArchitectureInfrastructure-as-CodePythonNIST 800-53Audit ComplianceAnalytical SkillsTroubleshootingCollaborationCommunication

Required

5–8 years of hands-on experience in network and infrastructure security engineering within enterprise and/or regulated environments
2+ years of experience managing enterprise firewall technologies, with strong working knowledge of Palo Alto Networks Next-Generation Firewalls (NGFW), security policy design, rule optimization, VPNs, and threat prevention capabilities
2+ years of experience securing cloud environments across AWS, GCP, and/or Microsoft Azure, including implementation of native security controls, and multi-cloud connectivity architectures
Experience supporting or operating in public sector or FedRAMP-aligned environments, with familiarity implementing and maintaining controls aligned to NIST 800-53, and CIS Benchmarks
Strong understanding of Zero Trust architecture principles, identity & access controls, and secure service-to-service communication
Solid knowledge of IP networking fundamentals, including routing, switching, VPNs (IPSec/SSL), DNS, NAT, load balancing, and hybrid cloud networking design
Experience designing, deploying, and maintaining secure cloud infrastructure using Infrastructure-as-Code (IaC) tools (e.g., Terraform) and automation frameworks
Proficiency with scripting and automation using Python or Go, including experience integrating security controls via REST APIs and automating operational workflows
Experience performing firewall rule reviews and access control evaluations across complex enterprise environments to ensure alignment with compliance and least privilege standards
Working knowledge of PKI and certificate lifecycle management, including TLS configuration, certificate issuance/renewal, and mutual authentication
Strong experience with OS-level security hardening across Linux (RHEL, Ubuntu) and Windows Server, including patch management, log monitoring, secure configuration enforcement, and adherence to CIS/NIST baselines
Experience securing and integrating Microsoft Active Directory (AD) environments, including Group Policy management, RBAC, LDAP integrations, and hybrid identity federation
Experience supporting audit and compliance activities, including control validation, documentation, and evidence collection for FedRAMP, SOC 2, or ISO 27001
Strong analytical and troubleshooting skills with the ability to work independently while collaborating effectively with cross-functional teams (Network Engineering, Cloud Infrastructure, IAM, GRC, SRE)

Preferred

CISSP, PCNSE, AWS Security Specialty, GCP Professional Cloud Security Engineer preferred

Benefits

Restricted stock units
Bonus

Company

Palo Alto Networks

twittertwittertwitter
Glassdoor4.1
company-logo
Palo Alto Networks is a cybersecurity company that offers cybersecurity solutions for organizations.
dateFounded in 2005
location
Santa Clara, California, USA
people-size10001+ employees
web-link
http://www.paloaltonetworks.com

H1B Sponsorship

Palo Alto Networks has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (579)
2024 (482)
2023 (341)
2022 (452)
2021 (493)
2020 (235)

Funding

Current Stage
Public Company
Total Funding
$65M
Key Investors
Icon VenturesLehman HoldingsGlobespan Capital Partners
2012-07-20IPO
2008-11-03Series C· $10M
2008-08-18Series C· $27M

Leadership Team

leader-logo
Helmut Reisinger
CEO EMEA
linkedin
leader-logo
Nikesh Arora
Chairman CEO
linkedin

Recent News

The Times Of Israel
Check Point snaps up three Israeli startups to bolster its AI security arsenal
2026-02-13
Newswire
ITPro Hosted its Second Annual ITPro Awards in Central London
2026-02-13
Tech in Asia
Palo Alto plans dual listing in Israel after CyberArk acquisition
2026-02-13
Company data provided by crunchbase