Sr. Cloud Network Security Engineer

  • Pleasanton, CA
  • Posted 20 days ago | Updated 20 days ago

Overview

Hybrid
$80 - $110
Full Time
No Travel Required

Skills

Azure
cloud network security
GCP
VNet Gateways
ExpressRoute
VNet Peering
BGP
hybrid cloud networking
Palo Alto firewalls
WAF
DDoS
IDS
IPS
SIEM integrations
PCNSA
PCNSE
Azure (AZ-500
AZ-700)
multi-cloud security architectures
Kubernetes security
GKE
AKS
service mesh
VPC
Network Security Groups (NSGs)
Firewall Policies
VM-Series
Cloud NGFW

Job Details

You must be local to: Pleasanton, CA / Phoenix, AZ or Plano, TX Only - Do not apply if you are not in these 3 locations.

W2 and C2C Accepted

Job Summary:

Sr. Cloud Network Security SME (Azure/Google Cloud Platform/OCI , Palo, Fortinet, R&S)

  • Design, implement, and manage secure cloud network architectures in Azure & Google Cloud Platform, including VNet Gateways, ExpressRoute, VNet Peering, VPNs, and BGP routing.
  • Configure, deploy, and troubleshoot Palo Alto firewalls (VM-Series, Cloud NGFW) for cloud environments, ensuring optimal security posture.
  • Implement and manage hybrid connectivity solutions (ExpressRoute, VPN, Private Peering) with BGP routing optimizations.
  • Secure cloud environments using Network Security Groups (NSGs), Firewall Policies, Private Endpoints, and Zero Trust architectures.
  • Troubleshoot complex network and security issues related to cloud connectivity, firewall policies, and routing (BGP, UDRs).
  • Design, implement, and optimize BGP routing for hybrid/multi-cloud architectures, including route advertisements, ASN configurations, and path selection in Azure (ExpressRoute/VPN Gateway) and Google Cloud Platform (Cloud Router, HA VPN, Interconnect).
  • Architect and secure Google Cloud Platform networking components, including VPC peering, Shared VPC, Cloud Load Balancing, and Hybrid Connectivity (Partner/Private Interconnect) with BGP-based dynamic routing.
  • Troubleshoot BGP session flapping, asymmetric routing, and route propagation issues across cloud and on-prem environments.

Required Skills & Qualifications:

  • 8+ years of experience in cloud network security, with deep expertise in Azure & Google Cloud Platform.
  • Hands-on experience with VNet Gateways, ExpressRoute, VNet Peering, BGP, and hybrid cloud networking.
  • Expert-level knowledge in Palo Alto firewalls (installation, configuration, troubleshooting, policy management).
  • Strong understanding of cloud security controls (WAF, DDoS protection, IDS/IPS, SIEM integrations).
  • Certifications preferred:
    • Palo Alto (PCNSE, PCNSA)
    • Azure (AZ-500, AZ-700)
    • Google Cloud Platform (Professional Cloud Security Engineer, Professional Cloud Network Engineer)
  • Strong problem-solving skills and ability to work in a fast-paced environment.

Nice to Have:

  • Experience with multi-cloud security architectures (AWS is a plus).
  • Knowledge of Kubernetes security (GKE, AKS) and service mesh (Istio, Anthos).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.