Job Title: Network Security Engineer
Location: Remote
Duration: 6 months
Top 3 Required Skills:
• Hands on experience with Palo Alto Firewalls (PA Series, Panorama)
• Hands on experience - Firewall technologies (NGFW, IPS/IDS)
• Hands on experience - SSL/TLS Decryption and certificate management
Top 3 Preferred Skills:
1. TCP/IP, DNS, HTTP/HTTPS protocols
• Network routing and switching (BGP, OSPF)
• VPN technologies (IPSec, SSL VPN)
• Proficiency in Service Now
• Years of Experience: 7 to 10 years
Required Skills
Hands-on experience with Palo Alto Firewalls (PA Series| Panorama)
Firewall technologies (NGFW| IPSIDS)
SSLTLS Decryption and certificate management
Strong knowledge of TCPIP| DNS| HTTPHTTPS protocols
Network routing and switching (BGP| OSPF)
VPN technologies (IPSec| SSL VPN)
Experience handling encrypted traffic inspection and security implications.
Proficiency in Service NowCertifications
Preferred Palo Alto Certifications PCNSA (Network Security Administrator)PCNSE (Network Security Engineer)Other relevant certifications CCNA CCNP Security
Experience with cloud security (AWSAzureGoogle Cloud Platform) and firewall integrations is a plus.
Automation using Python| Ansible| or APIs
Responsibilities:
Firewall Network Security Management
Configure| deploy| and manage Palo Alto Next-Generation Firewalls (NGFW).
Implement and maintain security policies| NAT| VPNs (IPSecSSL)| and high availability configurations.
Perform rule base optimization| firewall audits| and policy standardization.
Troubleshoot connectivity and security-related issues across enterprise environments.
Palo Alto Solutions Administration
Manage and support Palo Alto ecosystem components including Panorama (centralized management) GlobalProtect (remote access VPN) WildFire (advanced threat detection)
Configure application-aware and user-based policies (App-ID| User-ID).Apply URL filtering| anti-malware| and threat prevention profiles.
Handle firmware upgrades| patches| and device lifecycle management.
SSL Decryption (Core Focus)
Design and implement SSLTLS decryption strategies (inbound and outbound).
Configure forward proxy and inbound inspection for encrypted traffic.
Manage certificates| PKI infrastructure| and trust chains for decryption deployment.
Monitor decrypted traffic for threats while maintaining privacy and compliance.
Troubleshoot SSL decryption failures| certificate issues| and application compatibility.
Ensure compliance with security policies and regulatory requirements during decryption.