Cyber Palo Alto Networks Security Engineer/ Senior Consultant, Strategy, Growth, and Transformation
Cloud
Cloud Infrastructure
Cloud Platforms
Cloud Technology
Consulting
Cybersecurity Tools
Engineer
Firewall
Firewall Management
Identity and Access Management
Information Security
InfoSec
Infrastructure As Code
Next Generation Firewall
Palo Alto Networks
Panorama
Prisma Access
Security
Security Automation
SOAR
Solution Architecture
Strategic Advisory
Job Description
Deloitte seeks a Cyber Palo Alto Networks Security Engineer / Senior Consultant to join the Cyber Enterprise Security team in Houston, TX on-site, with a yearly salary range of USD 105,400 to 207,800.
Responsibilities
- Design, deploy, and manage Palo Alto Networks Next-Generation Firewalls (NGFW) across on-premises and cloud environments, including AWS, Azure, and GCP
- Implement and optimize Prisma Access capabilities, including GlobalProtect, Prisma Agent, and Prisma Browser, to support secure internet access and remote connectivity
- Administer Panorama and Strata Cloud Manager to enable centralized policy management, device configuration, visibility, and operational consistency across enterprise environments
- Configure and tune security features such as Threat Prevention, IPS/IDS, Anti-Spyware, Antivirus, WildFire, DNS Security, and SSL/TLS decryption policies
- Develop client solution designs and recommendations, integrating Palo Alto platforms with SIEM/SOAR and identity provider tools, and supporting automation via Terraform, Ansible, or Python
Requirements
- BA/BS degree in a technical field (e.g., Computer Science, Cyber Security, Information Technology) or equivalent work experience
- PCNSE certification
- 5+ years of progressively responsible experience in network security engineering with depth in Palo Alto technologies and increasing technical ownership and leadership
- 5+ years hands-on experience designing, deploying, and managing Palo Alto NGFW in both on-premises and cloud environments (AWS, Azure, and/or GCP)
- 3+ years designing, deploying, and managing Prisma Access, including GlobalProtect, Prisma Agent, and Prisma Browser for internet and secure remote access use cases
- 3+ years designing, deploying, and managing Panorama centralized management, and Strata Cloud Manager
- 3+ years configuring and tuning Threat Prevention features, including IPS/IDS, Anti-Spyware, Antivirus, WildFire, and DNS Security
- 3+ years implementing and troubleshooting SSL/TLS Decryption policies, including forward proxy and inbound inspection, certificate management, and decryption exclusion handling
- 3+ years defining, managing, and reviewing security policies, including rule base optimization, policy lifecycle management, and periodic access reviews
- 3+ years of experience with one or more major cloud providers (AWS, GCP, Azure) and their native security toolsets, including deployment of VM-Series firewalls within cloud-native architectures
- Ability to travel up to 50% on average based on client assignments
- Limited immigration sponsorship may be available
Technologies
- Palo Alto Networks NGFW, Prisma Access, GlobalProtect, Prisma Agent, Prisma Browser, Panorama, Strata Cloud Manager
- Threat Prevention, IPS/IDS, Anti-Spyware, Antivirus, WildFire, DNS Security, SSL/TLS decryption policies
- Terraform, Ansible, Python
- AWS, Microsoft Azure, Google Cloud Platform (GCP)
- VM-Series
- Splunk, Microsoft Sentinel, Palo Alto XSOAR
Benefits
- Discretionary annual incentive program