Cloud Security Architect

Company: Palo Alto Networks
Location: Santa Clara
Posted on: May 11, 2022

Job Description:

Company DescriptionOur MissionAt Palo Alto Networks everything starts and ends with our mission:Being the cybersecurity partner of choice, protecting our digital way of life.We have the vision of a world where each day is safer and more secure than the one before. These aren t easy goals to accomplish but we re not here for easy. We re here for better. We are a company built on the foundation of challenging and disrupting the way things are done, and we re looking for innovators who are as committed to shaping the future of cybersecurity as we are.Disruption is at the core of our technology and on our way of work to meet the needs of our employees now and in the future through FLEXWORK, our approach to how we work. We re changing the nature of work from benefits to learning, location to leadership, we ve rethought and recreated every aspect of the employee experience at Palo Alto Networks. And because it FLEXes around each individual employee based on their individual choices, employees are empowered to push boundaries and help us all evolve, together.Job DescriptionYour Career As the Cloud Security Architect at Palo Alto Networks, you will lead the effort to secure the largest security company in the world. You will join a team of security architects responsible for setting the direction and coordinating efforts across Palo Alto Networks Operations, Attack Surface Management, Network, IaC/PaC, SOC, and Platform Services Engineering on all security topics. Your Impact

• Work alongside the engineering teams, providing expert guidance, leadership, and advice on secure cloud architecture, design, and implementation
• Provide architectural guidance and leadership, coordinate delivery of security, defense, and operational capabilities for Palo Alto Networks public cloud
• Provide domain expertise around public cloud and enterprise technology
• Perform security assessments and engineering analysis for complex, multi-platform systems and services in GCP, AWS, Azue, other environments
• Develop security architecture standards, frameworks, guidelines, and design patterns spanning all layers of security in the cloud from host, server, and network to application and data security
• Provide recommendations and implementation guidance for the security of the public cloud and security in the public cloud
• Identify opportunities for security tooling and automation with the goal of translating security standards into policy as code and infrastructure as code that is secure by default
• Lead with code, automation, and data in everything you do
• Review and enhance security policies and operational procedures that provide continuous security for our public cloud platforms
• Define baseline security standards for securing in AWS, Azure, GCP, and Kubernetes
• Help proactively assess security risk through a deep understanding of current and future states of our products and services, threat modeling, requirements, design, architecture, and implementation reviews
• Ensure security standard methodologies are identified and integrated into all facets of projects including network, system designs/configuration, and implementations
• Use tools and experience to review architecture and deployments, identify misconfigurations and vulnerabilities in FedRAMP cloud environments.
• Make recommendations on secure integration strategies, global enterprise architectures, and application infrastructure based on best practices.
• Develop security architectures aligned enterprise architecture business strategies for use of the public cloud.
  • Analyze business impact and risks based on emerging security threats and vulnerabilities,recommend mitigating solutions
    • Partner with internal teams to ensure success of security and compliance programs aligned with client expectations and regulatory requirements QualificationsYour Experience
      • 8 to 10 years of experience in infrastructure security OR experience in DevOps as an architect in large-scale, distributed software projects, preferably with cloud service providers (SaaS, IaaS, PaaS)
      • Experience with IT security and privacy risk assessments and audits of IT general security controls
      • 4-6 years of experience with GCP/AWS cloud architecture and security.
      • Experience securing, architecting, designing and implementing highly-distributed global cloud-based environments, specifically in GCP and AWS.
      • Experience with structured secure enterprise architecture practices, hybrid cloud environments and on-premise to cloud roadmaps.
      • Ability to collaborate across organizational boundaries, build relationships and achieve broader organizational goals.
      • Experience in designing and securing cloud platforms
        • Experience working with virtual machines and containers (Docker, Kubernetes).
        • Good working knowledge of infrastructure security concepts including firewalls, DMZs, intrusion detection/prevention systems, network security, application security concepts, password management, RBAC, access provisioning, SIEM and OWASP.
          • Experience with the phases of the software development lifecycle
          • Experience with common vulnerability scanning and penetration testing tools
          • Knowledge of common computer security issues, including network and application vulnerabilities
            • Thorough understanding of computer networking, routing, and protocols.
            • Have sound security concepts with proficiency in public cloud security, networking, host security, shared responsibility model. Deep understanding of security controls for modern architecture, especially AWS, Azure, GCP, and Kubernetes-based delivery platforms
            • Comprehensive experience in selecting, operating, and rationalizing security tooling for common security processes, including CSPMs, vulnerability scanners, etc.
            • Experience in threat modeling, security code reviews for cloud native applications and Infrastructure as Code to identify security flaws.
              Education
              • Bachelor's degree from four-year college or university; or equivalent training, education, and experience in information / cyber security, computer systems, IT, etcAdditional InformationThe Team
                
                Think about it, security for an information security company. Working at a high-tech cybersecurity company within the Information Security team is a once in a lifetime opportunity. You ll be joined with the brightest minds in technology, our global teams on the front line of defense against cyberattacks. We re joined by one mission but driven by the impact of that mission and what it means to protect our way of life in the digital age. Join a dynamic and fast-paced team that feels excitement at the prospect of a challenge and feels a thrill at resolving security gaps that inhibit our privacy.Our CommitmentWe re trailblazers that dream big, take risks, and challenge cybersecurity s status quo. It s simple: we can t accomplish our mission without diverse teams innovating, together. To learn more about our culture and dedication to inclusion and innovation, visit our .Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.Additionally, we are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or an accommodation due to a disability or special need, please contact us at ...@paloaltonetworks.com.Learn more about the amazing work experience at Palo Alto Networks All your information will be kept confidential according to EEO guidelines. #LI-MT1 Covid-19 Vaccination Information for Palo Alto Networks Jobs
                • Vaccine requirements and disclosure obligations vary by country.
                • Unless applicable law requires otherwise, you must be vaccinated for COVID or qualify for a reasonable accommodation if:
                  • The job requires accessing a company worksite
                  • The job requires in-person customer contact and the customer has implemented such requirements
                  • You choose to access a Palo Alto Networks worksite
                  • If you have questions about the vaccine requirements of this particular position based on your location or job requirements, please inquire with the recruiter.

Keywords: Palo Alto Networks, Santa Clara , Cloud Security Architect, Professions , Santa Clara, California