Security Architect / Senior Security Engineer – Cloud & Enterprise Security

Location: Hybrid (4 days onsite – New Jersey)
Type: Full-time
Reports to: Director of Cybersecurity

About the Role

We’re looking for a hands-on Security Architect/Senior Engineer with deep expertise in Palo Alto Networks, especially GlobalProtect VPN, to help design, implement, and optimize our security infrastructure. This isn’t a pure architecture role—you’ll be a true player-coach, working across architecture, engineering, implementations, and day-to-day SOC-level troubleshooting.

You’ll help lead our transition from Cisco ASA to Palo Alto GlobalProtect, and we need someone who can not only deploy it, but truly get the most out of the platform. Palo Alto is a strategic pillar of our security stack, and we need a candidate who brings real depth in this area.

What You’ll Do

• Lead the implementation and ongoing optimization of Palo Alto firewalls and GlobalProtect VPN

• Serve as a subject matter expert (SME) across Palo Alto platforms, with a focus on design, policy tuning, and advanced troubleshooting

• Architect and implement security solutions across cloud (Azure, GCP), hybrid, and on-prem environments

• Participate in SOC-level analysis, hands-on engineering, incident response, and infrastructure hardening

• Work cross-functionally to embed security into infrastructure, apps, and user access

• Maintain and fine-tune other core security tools including: Zscaler, CrowdStrike, Defender, Proofpoint

• Guide IAM/PAM architecture (Okta, Active Directory, MFA)

• Contribute to policy development and control alignment (NIST, CIS, Zero Trust)

What You Bring

• 7–10+ years of experience in security engineering and architecture

• Deep, hands-on experience with Palo Alto firewalls and GlobalProtect VPN (implementation, policy design, optimization, troubleshooting)

• Familiarity with legacy Cisco ASA VPNs and migration experience is a plus

• Experience across cloud platforms: Azure, GCP

• Strong scripting or automation experience (Python, PowerShell, Terraform)

• Familiarity with security monitoring, incident response, and SOC practices

• Strong knowledge of frameworks: NIST, ISO 27001, CIS Benchmarks, Zero Trust

• Excellent communication skills and a team-first attitude

Certifications

• Required: CISSP

• Preferred: CISM, CCSP, or relevant vendor-specific certs (e.g., Palo Alto PCNSA/PCNSE)

Why Join Us

• Be part of a collaborative team where leadership is hands-on

• Contribute to meaningful, strategic projects with real technical depth

• Enjoy a hybrid work model with strong internal visibility and growth potential