Job Specifications
STAND 8 provides end-to-end IT solutions to enterprise partners across the United States and with offices in Los Angeles, New York, New Jersey, Atlanta, and more including internationally in Mexico and India.
Our solutions team is looking for a Perimeter (Firewall) Network Engineer who thrives on solving complex technical challenges and wants to be at the forefront of next-generation cloud and perimeter security. In this project, you'll be the go-to expert behind a high-performance perimeter network built on Palo Alto Networks technologies, enabling seamless, secure, and scalable connectivity across global cloud environments.
You'll work with GlobalProtect, Panorama, and Prisma Access, as well as AWS Direct Connect and Azure ExpressRoute, to build and protect the pipelines that carry mission-critical traffic - including live video transport "on air."
This isn't a routine operations role - it's an opportunity to design, optimize, and lead. You'll serve as the Tier 3/Tier 4 escalation authority, guiding and uplifting a global operations team while building out a modern, resilient perimeter network environment. If you're passionate about cloud networking, firewall security, and building something new that matters, this is your chance to make a visible impact from day one.
If you're interested in taking the next step in contributing to an exciting opportunity to build next-generation networks, we'd love to hear from you!
Key Responsibilities
Design, configure, and maintain perimeter network infrastructure with a primary focus on Palo Alto Networks firewalls (PA-Series, VM-Series, and Prisma Access).
Manage and optimize Panorama for centralized policy management, configuration, and visibility across distributed firewall deployments.
Implement and support Palo Alto GlobalProtect VPN solutions for secure remote access and user identity management.
Integrate and support AWS Direct Connect and Azure ExpressRoute connections for secure, high-throughput connectivity between on-premises and cloud environments.
Troubleshoot complex network circuits, routing paths, and direct connects for bandwidth optimization and latency reduction.
Design and maintain secure DMZ and edge network architectures, ensuring proper segmentation and traffic control between internal, external, and cloud environments.
Support and troubleshoot video transport networks and streaming delivery to and from cloud providers for "on-air" broadcast reliability.
Collaborate with cross-functional teams to build a new perimeter support operations framework, improving incident management and escalation processes.
Act as the Tier 3/Tier 4 escalation point for perimeter-related issues managed by third-party/offshore operations teams.
Participate in incident response and problem resolution activities, including root cause analysis, corrective action implementation, and documentation.
Assist in network performance monitoring, capacity planning, and proactive tuning using Palo Alto, AWS CloudWatch, and network telemetry tools.
Support security compliance initiatives by ensuring network policies and configurations align with corporate and regulatory standards (e.g., NIST, CIS benchmarks).
Required Skills and Experience
5+ years of experience in network engineering, with a focus on firewalls, perimeter security, and cloud connectivity.
Expert-level experience with Palo Alto Networks technologies, including GlobalProtect, Panorama, and Prisma Access.
Strong hands-on experience with AWS Direct Connect, Azure ExpressRoute, and cloud network routing (VPC, VNets, Transit Gateway).
Proficiency in TCP/IP, BGP, OSPF, IPsec, GRE, and advanced routing/switching concepts.
Solid understanding of DMZ architectures, zero trust segmentation, and network access control (NAC) principles.
Experience in circuit troubleshooting and working with ISPs to escalate and resolve connectivity and performance issues.
Familiarity with video/media transport networks, multicast, and streaming over IP for content delivery.
Demonstrated ability to perform packet capture and deep-dive analysis using tools like Wireshark, Splunk, or Palo Alto Traffic Logs.
Experience in incident response and problem management, including creating post-incident reviews and knowledge base documentation.
Certifications preferred: Palo Alto Networks Certified Network Security Engineer (PCNSE), AWS Advanced Networking, or CCNP Security.
Nice to Have
Experience automating network operations using Python, Ansible, or Terraform, especially for Palo Alto Panorama or Prisma Access environments.
Familiarity with SD-WAN technologies and integrations (e.g., Palo Alto CloudGenix, Cisco SD-WAN, or Fortinet Secure SD-WAN).
Hands-on experience with network monitoring and observability platforms like SolarWinds, NetBrain, or Splunk Enterprise Security for proactive perimeter visibility.
Exposure to cloud-native networking and security services (e.g., AWS Transit Gateway, AWS Network Firewall, Azure Firewall, or Palo Alto CN-