Trusted Internet Connections 3.0 Cloud Network Security Architect

7 hours, 42 minutes ago
Full-time
Senior
DevOps and Infrastructure
TOMORROW HIRE

TOMORROW HIRE

TOMORROW HIRE specializes in revolutionizing the hiring process by integrating AI-driven technology and human expertise to create efficient, precise, and effective staffing solutions for businesses.

Internet Software & Services

Description

  • Architect and manage complex AWS network environments to meet TIC 3.0 and federal security standards.
  • Deploy and manage Palo Alto VM-Series firewalls in AWS, including GlobalProtect, Panorama, and security policy orchestration.
  • Use Terraform or CloudFormation to deploy networking components through Infrastructure as Code and maintain repeatable, documented, and auditable environments.
  • Configure, troubleshoot, and maintain hybrid connectivity solutions, including AWS Direct Connect, Site-to-Site VPNs, and SD-WAN integrations.
  • Design and implement Transit Gateway architecture and VPC peering in multi-account AWS environments.
  • Apply Zero Trust principles and TIC 3.0 requirements within AWS and Palo Alto ecosystems to strengthen application and network security.
  • Serve as the primary or sole Network Architect/Engineer responsible for discovery, documentation, design, and execution with minimal supervision.
  • Collaborate with stakeholders to deliver secure, compliant network designs that support mission-critical federal applications.

Requirements

  • 5+ years of experience architecting and managing complex AWS network environments.
  • 3+ years of experience deploying and managing Palo Alto VM-Series firewalls in AWS, including GlobalProtect, Panorama, and security policy orchestration.
  • 2+ years of experience with Terraform or CloudFormation for Infrastructure as Code deployments.
  • Experience configuring and troubleshooting hybrid connectivity and WAN solutions, including AWS Direct Connect, Site-to-Site VPNs, and SD-WAN integrations.
  • Knowledge of Transit Gateway architecture and VPC peering in multi-account environments.
  • Knowledge of implementing Zero Trust and TIC 3.0 principles within AWS or Palo Alto environments.
  • Ability to function as the sole Network Architect or Engineer with minimal supervision.
  • Ability to obtain and maintain a Public Trust or Suitability/Fitness determination.
  • High school diploma or GED.
  • AWS Certified Advanced Networking – Specialty certification preferred.
  • Palo Alto Networks Certified Network Security Engineer (PCNSE) certification preferred.
  • Bachelor’s degree preferred.
  • Active Secret clearance preferred.

Benefits

  • Salary range of $160,000-$190,000.
  • Fully remote work arrangement.
  • Health insurance.
  • Vision insurance.
  • Dental insurance.
  • PTO.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Senior IT Engineer - Remote

Zyte 251-1K Professional Services

Zyte is hiring a Senior IT Engineer to architect and automate its global internal business systems, IT operations, and SaaS ecosystem for a remote-first company.

AWS Bash Docker EC2 GCP GitHub Go GraphQL HubSpot Kubernetes Linux macOS Microservices Node.js Notion OAuth Python REST API Salesforce SAML
59 minutes ago

Network & Systems Security Analyst

qode Internet Software & Services

Utilities Company is seeking a Network & Systems Security Analyst for a 1-year contract in Tampa, FL to support and secure network, server, storage, and IT service management infrastructure.

Network Security Windows Server
1 hour, 18 minutes ago

Cloud Infrastructure Engineer

Clover Health 251-1K Insurance

Clover is seeking an experienced Cloud Infrastructure Engineer to help maintain and improve the infrastructure powering its globally distributed healthcare platform.

AWS CI/CD Docker GCP Go Kubernetes Python
4 hours, 3 minutes ago

Network Engineer

K2 Space Corporation 51-200 Defense and Space Manufacturing

K2 Space is hiring a Network Engineer to support the infrastructure connecting its production labs, data centers, cloud systems, and mission-critical operations for a fast-growing satellite startup.

DHCP FTP Network Security SSH TCP/IP TLS
5 hours, 42 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers