Posted 1 week ago
Secret
$125,000 - $135,000
Unspecified
Remote/Hybrid• (Off-Site/Hybrid)
Palo Alto Networks Firewall Administrator
Full Time | Remote | Secret Clearance required
SteelGate is seeking a Palo Alto Networks Firewall Administrator to support a DoW organization in operating, optimizing, and securing next-generation firewall (NGFW) capabilities. This role focuses on policy lifecycle management, rule optimization and block implementation, ensuring configurations meet security and compliance requirements, and implementing directives in a mission environment.
Key Responsibilities
• Administer and support Palo Alto Networks NGFWs in production environments. This includes creating, maintaining, and analyzing Palo Alto Networks' NGFW traffic reports to support internal security analysis and operational decision-making.
• Manage centralized configuration and operations using Panorama (templates, device groups, policy push, commits, and upgrades as applicable).
• Create, maintain, and document policy-based security rules, including lifecycle ownership (request intake, analysis, implementation, validation, and periodic review).
• Perform rule optimization (cleanup, consolidation, shadowed/unused rule remediation, recertification support, and performance-aware tuning).
• Implement blocks and directives (e.g., mandated deny policies, emergency blocks, and governance-driven changes) with clear validation and rollback planning.
• Build and maintain rules leveraging App-ID, including application-based segmentation and least-privilege access patterns. This also includes converting legacy firewall rulesets to App-ID rulesets in order to improve visibility, control, modernization, and effectiveness.
• Develop, tune, and maintain Palo Alto Networks security profiles to balance production traffic requirements with organizational risk tolerance.
• Ensure firewall configurations align with security requirements (hardening, logging standards, auditing, and control evidence as required). Recommend/implement changes if intended requirements/security outcomes are not met.
• Troubleshoot traffic and policy behavior using logs and tools (e.g., Traffic logs, Threat logs, URL logs; policy match reasoning; session troubleshooting). Maintain and manager URL and IP whitelists/blacklists based on threat intelligence, security reports, and organizational needs.
• Partner with security operations, network teams, and stakeholders to support change management, incident response, and continuous improvement.
• Maintain accurate documentation (network/security diagrams as needed, rule justification, standard operating procedures, and change records).
Qualifications
• At least 5 years experience with hands-on administration Palo Alto Networks firewalls in an enterprise environment. Additional networking experience outside of Palo Alto does not count towards this requirement, but additional networking experience is beneficial/preferred.
• Demonstrated experience with Panorama administration and centralized policy management.
• Strong working knowledge of App-ID and designing/enforcing application-based rules.
• Proven ability to execute rule optimization and implement/validate deny blocks and operational directives.
• Experience developing and maintaining policy-based rules aligned to security requirements and audit expectations.
• Familiarity with firewall concepts: zones, routing, NAT, security profiles, SSL decryption (if applicable), URL filtering, logging/monitoring, and change control.
• Ability to write clear technical documentation and communicate risk/impact to stakeholders, management, peers, and junior staff.
• Familiarity with Oracle Cloud will elevate a candidates' likelihood to receive an offer.
• A background in Agile teaming, with practical Jira usage is preferred.
• Active Secret clearance required
Preferred Certifications
• Palo Alto certifications (e.g., PCNSA/PCNSE)
Job Type: Full Time
Work Location: Remote
Salary: $125,000 - $135,000 based on experience
Schedule: Monday-Friday
Benefits:
• 401(k) matching
• Full Medical
• Paid time off
• Professional development assistance
STEELGATE LLC is a Service-Disabled, Veteran-Owned Small Business (SDVOSB) that prides itself in hiring top-level Subject Matter Experts (SME's) proven to exceed deliverable expectations. STEELGATE LLC is focused on solving the hard problems facing our government and commercial clients. Our success lies in blending together relevant domain/functional knowledge with deep expertise in Information Technology, Cybersecurity, Defensive Cyber Operations, cloud-based DevSecOps, Data Analytics & AI, Acquisition and Acquisition Management, and more. STEELGATE LLC has a positive, inclusive workplace environment where all team members and partners work towards mutual success. We have established a reliable reach-back program whereas all SMEs are available to support, advise and directly complete mission deliverables when necessary. STEELGATE LLC has a worldwide reputation as a valued and trustworthy partner. Our can-do attitude and willingness to support any mission requirement sets us apart from other small business organizations. Find out more about STEELGATE LLC @ www.steelgatellc.com.
We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law.
Full Time | Remote | Secret Clearance required
SteelGate is seeking a Palo Alto Networks Firewall Administrator to support a DoW organization in operating, optimizing, and securing next-generation firewall (NGFW) capabilities. This role focuses on policy lifecycle management, rule optimization and block implementation, ensuring configurations meet security and compliance requirements, and implementing directives in a mission environment.
Key Responsibilities
• Administer and support Palo Alto Networks NGFWs in production environments. This includes creating, maintaining, and analyzing Palo Alto Networks' NGFW traffic reports to support internal security analysis and operational decision-making.
• Manage centralized configuration and operations using Panorama (templates, device groups, policy push, commits, and upgrades as applicable).
• Create, maintain, and document policy-based security rules, including lifecycle ownership (request intake, analysis, implementation, validation, and periodic review).
• Perform rule optimization (cleanup, consolidation, shadowed/unused rule remediation, recertification support, and performance-aware tuning).
• Implement blocks and directives (e.g., mandated deny policies, emergency blocks, and governance-driven changes) with clear validation and rollback planning.
• Build and maintain rules leveraging App-ID, including application-based segmentation and least-privilege access patterns. This also includes converting legacy firewall rulesets to App-ID rulesets in order to improve visibility, control, modernization, and effectiveness.
• Develop, tune, and maintain Palo Alto Networks security profiles to balance production traffic requirements with organizational risk tolerance.
• Ensure firewall configurations align with security requirements (hardening, logging standards, auditing, and control evidence as required). Recommend/implement changes if intended requirements/security outcomes are not met.
• Troubleshoot traffic and policy behavior using logs and tools (e.g., Traffic logs, Threat logs, URL logs; policy match reasoning; session troubleshooting). Maintain and manager URL and IP whitelists/blacklists based on threat intelligence, security reports, and organizational needs.
• Partner with security operations, network teams, and stakeholders to support change management, incident response, and continuous improvement.
• Maintain accurate documentation (network/security diagrams as needed, rule justification, standard operating procedures, and change records).
Qualifications
• At least 5 years experience with hands-on administration Palo Alto Networks firewalls in an enterprise environment. Additional networking experience outside of Palo Alto does not count towards this requirement, but additional networking experience is beneficial/preferred.
• Demonstrated experience with Panorama administration and centralized policy management.
• Strong working knowledge of App-ID and designing/enforcing application-based rules.
• Proven ability to execute rule optimization and implement/validate deny blocks and operational directives.
• Experience developing and maintaining policy-based rules aligned to security requirements and audit expectations.
• Familiarity with firewall concepts: zones, routing, NAT, security profiles, SSL decryption (if applicable), URL filtering, logging/monitoring, and change control.
• Ability to write clear technical documentation and communicate risk/impact to stakeholders, management, peers, and junior staff.
• Familiarity with Oracle Cloud will elevate a candidates' likelihood to receive an offer.
• A background in Agile teaming, with practical Jira usage is preferred.
• Active Secret clearance required
Preferred Certifications
• Palo Alto certifications (e.g., PCNSA/PCNSE)
Job Type: Full Time
Work Location: Remote
Salary: $125,000 - $135,000 based on experience
Schedule: Monday-Friday
Benefits:
• 401(k) matching
• Full Medical
• Paid time off
• Professional development assistance
STEELGATE LLC is a Service-Disabled, Veteran-Owned Small Business (SDVOSB) that prides itself in hiring top-level Subject Matter Experts (SME's) proven to exceed deliverable expectations. STEELGATE LLC is focused on solving the hard problems facing our government and commercial clients. Our success lies in blending together relevant domain/functional knowledge with deep expertise in Information Technology, Cybersecurity, Defensive Cyber Operations, cloud-based DevSecOps, Data Analytics & AI, Acquisition and Acquisition Management, and more. STEELGATE LLC has a positive, inclusive workplace environment where all team members and partners work towards mutual success. We have established a reliable reach-back program whereas all SMEs are available to support, advise and directly complete mission deliverables when necessary. STEELGATE LLC has a worldwide reputation as a valued and trustworthy partner. Our can-do attitude and willingness to support any mission requirement sets us apart from other small business organizations. Find out more about STEELGATE LLC @ www.steelgatellc.com.
We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law.
group id: 91133289
N
