Senior Information Security Engineer-Palo Alto Firewalls

About this role:

Wells Fargo is seeking a Senior Information Security Engineer - Palo Alto Firewalls to join our team and contribute to the design, deployment, and ongoing support of secure, scalable network infrastructures. This role is ideal for professionals with a strong foundation in enterprise firewall technologies, particularly Palo Alto Networks, and Fortinet, along with working knowledge of Cisco infrastructure products. Learn more about the career areas and business divisions at wellsfargojobs.com.

You will be responsible for implementing and maintaining advanced security solutions, leading firewall migrations, and ensuring the integrity and performance of network security systems. A key part of this role involves using industry-standard migration tools to transition legacy systems to modern platforms with minimal disruption.

The ideal candidate brings a proactive approach to problem-solving, a deep understanding of network security principles, and the ability to work across teams to align security strategies with business goals. Experience in multi-vendor environments and a willingness to adapt to evolving technologies will be highly valued.

Key Responsibilities:

• Design, implement, and maintain secure network infrastructures using Palo Alto Networks, Fortinet, and Cisco routing and switching products.
• Lead and support firewall migration projects, including policy analysis, configuration translation, and deployment using tools such as Expedition, FortiConverter, SmartMove, and other vendor utilities.
• Build and deploy new network security infrastructures, including greenfield implementations and expansion of existing environments.
• Perform security policy reviews, rulebase optimization, and threat prevention tuning to align with best practices and compliance requirements.
• Troubleshoot and resolve complex network security issues across multi-vendor environments, ensuring minimal downtime and optimal performance.
• Collaborate with cross-functional teams (network, cloud, infrastructure, and application teams) to integrate security controls into enterprise architecture.
• Maintain accurate and up-to-date documentation, including network diagrams, configuration standards, and operational procedures.
• Monitor and respond to security events, alerts, and incidents, escalating as necessary and contributing to root cause analysis and remediation.
• Participate in a rotational on-call schedule to provide after-hours support for critical network security incidents and maintenance activities.
• Stay current with emerging threats, vulnerabilities, and technologies to continuously improve the organization’s security posture.

Required Qualifications:

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 2+ years of hands-on experience in network security engineering, with a strong focus on enterprise-grade firewall platforms and secure network architecture.
• 2+ years of experience configuring, managing, and troubleshooting firewalls and security management systems across Palo Alto Networks
• 2+ years of experience in security policy design, rulebase optimization, and hardening of multi-vendor firewall environments to meet organizational and compliance standards
• 2+ years of experience in Panorama – template stacks, device groups, policy hierarchy, logging, reporting, custom dashboards, role-based control.

Desired Qualifications:

• Industry certifications such as Palo Alto Networks Certified Network Security Administrator (PCNSA), Palo Alto Networks Certified Network Security Engineer (PCNSE), Fortinet Network Security Expert 4 or 5 (NSE4/5)
• 1+ years of practical experience using firewall migration tools such as Expedition, FortiConverter, SmartMove
• Proficiency in troubleshooting complex network and security issues across multi-vendor environments, including deep packet inspection, log analysis, and root cause identification
• Strong understanding of network protocols, routing and switching, VPN technologies, NAT, and intrusion prevention systems
• Familiarity with incident response, log analysis, and security monitoring tools
• Familiarity with automation and scripting for network security tasks using tools like Python, Ansible, or Terraform
• Familiarity with cloud security architectures and controls in AWS, Azure, or Google Cloud Platform
• Exposure to SIEM platforms, log management, and threat intelligence tools.
• Ability to manage and prioritize multiple projects in a fast-paced, dynamic environment
• Strong interpersonal skills and the ability to communicate technical concepts to non-technical stakeholders
• Ability to participate in a rotational on-call schedule and respond to after-hours incidents or maintenance tasks
• Strong documentation skills and attention to detail.

Job Expectations:

• This position offers a hybrid work schedule
• This position is not eligible for Visa sponsorship​
• Relocation assistance is not available for this position
• Flexibility to work in a on call 24/7 environment.

Pay Range

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to demonstrated examples of prior performance, skills, experience, or work location. Employees may also be eligible for incentive opportunities.

Benefits

Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement

Posting End Date:

* Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.