Lead Information Security Engineer - Palo Alto Firewalls

Full job description
About this role:

Wells Fargo is seeking a Lead Information Security Engineer - Palo Alto Firewalls to join our Chief Technology Office (CTO). Learn more about the career areas and business divisions at wellsfargojobs.com. We are looking for a skilled and driven Lead Information Security Engineer - Palo Alto Firewalls to join our team and contribute to the design, deployment, and ongoing support of secure, scalable network infrastructures. This role is ideal for professionals with a strong foundation in enterprise firewall technologies, particularly Palo Alto Networks and Fortinet, along with working knowledge of Cisco infrastructure products.

You will be responsible for implementing and maintaining advanced security solutions, leading firewall migrations, and ensuring the integrity and performance of network security systems. A key part of this role involves using industry-standard migration tools to transition legacy systems to modern platforms with minimal disruption.

The ideal candidate brings a proactive approach to problem-solving, a deep understanding of network security principles, and the ability to work across teams to align security strategies with business goals. Experience in multi-vendor environments and a willingness to adapt to evolving technologies will be highly valued.

Key Responsibilities:
Design, implement, and maintain secure network infrastructures using Palo Alto Networks, Fortinet, and Cisco routing and switching products.
Lead and support firewall migration projects, including policy analysis, configuration translation, and deployment using tools such as Expedition, FortiConverter, SmartMove, and other vendor utilities.
Build and deploy new network security infrastructures, including greenfield implementations and expansion of existing environments.
Perform security policy reviews, rulebase optimization, and threat prevention tuning to align with best practices and compliance requirements.
Troubleshoot and resolve complex network security issues across multi-vendor environments, ensuring minimal downtime and optimal performance.
Collaborate with cross-functional teams (network, cloud, infrastructure, and application teams) to integrate security controls into enterprise architecture.
Maintain accurate and up-to-date documentation, including network diagrams, configuration standards, and operational procedures.
Monitor and respond to security events, alerts, and incidents, escalating as necessary and contributing to root cause analysis and remediation.
Participate in a rotational on-call schedule to provide after-hours support for critical network security incidents and maintenance activities.
Stay current with emerging threats, vulnerabilities, and technologies to continuously improve the organization's security posture.
Required Qualifications:
5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
4+ years of hands-on experience in network security engineering, with a strong focus on enterprise-grade firewall platforms and secure network architecture.
4+ years of experience configuring, managing, and troubleshooting firewalls and security management systems across Palo Alto Networks
4+ years of experience in security policy design, rulebase optimization, and hardening of multi-vendor firewall environments to meet organizational and compliance standards.
2+ years of experience in Panorama - template stacks, device groups, policy hierarchy, logging, reporting, custom dashboards, role-based control
Desired Qualifications:
Industry certifications such as Palo Alto Networks Certified Network Security Administrator (PCNSA), Palo Alto Networks Certified Network Security Engineer (PCNSE), Fortinet Network Security Expert 4 or 5 (NSE4/5
2+ years of practical experience using firewall migration tools such as Expedition, FortiConverter, SmartMove
Proficiency in troubleshooting complex network and security issues across multi-vendor environments, including deep packet inspection, log analysis, and root cause identification
Strong understanding of network protocols, routing and switching, VPN technologies, NAT, and intrusion prevention systems
Familiarity with incident response, log analysis, and security monitoring tools
Familiarity with automation and scripting for network security tasks using tools like Python, Ansible, or Terraform
Familiarity with cloud security architectures and controls in AWS, Azure, or Google Cloud Platform
Exposure to SIEM platforms, log management, and threat intelligence tools
Ability to manage and prioritize multiple projects in a fast-paced, dynamic environment
Strong interpersonal skills and the ability to communicate technical concepts to non-technical stakeholders.
Ability to participate in a rotational on-call schedule and respond to after-hours incidents or maintenance tasks
Strong documentation skills and attention to detail
Job Expectations:
This position offers a hybrid work schedule
This position is not eligible for Visa sponsorship
Relocation assistance is not available for this position
Flexibility to work in a 24/7 on-call environment
Pay Range

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.
$119,000.00 - $224,000.00
Benefits

Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.
Health benefits
401(k) Plan
Paid time off
Disability benefits
Life insurance, critical illness insurance, and accident insurance
Parental leave
Critical caregiving leave
Discounts and savings
Commuter benefits
Tuition reimbursement
Scholarships for dependent children
Adoption reimbursement
Posting End Date:
1 Oct 2025
Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, ****** orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

Drug and ******* Policy

Wells Fargo maintains a drug free workplace. Please see our Drug and ******* Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

United States
New Jersey
Iselin Show on map Get directions