Cybersecurity architect - cloud and network focus

- Design, implement, and maintain Palo Alto Network firewalls (NGFW), Panorama Central Management, and associated security features (e.g., Wildfire, Threat Prevention, URL Filtering, Anti-Virus). - Formulate and enforce extensive security policies, rule sets, and zone segmentation in accordance with Zero Trust principles. - Serve as the principal expert for all Palo-Alto related security engineering, configuration, and troubleshooting issues. - Architect and refine secure remote access solutions utilizing Palo Alto GlobalProtect or other enterprise VPN technologies, ensuring the correct implementation of least privilege and multi-factor authentication (MFA). - Develop and enforce security policies for both corporate and guest wireless networks, ensuring proper network segmentation, secure authentication methods, and encryption techniques. - Create and execute a secure DNS architecture using DNSSEC or private DNS services. - Lead the design, tuning, and integration of device logs into an enterprise Security Information and Event Management (SIEM) system. - Develop advanced correlation rules, alerts, dashboards, and reporting systems to identify, prioritize, and track security threats and irregularities. - Draft, maintain, and evaluate the OCSD Incident Response Plan and associated playbooks. - Conduct post-incident analyses to pinpoint architectural weaknesses and propose security enhancements. - Ensure compliance with local, state, and federal regulations, particularly CJIS requirements, in all security architectures, policies, and procedures. - Create and uphold organization-wide security standards, control baselines, and reference architectures. - Carry out regular security evaluations and establish remediation plans to rectify control deficiencies.