Remote Prisma Access Engineer

Remote Prisma Access Engineer

Company details

Description of the offer

Who we are

StopAHack.com® is a veteran‑founded cybersecurity services company and a Great Place To Work® certified employer. We deliver hands‑on expertise to client programs and partner‑led engagements.

The role

You will be a W‑2 employee of StopAHack assigned to deliver Palo Alto Networks Prisma Access professional services for end customers. Day‑to‑day work is coordinated by Palo Alto Networks project leads and the end client. End client identities remain confidential until you complete interviews and required background checks.

What you will do

• Design, implement, and maintain Prisma Access for remote networks, mobile users, and service connections (Cloud Managed or Panorama).
• Integrate identity and access: SAML/SSO, MFA, certificate management, user mapping, and group‑based policy.
• Configure and optimize networking/security policies: BGP, IPsec/SSL tunnels, URL/App/Threat profiles, SSL decryption, GlobalProtect gateways and portals.
• Perform advanced troubleshooting, root‑cause analysis, and incident support across connectivity, policy, and performance issues.
• Develop architectures, HLD/LLD documents, runbooks, and change plans; lead change windows.
• Enable and mentor customer teams; deliver knowledge transfer and training sessions.
• Monitor platform health and posture; recommend improvements for scale, resilience, and security.
• Produce clear documentation and contribute to internal knowledge bases.

What you bring (must‑have)

• 8–10 years of combined experience in enterprise networking and network security, including production change control and customer‑facing work.
• Direct, hands‑on experience deploying and supporting Prisma Access in multi‑tenant or enterprise environments.
• Strong knowledge of routing (BGP/OSPF), IPsec IKEv1/v2, SSL VPN, DNS, PKI/certificates, and identity integrations.
• Comfort with log analysis and telemetry (e.g., Cortex Data Lake), packet captures, and performance baselining.
• Excellent troubleshooting, customer communication, and documentation skills.
• Ability to work independently across multiple concurrent projects and stakeholders.

Nice to have

• PCNSE (or equivalent experience); Panorama at scale; ADEM; SD‑WAN; GlobalProtect; Prisma Access migration experience.
• Scripting/automation (Python, Ansible, Terraform) and CI/CD change workflows.
• Experience delivering professional services or consulting for large enterprises.

Reporting and supervision

• Employer of record: StopAHack.com® Corporation.
• Performance management, PTO approval, and HR support are provided by StopAHack.
• Project priorities and day‑to‑day coordination are aligned with Palo Alto Networks professional services and the end customer.
• Work model and hours
• Remote within the United States.
• Standard hours aligned to the end client’s time zone.

Hiring process

• StopAHack screening and technical interviews.
• Customer or partner alignment interviews, as applicable.
• Background checks and onboarding.
• Assignment to active projects.

EEO and accessibility

StopAHack.com® is an Equal Opportunity Employer. We consider all applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other legally protected status. If you require a reasonable accommodation during the application or interview process, contact info@stopahack.com.

Work authorization

Applicants must be authorized to work in the United States without current or future sponsorship.

Note: Palo Alto Networks and Prisma Access are trademarks of Palo Alto Networks, Inc. References to their products indicate the nature of the services delivered; employment remains with StopAHack.com®.

Location of employment

How to apply?