IT Senior Security Specialist

IT Senior Security Specialist

Position Summary

We are seeking an experienced Senior Security Engineer with specialized expertise in security patch management to join our dynamic cybersecurity team. The successful candidate will be responsible for designing, implementing, and maintaining our Palo Alto Networks security infrastructure while ensuring comprehensive patch management across our enterprise environment. This role combines hands-on technical expertise with strategic security planning to protect our organization against evolving cyber threats.

Key Responsibilities

Palo Alto Networks Management

• Design, deploy, configure, and maintain Palo Alto Networks firewalls (PA Series, VM Series)
• Implement and manage Palo Alto Panorama for centralized firewall management
• Configure and optimize security policies, NAT rules, and threat prevention profiles
• Deploy and maintain Palo Alto Cortex XSOAR for security orchestration and automated response
• Implement GlobalProtect VPN solutions for secure remote access
• Monitor and analyze traffic flows, security events, and threat intelligence feeds
• Perform regular health checks and performance optimization of Palo Alto infrastructure

Security & Patch Management

• Develop and implement comprehensive patch management strategies across the enterprise
• Deploy, configure, and maintain Tanium Endpoint Management platform for enterprise-wide visibility
• Coordinate with Tanium administrators for endpoint patch deployment and compliance
• Utilize Tanium Patch for automated patch assessment, testing, and deployment
• Leverage Tanium Deploy for software distribution and configuration management
• Monitor endpoint security posture using Tanium Threat Response and Comply modules
• Assess security vulnerabilities and prioritize patch deployment based on risk analysis
• Manage patch testing, approval workflows, and deployment schedules
• Monitor patch compliance across servers, workstations, and network devices using Tanium dashboards
• Conduct vulnerability assessments and remediation planning with Tanium integration
• Maintain patch management documentation and compliance reports

Security Operations

• Monitor security events and respond to incidents using SIEM and SOAR platforms
• Perform threat hunting and analysis of security alerts
• Conduct forensic analysis of security incidents and breaches
• Implement and maintain security monitoring and alerting systems
• Collaborate with SOC team for 24/7 security operations support
• Develop and maintain incident response playbooks and procedures

Administration & Compliance

• Maintain security documentation, policies, and standard operating procedures
• Ensure compliance with regulatory requirements and security frameworks
• Conduct security assessments and risk analysis
• Provide technical expertise during security audits and assessments
• Generate regular security reports for management and stakeholders
• Stay current with emerging threats, vulnerabilities, and security technologies

Required Qualifications

Education & Experience

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field
• Minimum 3-5 years of hands-on experience with Palo Alto Networks products
• 2 years of experience with Tanium Endpoint Management platform administration
• 2 years of experience in enterprise patch management and vulnerability management
• Experience working in Security Operations Center (SOC) environment preferred

Technical Skills

• Palo Alto Networks Expertise:
  • Advanced configuration of PA-Series firewalls and Panorama
  • Experience with Cortex XSOAR (formerly Demisto) platform
  • Knowledge of GlobalProtect, Prisma Access, and cloud security solutions
  • Understanding of Palo Alto licensing models and maintenance procedures
• Tanium Endpoint Management:
  • Advanced configuration and administration of Tanium Core Platform
  • Experience with Tanium Patch for endpoint patch management and deployment
  • Proficiency in Tanium Deploy for software distribution and configuration
  • Knowledge of Tanium Threat Response for incident response and threat hunting
  • Experience with Tanium Comply for compliance monitoring and reporting
  • Understanding of Tanium Connect for third-party integrations and data export
  • Ability to create custom Tanium sensors, packages, and saved questions
• Patch Management:
  • Experience with Tanium for endpoint management and patch deployment
  • Knowledge of Microsoft WSUS/SCCM, Red Hat Satellite, or similar tools
  • Understanding of patch testing methodologies and change management
  • Experience with vulnerability scanners (Nessus, Qualys, Rapid7)
• Security Technologies:
  • Proficiency in network security concepts (VPN, IPS/IDS, DLP)
  • Experience with SIEM platforms (Splunk, IBM QRadar, Microsoft Sentinel)
  • Knowledge of threat intelligence platforms and feeds
  • Understanding of security frameworks (NIST, ISO 27001, CIS Controls)
• Networking & Protocols:
  • Strong understanding of TCP/IP, routing, and switching
  • Experience with network troubleshooting and packet analysis
  • Knowledge of network security architectures and segmentation
  • Familiarity with cloud networking (AWS, Azure, GCP)

Certifications (Preferred)

• Required: Palo Alto Networks Certified Network Security Engineer (PCNSE)
• Highly Preferred: Tanium Certified Operator (TCO) or Tanium Administrator certification
• CompTIA Security or equivalent security certification
• Cisco CCNA Security or CCNP Security
• CISSP, CISM, or other advanced security certifications (preferred)

Soft Skills

• Excellent analytical and problem-solving abilities
• Strong written and verbal communication skills
• Ability to work independently and manage multiple priorities
• Team collaboration and cross-functional coordination skills
• Attention to detail and commitment to security best practices
• Willingness to participate in on-call rotation for security incidents

Preferred Qualifications

• Advanced Tanium certifications (Tanium Certified Expert, specialized module certifications)
• Experience with cloud security platforms (Prisma Cloud, Azure Security Center)
• Knowledge of scripting languages (Python, PowerShell, Bash) for Tanium automation
• Experience with automation tools and APIs for security orchestration including Tanium REST API
• Familiarity with DevSecOps practices and CI/CD pipeline security
• Previous experience in financial services, healthcare, or highly regulated industries
• Advanced certifications: PCNSE, CISSP, CISM, or equivalent