Security Infrastructure DevSecOps (Cortex XDR)

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

FLEXWORK is an employee-centric reimagining of how we work. We built FLEXWORK based on employee feedback – it is about flexibility, trust, and choice whenever possible. It’s been a journey of disruption that has yielded the best of our values. We offer as much flexibility as possible, and choices that enable you to be most productive, including benefits that meet your needs and learning opportunities that you feel passionate about.

Job Description

Your Career

As Security Infrastructure DevSecOps Engineer, your primary role will be to develop and assess the security of our cloud Agent protection and detection capabilities.
Identify problems within our kernel and User space agent and report them to our development teams and collaborate with the different research teams to identify security issues.

You will collaborate with various teams to ensure comprehensive coverage of the latest cloud vulnerabilities, thus ensuring the security of our cloud workloads.

Your Impact

• Write and maintain IAC scripts to ensure the seamless deployment and maintenance of systems
• Contribute to team tooling, innovation, and improvements
• Conduct research on potential vulnerabilities and security gaps in our cloud systems
• Identify potential security gaps or misconfigurations in cloud, orchestration, or local systems
• Writing POCs for identified vulnerabilities and working with the relevant teams to mitigate these threats effectively

Qualifications

Your Experience

• Extensive Experience - At least 5 years of overall experience in the field of IT, with at least 3 years specializing in DevSecOps / Research / Cloud Automation  roles - Your time in this role should have provided you with a deep understanding of the DevSecOps lifecycle, tools, and best practices
• Security Engineering Expertise - Minimum of 3 years of professional experience with security engineering roles
• At least 2 years of coding experience, preferably in Python or Go, but proficiency in other languages such as Ruby, C/C++, Java, or .NET is also acceptable
• Proven experience with threat /Detection analysis techniques is required, including threat modeling, design review, threat hunting
• Foundational security engineering experience in cloud environments such as AWS, GCP, or Azure is essential - This should ideally include hands-on experience with container and Kubernetes-based infrastructure
• An understanding of and ability to implement security best practices and tools is crucial - You should be adept at using security-focused tools and have a deep understanding of container-based orchestration tools like Kubernetes, OpenShift, Docker, etc.

Additional Information

The Team

Our team is dedicated to perform and Validate PANW Cortex Security Features on multiple Operating systems including but not limited to Windows and Linux and Cloud Workloads, simulating known threats and offensive tools to determine New features security Coverage & Detection quality across the Kill Chain /MITRE ATT&CK Framework including known and unknown threats.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

#LI-YB1