Senior Cybersecurity Engineer - Zero Trust

As a Senior Cybersecurity Engineer on the Zero Trust Program team, your responsibilities will include:

• Support the design, implementation, integration, sustainment, and optimization of Zero Trust Architecture (ZTA), Security Orchestration, Automation, and Response (SOAR), and enterprise security platforms supporting federal cybersecurity objectives.
• Provide senior-level engineering expertise across Palo Alto technologies, network security architecture, secure remote access, segmentation, policy enforcement, and enterprise security modernization initiatives.
• Research, evaluate, engineer, and operationalize advanced cybersecurity solutions incorporating Zero Trust, SIEM, SOAR, PAM, ICAM, UEBA, automation, and analytics technologies.
• Develop and maintain technical documentation including SOPs, engineering standards, architectural diagrams, platform hardening guides, troubleshooting procedures, and operational workflows.
• Support security platform lifecycle management including implementation, upgrades, patching, hardening, troubleshooting, and sustainment across security infrastructure.
• Collaborate with SOC, Security Engineering, IAM/ICAM, endpoint, and infrastructure teams to improve enterprise security posture through integrated controls, automation, and process standardization.
• Support privileged account, service account, API credential, and security integration governance across Zero Trust and enterprise security ecosystems.
• Provide secondary operational support for SOAR/security automation platforms by assisting with troubleshooting, workflow validation, integrations, and continuity support when primary automation personnel are unavailable.
• Assist with incident response readiness by validating security workflows, supporting automation-enabled response processes, and improving operational resilience.
• Providing expert knowledge for the development of Zero Trust architecture designs to optimize mission effectiveness and efficiency.
• May serve as a task or project leader (not a people manager)

In order to be considered:

• Must have hands-on experience with Palo Alto or comparable enterprise security technologies including NGFWs, SASE, secure access, segmentation, or related network security platforms.
• Must possess experience integrating cybersecurity platforms across security operations, IAM/ICAM, PAM, endpoint, SIEM, or enterprise infrastructure environments.
• Must demonstrate strong experience developing and maintaining technical documentation including SOPs, engineering standards, troubleshooting guides, workflow diagrams, and security operational procedures.
• Must have experience supporting platform lifecycle activities such as implementation, upgrades, patching, hardening, vulnerability remediation, and operational sustainment.
• Must possess working knowledge of SOAR/security automation platforms (e.g., Cortex XSOAR, Splunk SOAR, ServiceNow, or equivalent), including the ability to support integrations, troubleshoot workflows, and provide backup operational support.
• Familiarity with playbook logic, automation workflows, and incident response orchestration is strongly preferred.
• Must have experience supporting privileged account governance, service account management, API credential security, or PAM technologies such as CyberArk or equivalent.
• Must possess strong analytical, troubleshooting, and cross-functional collaboration skills supporting enterprise cybersecurity operations.
• Experience supporting federal cybersecurity frameworks, Zero Trust maturity initiatives, or government security environments is strongly preferred.
• Relevant industry certifications such as CISSP, Palo Alto, Security+, cloud security, Zero Trust, or equivalent are strongly preferred.
• Bachelor's Degree in Computer Science, Software Engineering or equivalent STEM field and 10+ years’ experience related to systems engineering, implementation, and monitoring. 
• Allowable Substitution for bachelor’s degree is 7 years of relevant experience
• Must be able to obtain and maintain an active Public Trust 6C clearance