Cloud Network Operations Engineer

Signature Performance, Inc.

18h

About The Position

Design, implement, and maintain cloud‑native network architectures (VPCs, VNets, subnets, load balancers, transit gateways, etc.). Configure cloud routing, firewalls, network security groups, VPNs, and segmentation policies. Develop and maintain network diagrams, documentation, and cloud infrastructure standards. Support cloud‑to‑cloud networking, peering, and inter‑service communication across cloud regions and accounts/subscriptions. Cloud Operations & Monitoring Continuously monitor cloud network performance, availability, and endpoint health. Troubleshoot and resolve cloud networking issues to minimize downtime. Execute cloud change‑control activities including upgrades, patches, and configuration updates. Participate in incident response, root‑cause analysis, and long‑term mitigation planning. Build automation and Infrastructure‑as‑Code tooling (Terraform, Bicep, CloudFormation, Python, PowerShell) to streamline network operations. Optimize cloud networking performance, resiliency, and cost through proactive analysis and tuning. Implement automated monitoring, alerting, and self‑healing workflows. Implement and enforce cloud networking security controls such as encryption, identity‑based access policies, and zero‑trust network configurations. Apply cloud provider security features (WAF, DDoS protection, Private Endpoints, Firewall/IDS/IPS). Participate in backup, failover, DR testing, and cloud‑native continuity planning. Ensure compliance with cloud security best practices and regulatory or organizational requirements. Partner with DevOps, application, and security teams to support cloud deployments and network‑dependent services. Assist in CI/CD cloud integration by enabling secure, efficient network pathways. Provide technical guidance, documentation, and mentoring to team members and stakeholders. Configure, manage, and maintain Palo Alto Next‑Generation Firewalls (NGFW) within cloud environments, including policy creation, rule optimization, and secure traffic segmentation. Implement PAN‑OS security features such as App‑ID, User‑ID, Content‑ID, SSL decryption, threat prevention, and URL filtering to secure cloud workloads. Manage Palo Alto Prisma Access or VM‑Series firewalls deployed in Azure, ensuring scalable and resilient cloud firewall architectures. Monitor firewall logs, threat alerts, and network activity via Panorama or cloud‑native monitoring tools to detect and remediate security risks. Collaborate with cloud security teams to design and enforce zero‑trust network architectures, leveraging Palo Alto policy sets and micro‑segmentation strategies. Conduct regular firewall audits, rule cleanup, performance tuning, and compliance validation to maintain a secure cloud posture. Support incident response by analyzing traffic patterns, threat signatures, and security events captured by Palo Alto tools.

Requirements

Bachelor's degree in IT, Computer Science, Networking, Cybersecurity, or equivalent experience.
Minimum of 3 years working in cloud networking, cloud operations, or cloud engineering.
Strong understanding of cloud networking concepts (VPC/VNet design, peering, load balancing, DNS, IP addressing, firewalls).
Experience with IaC and scripting (Terraform, Bicep, Python, Bash, PowerShell).
Experience with cloud platforms (AWS, Azure)
Familiarity with cloud IAM, certificate management, and secure cloud architecture.

Nice To Haves

6+ years working in cloud networking, cloud operations, or cloud engineering.
Cloud certifications (Azure Network Engineer Associate or Azure Solutions Architect Expert (networking focused architecture exposure)
Palo Alto Networks certifications, (Palo Alto Networks Certified Network Security Administrator or Palo Alto Networks Certified Network Security Engineer)
Experience designing or operating large scale cloud networks with multiple regions or accounts/subscriptions.
Background supporting latency sensitive, distributed, or high availability cloud applications.
Experience with container networking (AKS, EKS, GKE)

Responsibilities

Design, implement, and maintain cloud‑native network architectures (VPCs, VNets, subnets, load balancers, transit gateways, etc.).
Configure cloud routing, firewalls, network security groups, VPNs, and segmentation policies.
Develop and maintain network diagrams, documentation, and cloud infrastructure standards.
Support cloud‑to‑cloud networking, peering, and inter‑service communication across cloud regions and accounts/subscriptions.
Continuously monitor cloud network performance, availability, and endpoint health.
Troubleshoot and resolve cloud networking issues to minimize downtime.
Execute cloud change‑control activities including upgrades, patches, and configuration updates.
Participate in incident response, root‑cause analysis, and long‑term mitigation planning.
Build automation and Infrastructure‑as‑Code tooling (Terraform, Bicep, CloudFormation, Python, PowerShell) to streamline network operations.
Optimize cloud networking performance, resiliency, and cost through proactive analysis and tuning.
Implement automated monitoring, alerting, and self‑healing workflows.
Implement and enforce cloud networking security controls such as encryption, identity‑based access policies, and zero‑trust network configurations.
Apply cloud provider security features (WAF, DDoS protection, Private Endpoints, Firewall/IDS/IPS).
Participate in backup, failover, DR testing, and cloud‑native continuity planning.
Ensure compliance with cloud security best practices and regulatory or organizational requirements.
Partner with DevOps, application, and security teams to support cloud deployments and network‑dependent services.
Assist in CI/CD cloud integration by enabling secure, efficient network pathways.
Provide technical guidance, documentation, and mentoring to team members and stakeholders.
Configure, manage, and maintain Palo Alto Next‑Generation Firewalls (NGFW) within cloud environments, including policy creation, rule optimization, and secure traffic segmentation.
Implement PAN‑OS security features such as App‑ID, User‑ID, Content‑ID, SSL decryption, threat prevention, and URL filtering to secure cloud workloads.
Manage Palo Alto Prisma Access or VM‑Series firewalls deployed in Azure, ensuring scalable and resilient cloud firewall architectures.
Monitor firewall logs, threat alerts, and network activity via Panorama or cloud‑native monitoring tools to detect and remediate security risks.
Collaborate with cloud security teams to design and enforce zero‑trust network architectures, leveraging Palo Alto policy sets and micro‑segmentation strategies.
Conduct regular firewall audits, rule cleanup, performance tuning, and compliance validation to maintain a secure cloud posture.
Support incident response by analyzing traffic patterns, threat signatures, and security events captured by Palo Alto tools.