Project Role : Security Transformation Practitioner
Project Role Description : Design, develop, and implement security solutions to safeguard digital assets and business operations. Integrate security controls into enterprise systems, applications, and processes to protect against cyber threats, unauthorized access, and data breaches.
Must have skills : Palo Alto Networks Firewalls
Good to have skills : NA
Minimum 2 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary:
As a Security Transformation Practitioner, you will engage in the design, development, and implementation of security solutions aimed at protecting digital assets and ensuring the integrity of business operations. Your typical day will involve collaborating with various teams to integrate security controls into enterprise systems, applications, and processes, thereby safeguarding against cyber threats, unauthorized access, and potential data breaches. You will also analyze existing security measures and recommend enhancements to bolster the organization's overall security posture, ensuring that all digital interactions remain secure and compliant with industry standards.

Roles & Responsibilities:
- Manage Prisma Access (SASE) Solutions: delivering a robust Secure Access Service Edge (SASE) solution that ensures all remote users and branch locations have secure, high-performance access to applications and data from anywhere. This includes configuring GlobalProtect for remote and mobile users to establish IPSec/SSL VPN tunnels to the Prisma Access cloud for full security inspection without backhauling traffic to corporate data centers. Set up IPsec tunnels or integrations with SD-WAN edge devices to seamlessly connect branch offices into the Prisma Access fabric, extending consistent security policies to every site. Adjust and optimize Prisma Access components (e.g., managing bandwidth allocations, locations, and authentication methods) to meet client needs, ensuring minimal latency and an excellent user experience for remote connectivity. Regularly update Prisma Access configurations and cloud-managed security services.
- Deploy & Operate Palo Alto Next-Generation Firewalls: Implement and maintain Palo Alto Networks next-gen firewalls (PA-Series hardware or VM-Series virtual appliances) as part of a multi-layer defense strategy protecting client assets. Architect and configure complex security policies using Palo Alto s feature set: for example, leverage App-ID to allow or block traffic by actual application (not just port), use User-ID to incorporate user identity into access rules, and apply Content-ID profiles (Threat Prevention, WildFire sandboxing, URL Filtering, etc.) to inspect and filter traffic for exploits, malware, and malicious URLs. Ensure VPN connectivity (such as site-to-site IPsec tunnels and GlobalProtect remote access for scenarios outside Prisma Access) is properly configured to protect data in transit. Utilize Panorama for centralized management when multiple firewalls or hybrid cloud deployments are involved, streamlining policy deployment, updates, and monitoring across client environments. Conduct periodic firewall policy reviews and optimizations – removing unused rules, tightening access control entries, and updating objects – to maintain the principle of least privilege and reduce the attack surface. Oversee firmware updates, license management, and integration of firewalls with other security tools (such as SIEMs or NAC solutions) to ensure a cohesive security ecosystem.
- Documentation, Knowledge Transfer & Training: Ensure all solutions are accompanied by comprehensive documentation and training for both internal teams and client technical staff. Develop and maintain detailed design documents, network diagrams, and configuration guides that capture how Prisma Access and firewall policies are implemented for each client. Create standard operating procedures (SOPs) and runbooks for security operations, covering processes like onboarding new remote users in Prisma Access, updating firewall rules, responding to common alert scenarios, and performing system upgrades. Tailor documentation to the client s environment and ensure it remains up-to-date as changes occur. Additionally, conduct training sessions or workshops to empower the clients IT and security teams: for example, training network administrators on using Panorama for policy management and log analysis, or instructing help desk staff on supporting end-users with GlobalProtect connectivity issues. Provide go-live support during initial deployment phases, assisting client teams in becoming comfortable with managing the new security tools. Encourage knowledge sharing and security best practices within client organizations – from simple user guidelines for remote access to advanced administrator training – to maximize the effectiveness of the deployed solutions. By thoroughly documenting solutions and educating users, ensure the security improvements are sustainable and continue to function optimally long after initial implementation.


Professional & Technical Skills:
- Prisma Access (SASE) Expertise: Demonstrated expertise in Palo Alto Networks Prisma Access – Palo Alto s cloud-delivered Secure Access Service Edge (SASE) platform. Ability to configure and optimize Prisma Access for both mobile users and remote site connectivity: this includes setting up GlobalProtect for user VPN access, defining authentication and user access policies (integrating with identity providers/LDAP for user authentication), and establishing Remote Network connections via IPsec tunnels for site-to-site integration.
- Hands-on experience with migrating or on-boarding organizations to Prisma Access (e.g., transitioning from traditional VPN concentrators or MPLS networks to a cloud-based SASE model) is a strong plus.
- Network Security & Protocols: Strong foundation in general network security and networking protocols. Deep understanding of the TCP/IP suite, subnetting, and common protocols (HTTP/S, DNS, etc.), as well as experience with networking equipment (routers, switches, load balancers) and their security implications. Knowledge of LAN/WAN architectures and hands-on experience with routing protocols (BGP, OSPF).
- Certifications: Information Security, or a related field (or equivalent hands-on experience). Industry certifications are strongly preferred to validate expertise: specifically, Palo Alto Networks PCNSE (Certified Network Security Engineer) for firewall expertise, and Palo Alto Networks Prisma Certified Cloud Security Engineer (PCCSE) for Prisma cloud security proficiency, are highly relevant. (Note: Equivalent or updated Palo Alto certifications in the new role-based framework introduced in 2025 will also be considered valid).
- Multi-Cloud and Diverse Security Tooling: Experience with multi-cloud security and additional security platforms. Exposure to other network security solutions (e.g., Cisco ASA/Firepower, Fortinet FortiGate, Check Point, or cloud-proxy services like Zscaler) is advantageous32, as it indicates the ability to adapt and integrate Palo Alto solutions in diverse environments. Understanding of complementary security technologies (such as SD-WAN appliances, web application firewalls, CASBs, DLP, NAC) can also be beneficial for designing comprehensive security for clients.
- Advanced Certifications: Any additional certifications that demonstrate depth or breadth of expertise will set a candidate apart. For instance, CISSP or CCSP (if not already obtained) signals a strong grasp of overall security principles. Vendor-specific advanced certifications beyond PCNSE/PCCSE, such as legacy PCNSE (if already earned) or newer Palo Alto Networks role-based certifications (e.g., Network Security Expert, Cloud Security Engineer in the updated framework), show commitment to staying current with the Palo Alto portfolio.

Additional Information:
- The candidate should have minimum 3 years of hands-on experience in cybersecurity and network security roles, with a focus on implementing and managing enterprise firewall systems and secure remote access solutions. Prior experience in security consulting or professional services is highly desirable, as this role requires directly interfacing with clients and delivering projects to meet their needs.
- This position is based at our Bengaluru office.
- A 15 years full time education is required.

15 years full time education

About Accenture

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities.

Visit us at www.accenture.com 

Equal Employment Opportunity Statement

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, military veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.