Network Security Engineer Jobs

Salary starting at $77,799.00 annually. Rate of pay depends on qualifications.

JOB SUMMARY

• Assist in the identification, evaluation, deployment, and optimization of security technologies.
• Performs other duties as assigned.
• Ensures that the access control, disaster recovery, business continuity, and risk management needs of the organization are properly addressed as related to electronic protected health information (PHI).
• Supports information security leadership team in strategic planning and development.
• Maintains awareness of latest security risks, analyzes potential impact of new threats and exploits, and communicates risks to relevant business units.
• Detects, investigates and performs recovery from security incidents, and assists with incident response plans.
• Monitors and maintains the security tools and systems (IDS, IPS, Firewall, VPN, ISE, WAF, DLP, SIEM, Web Proxies, and Vulnerability Scanners) for the corporate and SCADA/ICS computing environments.
• Implements, manages, and enforces electronic information security directives in compliance with the Health Insurance Portability and Accountability Act (HIPAA).
• Works closely with other groups; System Administrators, Network Engineering, Applications, SCADA/I&C and other information system staff to ensure adequate security solutions are in place for all IT systems and platforms to sufficiently mitigate identified risks and meet business objectives.
• Conducts analysis of security requirements and controls to identify gaps and provides recommendations of industry best practices, trends, and technology products.
• Conducts threat and vulnerability risk assessments to determine security requirements and proactively fix security flaws and vulnerabilities.
• Develops security related procedures and related metrics; reviews and contributes to the improvement and standardization of security systems across all of IT.
• Provides security design, consultancy, and assessment services; and introduces improvements in technical security standards and security implementation patterns and designs.
• Creates reports on security incidents and overall enterprise security status.

• This position works under limited supervision and reports to the Director, Network Security Services.

• Bachelor's degree in Information Technology, Computer Science or related field from an accredited college or university PLUS four years of relevant IT work experience, to include three years in information security field, preferably in an environment certified and compliant with a globally recognized Security Framework/Information Security Management System (NIST SP 800-53, ISO27001, HIPAA, SOX, PCI). OR Associate's degree from an accredited college or university or technical institute degree/certificate PLUS eight years of relevant IT work experience, to include five years in information security field, preferably in an environment certified and compliant with a globally recognized Security Framework/Information Security Management System (NIST SP 800-53, ISO27001, HIPAA, SOX, PCI).
• Valid Class "C" Texas Driver's License.
• At least one professional information security certification required (CCNA-Security, CISSP, CISM,CRISC, and/or SANS GIAC).

• Programming skills in one or more language (Python, Ruby, Bash, PHP, Perl, and Java).
• Experience with Cisco and Palo Alto enterprise grade products to include: Nexus 7000, 4500, ISR G2, Firewalls, Sourcefire, Web Proxy, TACACS+, DMVPN, ISE, etc.
• Professional certifications; CISSP, CISM, & CCNP.
• Familiarity with network, server, storage virtualization, i.e. MDS switching infrastructure, VSAN, VRF, VPN, and VMWare vSphere.
• Knowledge of Linux/Unix and other open source software to include BIND and Nessus.
• Knowledge of SCADA/ICS security controls and best practices.
• Advanced knowledge of IOS, NX-OS, EIGRP, BGP, GRE and OSPF.
• Knowledge of Cisco Unified Wireless networking to include; 802.11n, LWAPP, CAPWAP, WCS, WLC, Mesh, and APs.

• Knowledge of network security, security-related systems and applications as well as security protocols and related tools, including tcpdump, Wireshark, Metasploit, Nessus, Splunk, AccelOps, Cisco Identity Services Engine, Sourcefire, and IronPort.
• Strong working familiarity with Cisco IOS.
• Ability to communicate clearly and effectively both verbally and in writing.
• Regular contact with internal and external customers and contractor representatives involved with LAN/WAN design, network implementation, and network management.