Job description:
Senior Cybersecurity Engineer – Network Security is responsible for developing, configuring, deploying, and maintaining complex Cybersecurity and Risk management technologies, tools, and controls for the client organization. Successful candidate would possess expert level technical and engineering subject matter expertise in one or more Cybersecurity functional areas integrating variety of applications and IT systems into Cybersecurity tools. Operational duties include collaboration with peer engineers and other teams to solve problems, analyze and validate designs leading integration efforts to meet business and functional needs.
Successful Senior Cybersecurity Engineers have exposure to variety of IT Security areas and bring deep subject matter expertise in one or more tools/areas leading team to achieve productivity gains through orchestration, automation, and enhanced cybersecurity detection and response capabilities specific to networks (internal, DMZ, virtual) using network security threat detection tools. Senior engineer will have subject matter expertise to deploy, configure and support tools and technologies relating to network access controls, traffic analysis, network-based user access behavior analytics and network intrusion detection and protection. Senior Cybersecurity engineer will take lead during production systems outage quickly troubleshooting technical issues and help resolve incidents limiting outage and contain security risks.
Responsibilities/ Qualifications
- As a subject matter expert, successful candidate will be responsible to design, test and configure variety of web, mobile, cloud and/or desktop application integrations with variety of Cybersecurity tools and technologies.
- Deploy and support complex legacy and modern Cybersecurity systems helping minimize risk.
- Engineer solutions that integrate with complex IT and Patient Care related systems while complying with laws, regulations, standards, and policies.
- Collaborate with Enterprise Architecture and Security Architects, peer engineers to brainstorm, design and modernize existing integrations, solutions, security tools for highly available and disaster resilient solutions.
- Proactively seek opportunities to improve knowledge and technical expertise in multiple Cybersecurity areas as it relates to both business and Clinical aspects.
- Serve as security subject matter expert in assisting triage, investigation, containment, and remediation of security incidents. Participate in Red/Blue/Purple teams as needed to help improve security posture of the client organization.
- Design, test, implement, maintain, and support current and future complex information security technologies, processes, and procedures. Lead the design and development of security controls that ensure the integrity of information assets and protect from unauthorized access or intentional destruction and or exfiltration.
- Lead complex projects related to information security regulatory compliance and the implementation and maintenance of all cybersecurity programs, processes, and technologies.
- Assure the implementation of appropriate security controls and work with appropriate teams to configure, deploy and manage them as required.
- Foster a culture of improvement, efficiency gains and innovative thinking. Adapt and embrace change and demonstrate flexibility in taking up and fulfilling other duties as assigned, and coach and mentor team members as needed.
- Identify threats to the organization’s network infrastructure and systems and work with other departments, both IT and business areas to remediate the threats to ensure business continuity.
- Respond to incidents in a manner that is consistent with the severity of the issue.
- Prepare reports from metrics on network health and security as needed by upper management.
- Manage third party connectivity and help to maintain these relationships to ensure operational integrity.
- Advising and leading change to network security policies by efficiently leveraging all Palo Alto NGFW attribution capabilities.
- Plan, engineer, and monitor network security tools, devices, applications with procedural integrity through collaboration with Cyber Security Incident Response and Risk Management teams.
- Collaborate with networking counterparts participating in network modernization and technology refresh initiatives including planning, implementing, and troubleshooting routing protocol and other connectivity related issues.
Qualifications
Required
Education
- Bachelor’s degree in Computer Science, Computer Engineering, Technology Information Systems, Engineering or related technical discipline or combination of relevant experience/education.
Experience
- 10+ years of cumulative experience in engineering, development and/or support of IT Systems
- 5+ years of experience in customization, deployment and support of Cybersecurity tools and technologies
- General knowledge of REST API and JSON batching and workflow automation
- Experience with server virtualization technologies (VMware or Microsoft Hyper-V)
- Ability to thrive in a sense-of-urgency environment and leverage best practices
- Proficiency in Agile project management methodology
- Prior experience with security and regulatory frameworks (NIST, CSF, and HIPAA)
- Experience using SIEM to monitor syslog and other logs to identify anomalous activity and in remediation
- Experience auditing network security and working with teams to remediate the vulnerabilities found in the audit
- Experience evaluating security patches based on current vulnerabilities, patching, and upgrading network device Operating Systems
- Knowledge of networking practices such as macro/micro segmentation leveraging SXP, SGTs, VLANs, VNs and NAC.
- Experience monitoring logs to create custom signatures in addressing zero-day and other threats types while also ensuring no false positives
- Experience using network packet inspection tools (i.e. Wireshark, Tshark)
- Experience using network vulnerability and threat monitoring tools (Sumo Logic, ordr GigaVUE and Gigamon Threat Insight)
- Experience applying security protocols and frameworks to networks, servers, and endpoints.
Language & Communication Skills
- Ability to effectively communicate both verbally and written with all levels within the organization
- Ability to explain technical concepts and adjust messaging based on the audience, including non-technical groups
- Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills
- Ability to work well within a team environment, as well as independently
Preferred
Education
- Bachelor’s degree or higher in Computer Science, Computer Engineering, Technology Information Systems Engineering or related technical discipline
Experience
- Prior experience as Security Engineer/Senior Security Engineer/Senior Developer or Senior Analysts engineering supporting cybersecurity tools & solutions for Healthcare organizations.
- Palo Alto Networks hands on experience with Advanced NextGen features including App-ID, User-ID, Content-ID, DeviceID, Advanced URL Filtering, Threat Prevention, Wildfire, Zones, Security Policies, Security Profiles, Inbound/Outbound SSL Decryption, File Blocking, or Data Filtering/DLP, DAG/DUG, EDLs, NAT/PAT, Virtual Wire, Virtual System (Vsys), Panorama centralized management, Prisma Cloud and Global Protect.
- Familiar and able to support cloud-based network security services like CASB, FWaaS and thorough understanding of Zero Trust as a single cloud-delivered service model.
- AWS and Azure knowledge and experience deploying and managing security controls with proven ability to support large-scale hybrid architecture with infrastructure as code.
- Understanding of Zero Touch provisioning of Palo Alto firewalls.
- Experience with RED/BLUE/PURPLE teaming exercises.
License/Certification/Registration
- Technical certifications in any of the fields – Security technologies & tools, Development methodologies and frameworks, Cloud and Networking
- Industry recognized professional certifications – Security+, TOGAF, CISSP, PCNSE