Senior Cybersecurity Engineer - Network Security
Minneapolis, MN, United States
Overview:
Senior Cybersecurity Engineer - Network Security is responsible for developing, configuring, deploying, and maintaining complex Cybersecurity and Risk management technologies, tools, and controls for M Health Fairview. Successful candidate would possess expert level technical and engineering subject matter expertise in one or more Cybersecurity functional areas integrating variety of applications and IT systems into Cybersecurity tools. Operational duties include collaboration with peer engineers and other teams to solve problems, analyze and validate designs leading integration efforts to meet business and functional needs.
Successful Senior Cybersecurity Engineers have exposure to variety of IT Security areas and bring deep subject matter expertise in one or more tools/areas leading team to achieve productivity gains through orchestration, automation, and enhanced cybersecurity detection and response capabilities specific to networks (internal, DMZ, virtual) using network security threat detection tools. Senior engineer will have subject matter expertise to deploy, configure and support tools and technologies relating to network access controls, traffic analysis, network-based user access behavior analytics and network intrusion detection and protection. Senior Cybersecurity engineer will take lead during production systems outage quickly troubleshooting technical issues and help resolve incidents limiting outage and contain security risks.
Responsibilities/Job Description:
As a subject matter expert, successful candidate will be responsible to design, test and configure variety of web, mobile, cloud and/or desktop application integrations with variety of Cybersecurity tools and technologies.
Deploy and support complex legacy and modern Cybersecurity systems helping minimize risk.
Engineer solutions that integrate with complex IT and Patient Care related systems while complying with laws, regulations, standards, and policies.
Collaborate with Enterprise Architecture and Security Architects, peer engineers to brainstorm, design and modernize existing integrations, solutions, security tools for highly available and disaster resilient solutions.
Proactively seek opportunities to improve knowledge and technical expertise in multiple Cybersecurity areas as it relates to both business and Clinical aspects.
Serve as security subject matter expert in assisting triage, investigation, containment, and remediation of security incidents. Participate in Red/Blue/Purple teams as needed to help improve security posture of Fairview Health Services.
Design, test, implement, maintain, and support current and future complex information security technologies, processes, and procedures. Lead the design and development of security controls that ensure the integrity of information assets and protect from unauthorized access or intentional destruction and or exfiltration.
Lead complex projects related to information security regulatory compliance and the implementation and maintenance of all cybersecurity programs, processes, and technologies.
Assure the implementation of appropriate security controls and work with appropriate teams to configure, deploy and manage them as required.
Foster a culture of improvement, efficiency gains and innovative thinking. Adapt and embrace change and demonstrate flexibility in taking up and fulfilling other duties as assigned, and coach and mentor team members as needed
Identify threats to the organizations network infrastructure and systems and work with other infrastructure departments, both IT and business areas to remediate the threats while allowing business needs to be met.
Respond to incidents in a manner that is consistent with the severity of the issue.
Prepare reports and metrics on network health and security as needed by upper management.
Manage vendor relationships to ensure smooth operation, patching, and updating of network security technology and controls
Advising and leading change in network security policy
Plan, engineer, and monitor network security devices, applications, and procedures and collaborate with Cyber Security Incident Response and Risk Management teams.
Serve as networking security subject matter expert to participate, contribute and lead in designing secure solutions for network modernization and technology refresh initiatives.
Qualifications:
Required
Education
Bachelors degree in Computer Science, Computer Engineering, Technology Information Systems, Engineering or related technical discipline or combination of relevant experience/education.
Experience
10+ years of cumulative experience in engineering, development and/or support of IT Systems
5+ years of experience in customization, deployment and support of Cybersecurity tools and technologies
General knowledge of REST API and JSON batching and workflow automation
Experience with server virtualization technologies (VMware or Microsoft Hyper-V)
Ability to thrive in a sense-of-urgency environment and leverage best practices
Proficiency in Agile project management methodology
Prior experience with security and regulatory frameworks (NIST, CSF, and HIPAA)
Experience evaluating security patches based on current vulnerabilities, patching, and upgrading network device Operating Systems
Knowledge of networking practices such as macro/micro segmentation leveraging SXP, SGTs, VLANs, VNs and NAC.
Experience monitoring logs to create custom signatures in addressing zero-day and other threats types while also ensuring no false positives
Experience using network packet inspection tools (i.e. Wireshark, Tshark)
Experience using network vulnerability and threat monitoring tools (DarkTrace, Gigamon Threat Insight, etc.)
Experience using SIEMs to monitor syslogs and other log files to determine anomalous activity and mediating the activity
Experience applying security protocols and frameworks to networks, servers, and endpoints.
Experience auditing network security and working with teams to remediate the vulnerabilities found in the audit.
Experience patching and upgrading network device Operating Systems and evaluating the security patches based on current vulnerabilities.
Knowledge of networking practices such as VLANs, segmentation, and routing as well as the protocols involved.
Experience monitoring gateways, IDS, antivirus, log management, and NAC
Language & Communication Skills
Ability to effectively communicate both verbally and written with all levels within the organization
Ability to explain technical concepts and adjust messaging based on the audience, including non-technical groups
Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills
Ability to work well within a team environment, as well as independently
Preferred
Education
Bachelors degree or higher in Computer Science, Computer Engineering, Technology Information Systems Engineering or related technical discipline
Experience
Prior experience as Security Engineer/Senior Security Engineer/Senior Developer or Senior Analysts engineering supporting cybersecurity tools & solutions for Healthcare organizations.
Palo Alto Networks hands on experience with Advanced NextGen features including App-ID, User-ID, Content-ID, DeviceID, Advanced URL Filtering, Threat Prevention, Wildfire, Zones, Security Policies, Security Profiles, Inbound/Outbound SSL Decryption, File Blocking, or Data Filtering/DLP, DAG/DUG, EDLs, NAT/PAT, Virtual Wire, Virtual System (Vsys), Panorama centralized management, Prisma Cloud and Global Protect.
Familiar and able to support cloud-based network security services like CASB, FWaaS and thorough understanding of Zero Trust as a single cloud-delivered service model.
AWS and Azure knowledge and experience deploying and managing security controls with proven ability to support large-scale hybrid architecture with infrastructure as code.
Understanding of Zero Touch provisioning of Palo Alto firewalls.
Experience with RED/BLUE/PURPLE teaming exercises.
Prior experience with security and regulatory frameworks (NIST CSF, HIPAA, PCI)
Understanding of Zero Trust layered security Approach.
Prior experience in implementation/support of SOAR tools and associated processes
Experience with RED/BLUE/PURPLE teaming exercises.
License/Certification/Registration
Technical certifications in any of the fields Security technologies & tools, Development methodologies and frameworks, Cloud and Networking
Industry recognized professional certifications Security+, TOGAF, CISSP, PCNSE
#J-18808-Ljbffr