St. Luke's University Health Network
Location
Allentown, PA | United States
Job description
St. Luke's is proud of the skills, experience and compassion of its employees. The employees of St. Luke's are our most valuable asset! Individually and together, our employees are dedicated to satisfying the mission of our organization which is an unwavering commitment to excellence as we care for the sick and injured; educate physicians, nurses and other health care providers; and improve access to care in the communities we serve, regardless of a patient's ability to pay for health care. The Senior Network Engineer - Security is responsible for the collaboration and implementation of network security solutions developed by the Information Security and Networking Architects that have been approved by the Chief information Security Officer and Senior Director of Infrastructure. Works on security related projects, initiatives or remediation requirements and includes various aspects of network security testing and implementation of new products or improvements to existing and current network security related products and systems.JOB DUTIES AND RESPONSIBILITIES:
Project, configure, implement, and maintain all network related security platforms and any other related software that ensures the stability and security of those network security systems
Plan and appraise ongoing assessments in collaboration with the Information Security Architect and Cyber Security Risk Engineer of application control, firewall, SIEM, VPN, SSL, intrusion detection or intrusion prevention and other network component policies that protect the network
Guarantee network security best practices are executed through auditing: router, change control, switch, firewall configurations, and monitoring in compliance with standards and guidelines administered by the Chief Information Security Officer
Responsible for periodic vulnerability testing, and co lead remediation projects with the Information Security team.
Articulate systems and methodologies as well as reply to security-related events and support in remediation efforts through security incident response.
Coordinate and oversee log analysis for company managed services offerings to ensure customer policy and security requirements are met
Maintain network security devices to enable pro-active defense of networks within a SLUHN or managed service SOC environment, providing protective monitoring to multiple commercial customers in coordination with guidance from Information Security Architect and Networking Architect
Work under the direction of Networking and Information Security to maintain security devices and show practical experience in managing firewalls, content filters, NIDS/NIPS, proxy servers, network TAP/SPAN, and packet capture devices
Work with customers to form and fix appropriate policy and signature rules. This comprises tuning and development of the creation of custom network intrusion detection and heuristic signatures and rules, including the efficient on-boarding and understanding of varying network log sources into SIEM environments
Work in collaboration with appropriate stakeholders to ensure customers have devices that are fully operational and secure
PHYSICAL AND SENSORY REQUIREMENTS:
Sitting for up to 7 hours per day, 4 hours at a time; standing for up to 7 hours per day, 4 hours at a time; walking for up to 2 hours a day, 1 hour at a time. Requires crouching, kneeling, and lifting of objects weighing up to 60 pounds, pushing objects weighing up to 80 pounds. Requires hand and finger dexterity to perform repairs of small equipment and to use computer equipment. Seeing as it relates to general, near, color and peripheral vision. Hearing as it relates to normal and telephone conversations.
EDUCATION:
Bachelor Degree in Computer Security, Computer Science, Information Systems, or 4 years equivalent work experience is preferred.
TRAINING AND EXPERIENCE:
5-10 years' experience with computer systems preferred. 5-8 years' experience with Network Security, HIPAA/HITECH Security knowledge required. Ability to remain calm while multi-tasking and working under pressure in a fast-paced. Extensive technical know-how of security network devices (switches, firewalls, cryptography) and any other security networking hardware or software tools. Minimum, five years’ experience identifying threats and developing appropriate protection measures. Knowledge of Cisco ASA Firewall and strong routing & switching experience is an added advantage. Reviewing system changes for security implications and recommending improvements. Excellent hands-on experience and knowledge implementing, configuring, integrating and supporting the network security with Checkpoint, Forescout, BigIP LTM, GTM, IPAM, Cisco ISE, Gigamon, Microsoft, Cylera and other security solutions (Not all are needed but the more you have, the more advantages you accrue in securing a job). Knowledge of networking concepts such as WAN connectivity, transport types and protocols, and experience with wireless technology and Wireless deployment. Cisco orientated IOS understanding, working with Routers and Switch Platforms and Experience working with stakeholders at an Operational Level. Attention to details and good problem-solving skills.
Certifications preferred include CISCO - CCNP, CCNA, CCIE, CCSA, FCNSP, CISSP, SSCP, CEH, GIAC, Security +, OSCP, CompTIA Server+, MCSE, LPIC, CompTIA Cloud+, VCP, or CCSE qualified.
Please complete your application using your full legal name and current home address. Be sure to include employment history for the past seven (7) years, including your present employer. Additionally, you are encouraged to upload a current resume, including all work history, education, and/or certifications and licenses, if applicable. It is highly recommended that you create a profile at the conclusion of submitting your first application. Thank you for your interest in St. Luke's!!
Job tags
Salary