UnityPoint Health Network Security Engineer in Des Moines, Iowa
This position may be within any UPH region or fully remote.
The Network Security Engineer’s role is to build and maintain network security solutions for the entire UnityPoint Health organization. This includes developing secure networks, systems/projects, and handling technical problems that arise. Operationally, responsibilities include ensuring the enterprise network security solutions are managed and operated effectively to include systems monitoring, health checks, metrics, and reporting. The Network Security Engineer works closely with the Compliance Organization, Networking, and diverse IT and business teams to assist and coordinate the remediation efforts. Conducts continuous security analysis on network, application, and infrastructure components; and works across IT and business teams to develop solutions that address root causes.
The Network Security Engineer position will provide efficient and effective systems to furnish healthcare providers with the information to deliver top quality health care by working with the Directory and Cloud Services Manager, Director of Technology, Project Managers, and other IT management and staff, and external entities.
Excellent communications skills will be used to keep all key entities informed of project progress and ongoing support of the system.
Network Planning & Management
Participates in the definition, design, test, implementation, and documentation of enterprise wide network security solutions and standards.
Monitor the security of the organization’s network from threats originating from inside and outside the organization.
Conduct continuous analysis of security threat information (viruses, malicious code, industry events, hackers and zero day exploits, OEM weaknesses, IDS/IPS and SIEM alerting, etc.) in order to proactively assess and investigate emerging threats and potential impact to UnityPoint Health.
Configure and install firewalls and intrusion detection systems.
Manage firewall and intrusion detection systems policies.
Assist in the investigation of intrusion incidents, forensic investigations, and incident response.
Network Support –
Provide level 3 troubleshooting support for critical network security issues
Firewall configuration, syslog review, security event log review
Monitor and manage the following systems to ensure security services throughout the network are running optimally.
Cisco ISE (Identity Services Engine), RADIUS & TACACS+ AAA, 802.1x, MAB, Guest Services, BYOD, MDM, Profiler, Posture, VPN, and Security Group Access Control
IPS,IDS (Intrusion Protection, Intrusion Detection)
ACS (Cisco Secure Access Control System)
ASA, FWSM (Firewall Service Module)
Cisco NAC (Network Admission Control)
RADIUS VPN (IPSec, L2L, SSL, AnyConnect)
Configuration, Implementation and Management of NexGen Firewalls
Knowledge and experience with use of the following tools to provide feedback and analysis for the security of the enterprise network.
Advanced Persistent Threat Tools (APT)
Enterprise Networking, WAN Technologies, and Protocols
Security Frameworks, Perimeter Defense Models, and Protocols
Deploying security policies and procedures that apply specifically to the Health Care Equipment and Networks.
Ethical Hacking ability to identify vulnerabilities
Bachelor’s degree in Engineering, Computer Science, or equivalent education and work experience will be accepted only if previous experience applies to specific systems.
Advanced industry specific training and certification preferred.
Minimum of two years’ experience in Network Security design, implementation, and support.
Demonstrates thorough knowledge and experience with network security requirements and design methodology, topologies, hardware and software components, management and monitoring systems, file organizations, and capacity planning.
Knowledge of healthcare industry systems preferred.
Ability to work as a team member.
Ability to understand and apply guidelines, policies and procedures.
Communication-written & verbal
Planning and organizing skills
Intermediate level experience with Linux and Command Line Operating Systems.
Technical aptitude – ability to learn new systems quickly
Learn, Shadow, and collaborate with highly experience Security Engineers
Moderate scripting/programming skills.
Must be flexible and able to manage multiple tasks and priorities on very tight deadlines.
Excellent interpersonal, analytical, organizational, and problem-solving skills.
Must be a self-starter & team player with ability to work independently with limited supervision.
Requisition ID: 2021-92013
Street: 6100 Thornton Ave
Name: 9010 Administration
FTE (Numeric Only; Ex. 0.01): 1.0
FLSA Status: Exempt
Scheduled Hours/Shift: Days
External Company URL: http://www.unitypoint.org