Network Security Engineer
Boston Medical Center
Position: Network Security Engineer
Location: Information Security
Schedule: Full Time
The Network Security Engineer is responsible for implementation and operations of Boston Medical Center security management systems which include the BMC Enterprise Antivirus platform. Detects, identifies and resolves complex service issues. Reviews and identifies necessary antivirus signature updates as they pertain to BMC perimeter security needs. Schedules and executes signature and major OS patch updates to antivirus environments in accordance with BMC ITS Change Control procedures. Monitors health statistics for security appliances. Responds to on-call issues relating to security breaches/failures. Troubleshoots client connectivity issues in coordination with Network Engineers. Provides technical support for Systems Engineering team and field support staff. Documents and communicates problem resolutions to other information technology personnel involved. Develops support practices for PCs, peripherals, enterprise operating systems and software applications. Creates documentation and provides training for Help Desk and Systems Engineering Teams.
The Network Security Engineer provides support of the information systems security controls. Provides technical and administrative support of network security components including firewalls, intrusion detection systems, AAA and authentication systems, certificate management servers, and network management systems. Will also have the chance to provide administrative support to the systems security components including Active Directory / GPO policies, end-point encryption, anti-spam/anti-virus, operating systems configuration, etc.
Implement and support the information systems security controls, including all technical, physical and administrative controls pertaining to the computing environment. Working with Information Security Management, ensure a secure and operationally efficient computing environment. Also, acts as the technical resource to IT auditors, both internal and external.
Working under the direction of Information Security Management, this role is responsible for ensuring that IT systems are engineered and designed in a secure manner. Furthermore, the role has additional responsibilities pertaining to developing, maintaining and troubleshooting computer network security systems; preventing misuse and malicious behavior and outlining constraints and restrictions in accordance with security policy.
Bachelor’s Degree preferred. Peferably in Computer Sciences/Engineering or MIS.
An equivalent combination of education and experience will be considered in lieu of a Bachelor’s Degree.
CERTIFICATES, LICENSES, REGISTRATIONS REQUIRED:
Technical security certifications from Sans pertaining to relevant job duties. Example, GSEC, GCIH, GCFA, etc. strongly preferred.
2-3 years of Information Security related experience is required for this position.
Experience with Enterprise Microsoft, Linux, Networking and telephony infrastructures.
Demonstrated experience with Enterprise Security technologies such as intrusion prevention, vulnerability management, endpoint protection, systems configuration and operations management.
KNOWLEDGE AND SKILLS:
Ability to translate complex security requirements into sustainable security architectures.
Excellent communications skills including facilitating presentations.
Strong implementation, requirements/process analysis, conceptual and detailed design, configuration, testing.
Excellent analytical skills and the ability to define problems, collect data, establish facts, and draw conclusions.
Excellent organization skills; someone who thrives in a dynamic and ever-changing environment.
The ability to express issues and communicate well with various vendors and their operations personnel.
A strong understanding of Internet fundamentals.