Network Security Engineer

With a career at HMSHost, you really benefit! We offer:

• Health, dental and vision insurance
• Generous paid time off (vacation, flex or sick)
• Holiday pay
• Meal and Transportation Benefits
• 401(k) retirement plan with company match
• Company paid life insurance
• Tuition reimbursement
• Employee assistance program
• Training and exciting career growth opportunities
• Referral program – refer a friend and earn a bonus

The Network Security Engineer is responsible for translating the security policies and procedures into technical architectures as it pertains to the networking. This position will also be responsible for monitoring security advisory groups to ensure all necessary network security updates, patches and preventive measures are in place. This position typically reports to the Manager of Network Services.

Essential Functions

• Implements network security policies and procedures
• Maintains, monitors and updates malware prevention systems
• Creates and analyzes custom PCI compliance reports in enterprise platforms such as SPLUNK or experience with any industry SIEM tool.
• Monitors system security and responds to incidents
• Prevents and detects intrusions through all of the Enterprise firewall systems
• Monitors security advisory groups to ensure all necessary network security updates, patches and preventive measures are in place
• Develops network device baseline configurations and firmware management plans
• Partners with vendors to isolate and resolve both hardware and software issues
• Creates and maintains documentation of firewall configurations and processes
• Coordinates project task execution with little to no management oversight
• Analyzes VPN and Firewall performance, identifying areas of concern and formulating action plans

Minimum Qualifications, Knowledge, Skills, and Work Environment

• Requires a Bachelor’s degree in a technical field and 3 years of experience in security infrastructure administration
• Requires 1 security focused credential
• Requires 2 years of experience administering an enterprise log management system
• Understanding and experience with BGP, MPLS, OPFS and QoS
• Requires a working knowledge of Enterprise class firewall systems from either WatchGuard or Cisco
• Requires working knowledge of mobile workforce administration and integration experience with RSA, ISA, VPN, and RADIUS devices
• Requires 2 years RSA SecureID or DUO appliance administration
• Requires previous experience working in a security admin role with PCI compliance related duties such as system hardening, development of audit reports, creating secured baseline device configurations and penetration testing
• Requires a strong technical background, including a working knowledge of network management protocols, networking architecture, authentication practices and security administration
• Experience working within a 24x7 Network Operations Center(NOC) preferred
• Experience with deploying clustered NLB Web Proxy and VPN arrays utilizing Microsoft Threat Management Gateway (TMG) preferred
• Familiarity and experience with penetration testing and intrusion detection
• Requires excellent written and verbal communication skills Equal Opportunity Employer (EOE) Minority/Female/Disabled/Veteran (M/F/D/V) Drug Free Workplace (DFW)