Network Security Engineer

We are more than a health system. We are a belief system. We believe wellness and sickness are both part of a lifelong partnership, and that everyone could use an expert guide. We work hard, care deeply and reach further to help people uncover their own power to be healthy. We inspire hope. We learn, grow, and achieve more – in our careers and in our communities.

Job Description Summary:

Reports to Cyber Security Functional Leader and will have no direct reports.

Senior Cyber Security Engineer serves as the primary security expert within their respective Cyber

Security specialty, with deep knowledge to apply in the implementation of applications and technology. 

Senior Cyber Security Engineer works closely with the business analysts, architects, vendor partners, and other teams across the IT organization to secure complex applications and services.

Provides technical expertise by designing and enforcing security controls for the application or service architecture which safeguards the integrity and security of the application environment in alliance with architects and other tech leads.

In addition, the incumbent will conduct design reviews, analyze results, and make a recommendation to deliver quality products.   

Responsibilities And Duties:

20% Security Expertise - Serves as the deep technical expert for cyber security principles spanning network, application, system, cloud, and end point use cases.  Applies security knowledge to identify and assess risk, develop create and secure solutions to protect enterprise data and systems.  Adapts to new and emerging technologies. 
15% Leads Initiatives - Guides their teams through technical issues and challenges. Leads technology change to deliver security and secure business outcomes while also virtually leveraging subject matter experts from any other needed technical area.  Oversees, or consults on, technology implementation and modification activities (for example, projects and products), particularly for new or shared solutions.
10% Collaboration - Works with architects, Business Analysts, Product Owners, and peers providing technical expertise by integrating security controls to ensure the security and integrity of the application environment.  Reviews and provides security input into architectural designs and requirements.
10% Technical Documentation - Creates, reviews, and approves technical documentation for applications supported and providing specifications for vendors
10% Research and Analysis - Analyzes, plans, justifies, schedules, and coordinates the implementation and maintenance of the specialty area’s administrative, operational, and financial initiatives including TCO, optimization, and efficiency
25% Technology Strategy - Leads the development of technology strategy and roadmap within a given area of specialty including design, documentation, communication, and implementation of new or existing standards for infrastructure technologies while remaining current on industry trends
10% Vendor Management - Works with 3rd party vendors to negotiate contracts and develop reporting metrics, dashboards, and status reporting to drive outcomes and meet expectations for quality and performance"

Minimum Qualifications:

Bachelor's Degree

Additional Job Description:

MINIMUM QUALIFICATIONS

• Degree in Computer Science, Information Technology, or a related field. Or equivalent experience
•  Minimum of 5 years of experience in network security, preferably in a healthcare environment.

SPECIALIZED KNOWLEDGE:

•  In-depth knowledge of network security technologies, including NGFW, IPS, VPNs, Proxies, SASE, WAF, DoS protections, NAC, Radius, SDWAN, and WLAN security.
•   Strong understanding of healthcare regulations and compliance requirements (e.g., HIPAA).
•   Relevant certifications such as CISSP, CISM, CEH, CCNP Security, or equivalent.
•  Excellent problem-solving skills and the ability to work under pressure.
• Strong communication and interpersonal skills.

DESIREABLE ATTRIBUTES:

•  Deep experience in troubleshooting network architecture and systems, knowledge of network protocols (TCP/IP, BGP, OSPF, EIGRP, MPLS), and network analysis tools (e.g., Wireshark).
•  Knowledge of cloud security practices and solutions.
•  Familiarity with endpoint security solutions.

RESPONSIBILITIES AND DUTIES

• Manage network security solutions, including Next Generation Firewalls (NGFW), Intrusion Prevention Systems (IPS), and Web Application Firewalls (WAF).
•  Configure and maintain IPSec and SSL VPNs to ensure secure remote access.
•  Manage Forward and Reverse Proxies to enhance network security and performance.
•  Manage Secure Access Service Edge (SASE) solutions to provide comprehensive security across all network edges.
• Maintain Denial of Service (DoS) protection mechanisms to safeguard against network attacks.
• Manage Network Access Control (NAC) systems to ensure only authorized devices can access the network.
• Manage Radius Authentication for secure network access.
•  Ensure WLAN security through the deployment of robust wireless security measures.
• Collaborate with other IT and security teams to develop and enforce security policies and procedures.
•  Stay up-to-date with the latest security trends, threats, and technology advancements.

Work Shift:

Day

Scheduled Weekly Hours :

40

Department

Information Security

Join us!
... if your passion is to work in a caring environment
... if you believe that learning is a life-long process
... if you strive for excellence and want to be among the best in the healthcare industry

Equal Employment Opportunity

OhioHealth is an equal opportunity employer and fully supports and maintains compliance with all state, federal, and local regulations. OhioHealth does not discriminate against associates or applicants because of race, color, genetic information, religion, sex, sexual orientation, gender identity or expression, age, ancestry, national origin, veteran status, military status, pregnancy, disability, marital status, familial status, or other characteristics protected by law. Equal employment is extended to all person in all aspects of the associate-employer relationship including recruitment, hiring, training, promotion, transfer, compensation, discipline, reduction in staff, termination, assignment of benefits, and any other term or condition of employment