Security Engineer II, Network and Data Security

Spectraforce
Los Angeles, United States of America
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 123K

Job location

Remote
Los Angeles, United States of America

Tech stack

Private Networks
Computer Security
Computer Networks
Information Leak Prevention
Data Security
Data Stores
Intrusion Detection and Prevention
Intrusion Detection Systems
Network Security
Network Intrusion Detection Systems
Network Segmentation
Performance Tuning
Data Streaming
Data Classification
Information Technology

Job description

  • The Network and Data Security Engineer safeguards the network perimeters, internal network segments, and data stores.
  • Oversees firewalls, network intrusion detection/prevention (IDS/IPS), network segmentation, and manages email security defenses.
  • Also administers data protection technologies - e.g. data classification, Data Loss Prevention (DLP), encryption for data at rest and in transit - to protect sensitive clinical and patient information.
  • By focusing on both network traffic monitoring and safeguarding data, this function covers key "Protect" controls (in NIST terms) to uphold confidentiality and integrity of data., * Assist SOC with monitoring IDS/IPS, firewall, and email alerts.
  • Assist with responding to DLP alerts and escalate potential exfiltration.
  • Validate operational state of critical network security systems.
  • Review quarantined items or blocked traffic requiring validation.
  • Assist with Tuning firewall, IPS, and email security rules.
  • Validate segmentation controls for key systems.
  • Review DLP policy accuracy and refine triggers.
  • Coordinate with SOC on correlated events.
  • Perform firewall rule reviews/cleanup.
  • Audit data flows for PHI/PCI/sensitive systems.
  • Conduct architecture assessments for upcoming changes.
  • Review encryption posture.
  • Publish network and data protection metrics.

Incident & RACI Expectations:

  • Responsible for coordinating remediation on network segmentation, firewalling, and intrusion prevention.
  • Consulted during major incidents to identify root causes and remediation guidance.

Requirements

  • Associate's degree - Computer Science or a related field OR the equivalent combination of experience and education that would demonstrate the capability to successfully perform the essential functions of this position.

Minimum Experience:

  • 5 years - Experience in Information Security.

Key Skillset:

  • Hands-on experience with email defense (Proofpoint) and Network security - not only Zscaler, but someone in InfoSec that can work closely with Networking for alignment.

Preferred

  • Healthcare experience.
  • PCI, HIPAA, NIST experience.
  • Security control concepts: physical, logical, and administrative., * One (or more) of the following security certifications: ISC2 certificates, GIAC certificates, CISM/A, CEH, etc.

Apply for this position