Danaher - Brea, CA

posted 17 days ago

Full-time - Senior
Brea, CA
Computer and Electronic Product Manufacturing

About the position

The Staff Network Security Engineer at Beckman Coulter Diagnostics is responsible for the architecture and hands-on service delivery of network security components to secure enterprise network devices. This role involves defining technology roadmaps, executing strategies for network segmentation, and managing firewall policies to ensure secure applications. The position is part of the Enterprise Technical Services department and requires collaboration with a cross-functional team to respond to security incidents and solve complex technical problems.

Responsibilities

  • Participate in the definition of the technology roadmap for network security components such as firewalls, intrusion prevention, network access control, central policy management, and SSL VPN services.
  • Participate in strategy definition and execution for enterprise network segmentation to address high-risk environments.
  • Translate business requirements for secure applications by designing, implementing, and managing firewall policy based on internal standards and industry best practices.
  • Take escalations for unique and complex technical problems that operations teams are unable to solve, perform root cause analysis, and knowledge transfer.
  • Participate in security incident response as part of a larger cross-functional team.

Requirements

  • 9+ years experience in IT.
  • 5 years of experience in the networking field at a global enterprise scale, including WAN, LAN, or data center environments.
  • Advanced knowledge and 5 years of hands-on administration experience with Next-Generation Firewall (Preferred Palo Alto).
  • Advanced knowledge and 2 years of hands-on administration, designing and supporting SSL VPN services in a large enterprise environment (Preferred Palo Alto Prisma Access).
  • Proven hands-on track with at least one of the following network authentication service engines: Aruba ClearPass, Cisco ISE, Pulse Secure Policy Manager.

Nice-to-haves

  • Previous experience in optimizing security policy and migrating existing policy from one FW vendor to another.
  • Hands-on experience on Juniper Security Director, Juniper Next Generation Firewall, or Checkpoints.
  • Experience with network automation tools such as Ansible or Chef, scripting using Python, Bash, or other tools for automating mass changes on network/security devices.

Benefits

  • Paid time off
  • Medical/dental/vision insurance
  • 401(k)
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service