Principal Network Security Engineer

Job Title: Principal Network Security Engineer

Job Location: Philadelphia, PA (Hybrid 3 days onsite).

Job Type: Full-time

A large hospital is seeking a full-time Principal Network Security Engineer. The Principal Network Security Engineer is a senior-level technical leader responsible for the design, implementation, and governance of enterprise network security architecture, with deep expertise in Palo Alto Networks firewalls, Cisco ISE-based segmentation, and Azure Cloud Security. This role blends advanced technical execution with strategic vision to drive the organization s network security maturity.

Responsibilities includes,

troubleshooting, creation of rules and configuration changes with templates, capacity planning, OS upgrades and

CLI troubleshooting. Conducting audits to ensure compliance standards, policies and configuration guidelines are

met. Writing debugging and trace tools to assist troubleshooting issues. Visio diagrams will need to be created and

maintained on network flow to assist team with troubleshooting. Expert level knowledge of Cisco network

environment along with the ability to support a wide range of infrastructure technologies including Cisco routing

and switching, WAN/LAN, VoIP, Unified Communications, enterprise, border and optimization . Architecting and

implementing network segmentation strategies using Cisco ISE. Experience with security compliance standards (i.e.

HIPAA) site-to-site VPN and remote access VPN. Provides 24/7 support with on-call rotation.

Qualifications

Education

Bachelor s Degree in Electronic Engineering, Computer Science, Information Technology, or other related

field (Required) or

Combination of relevant education and experience may be considered in lieu of degree (Required

Experience

10 years experience Network Security (Firewalls) engineering, design, and implementation experience

(Required)

7 Years Experience with Routing / switching and Wireless technologies (Required)

5 years experience and a working knowledge of enterprise, border and optimization management

architectures/systems (VMWare, NetApp, AD, Citrix, NSX, NetScaler) (Required)

5 years experience with hands-on experience in telecommunications or network security engineering

(Required)

5 years experience in IT infrastructure or related IT experience (Required)

5 years experience and knowledge working with LAN switch technology (including large scale LAN network,

STP, VTP domain management, network test methods and equipment) (Required)

5 Years experience in Firewall administration (Palo Alto Networks) role supporting installation,

configuration, migration & post-production support for medium to large enterprise. (Required)

Licenses and Certifications

Palo Alto Cert Netwrk Sec Admn (Required)

Cisco Cert Network Associate (Preferred) or

Cisco Cert Net Professional (Preferred)

Cert Info Sys Security Prof (Preferred) MSFT Cert Azure Security Eng (Preferred)

Job Responsibilities

o Actively leads, oversees, defines and owns each project / task to move the team toward the completion of goals.

o Makes procedural or process improvements for achieving team goals or performing team functions; provides necessary resources or helps to remove obstacles to help the team accomplish its goals. o Listens to and fully involves others in team decisions and actions; values and uses individual's differences and talents including mentoring junior members of the team.

o Shares important or relevant information with the team. o Builds a positive team by offering assistance and support to co-workers, patients, vendors, and partners.

o Puts success of team above own interests. o Works actively to resolve conflicts.

d. Project Coordination - Principal Network Security Engineer

o Lead project tasks, resources and activities. o Works with other business or clinical functions as appropriate.

o Acts as a project team leader on an as needed basis. o Uses standardized project management methodology. Documentation o Creates and maintains written and electronic documents.

o Documents all procedures and activities timely, accurately, and legibly. o Follows all documentation standards according to department policy and procedures. Technology and Equipment Use o Demonstrates technical skill in using equipment that is appropriate for the job role. o Operates equipment efficiently and properly.

o Maintains equipment to ensure maximum productivity. Troubleshoots any problems that arise.

o Adapts to new technology and processes. System Architecture - Sr Network Security Engineer o Defines enterprise security architecture standards for hybrid on-premise and cloud environments.

o Develops and enforces standards for secure deployment of network infrastructure across global sites.

o Designs fault-tolerant, high-availability security solutions to protect mission-critical assets. o Configures and maintains complex firewall, VPN, and segmentation policies, ensuring least-privilege access principles.

o Oversees the evaluation, proof-of-concept testing, and selection of new network security solutions.

o Implements and manages advanced Palo Alto features including automated threat prevention and global protect configurations.

o Identifying, monitoring, and defining the requirements of the overall security of the system.

o Performs port allocation and documents same. o Deploy Site-to-Site VPN tunnels between Palo alto Firewalls and third party security appliances.

o Add/modify firewall rules to accommodate changes in enterprise network.

o Perform regular updates, HFAs/patches on firewall when needed for maximum performance. o Perform backup, upgrade and restore as required for improved performance. Accountability o Accepts full ownership of enterprise network security posture and related deliverables.

o Drives continuous improvement in security operations, aligning outcomes to industry best practices and compliance frameworks.

System Maintenance - Principal Network Security Engineer

o Leads vendor escalations and manages strategic relationships with Palo Alto and other major security solution providers.

o Oversees & builds proactive monitoring, performance tuning, and optimization of enterprise firewall and network security infrastructure. o Directs troubleshooting efforts for high-severity network security incidents.

o Maintains comprehensive hardware/software inventories and lifecycle plans.

o Oversees deployment of network security assets for major corporate initiatives. o Monitors and responds to emerging threats with timely mitigation strategies, coordinating with SOC and IR teams. o Stays current on reported internet/network security risks and threats.