DescriptionThe Network Security Engineer independently designs, implements, and manages network security systems including firewalls and remote access solutions, building upon the foundational skills of an associate. They take a more active role in implementing security measures, troubleshooting network security issues, and providing valuable insights for enhancing security protocols. Their efforts significantly contribute to the ongoing protection and optimization of information systems. They participate in an on-call rotation for after-hours support and work closely with other IT teams and customers to ensure the network security needs of the university are met.
About the Work Unit:
Vanderbilt University Information Technology is a human-centric organization that advances our university by delivering innovative solutions and frictionless experiences through collaboration.
Duties and Responsibilities:
Design and Implementation of Network Security Systems:
- Design and deploy network security systems, including firewalls and remote access solutions, to protect university assets.
- Develop and implement firewall policies and rules to safeguard against unauthorized access and threats.
- Configure and deploy intrusion detection/prevention systems (IDS/IPS), content filtering, IPSec tunnels, and other security technologies.
- Ensure alignment of network security systems with industry standards and best practices.
Support Efficient Network Security Operations:
- Provide customer support, promptly respond to service requests, and communicate effectively to fulfill customer needs.
- Troubleshoot and resolve network security issues to ensure minimal downtime and optimal performance.
- Implement and maintain network management tools for continuous monitoring of network security systems to facilitate proactive issue detection and resolution.
- Plan, schedule, and execute upgrades and lifecycle management for firewalls and remote access systems to maintain security and compliance with industry standards.
- Respond to security incidents, conduct root cause analysis, and implement corrective actions.
- Maintain detailed documentation of system configurations, procedures, and network diagrams.
Security Policy and Protocol Enhancement:
- Provide valuable insights and recommendations for enhancing network security protocols.
- Develop and update network security policies and procedures.
- Ensure compliance with university policies, industry standards, and regulatory requirements.
Continuous Improvement and Optimization:
- Stay updated with the latest trends and advancements in network security.
- Identify opportunities for improving security operations and implementing best practices.
- Collaborate with other IT and cybersecurity team members to optimize the university's security posture.
Supervisory Relationships:
This position does not have supervisory responsibilities. This position reports administratively and functionally to the Cybersecurity Engineering and Operations Director.
Qualifcations:
- Bachelor’s degree or equivalent relevant experience required is necessary.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field is preferred.
- Relevant certifications such as CompTIA Security+, GIAC Security Essentials (GSEC), Palo Alto Networks Certified Security Administrator (PNCSA), or Palo Alto Networks Certified Security Engineer (PCNSE) are preferred.
- 4-7 years of relevant network security experience is necessary.
- Proficiency in network security tools and technologies, including firewalls, VPNs, TCP/IP, network protocol analyzers, IDS/IPS, and encryption is necessary.
- Understanding of security information and event management (SIEM) systems and security architectures is necessary.
- Excellent problem-solving and analytical skills is necessary.
- High level of attention to detail and accuracy is necessary.
- Experience with Palo Alto firewalls is preferred.
- Understanding of cloud networking concepts and integration with on-premises infrastructure is preferred.
- Ability to work on-call rotations for after-hours support is necessary.
- Demonstrated commitment to VUIT’s Guiding Principles is necessary.
Information Technology’s Guiding Principles:
- Trust and Respect- VUIT cultivates a community built on trust, mutual respect, and inclusivity, where all members feel valued and supported. We prioritize honesty, dignity, empathy, and a willingness to listen and understand.
- Professionalism- VUIT strives to maintain a culture of maturity, accountability, and integrity to best represent the University and self. Have a sense of humility and poise in your work and daily interactions.
- Collaborate- VUIT commits to being inclusive in solution design where we value sharing within and partnering across the university. We are intentional about including our colleagues and preventing silos.
- Bias-to-Action- VUIT is seen as a changemaker by exhibiting a decisive, self-starter, take-action approach with a willingness to make decisions without excessive deliberation. Personal initiative is recognized as a key part of the creative process.
- Communicate- Communication (written, verbal and non-verbal), within and outside VUIT, is open, thoughtful, welcoming, clear, proactive, concise yet complete, always honest, and delivered kindly.
- Innovate- VUIT pledges to be bold and challenge the status quo by inspiring a culture of creativity that promotes growth and advancement for the university.
- Celebrate Each Other- We are intentional in showing appreciation for the work of others by valuing and acknowledging meaningful contributions at all levels of the organization.
- Optimize- VUIT will practice continuous and thoughtful optimization of our solutions and services to increase our human and technological capacity. Capacity drives innovation.
#VUCLO