Job Summary
The Network Security Engineer is responsible for the design, implementation, administration, monitoring, and support of the health system's network security infrastructure. This role ensures the confidentiality, integrity, and availability of clinical, business, and patient information by securing enterprise networks, data centers, cloud environments, remote access technologies, and connected medical device networks. The Network Security Engineer works closely with Information Security, Network Engineering, Infrastructure Services, Clinical Engineering, and operational teams to implement cybersecurity controls, maintain secure network architectures, respond to security incidents, and support regulatory compliance initiatives. The position plays a critical role in protecting healthcare operations from cyber threats while ensuring reliable and secure access to systems and services.
Essential Job Functions
The following duties are normal for this position. The omission of specific statements of duties does not exclude them from being expected of this position if the work is similar, related, or a logical assignment for this position. Other duties may be required.
§ Responsible for Firewall Management, NAC, VPN, Segmentation, Clinic Connectivity Security
§ Specific Project Focus on Network Segmentation Overhaul, NAC Modernization, and Secure Remote Access
§ Assist with/support OS/vulnerability patching
§ Designs and enforces network security controls including VPN encryption standards, secure remote access, network DLP enforcement, traffic inspection, data exfiltration prevention, and SIEM-integrated network threat monitoring.
§ Monitor network security events, investigate suspicious activity, and coordinate remediation efforts with cybersecurity operations teams.
§ Design and maintain secure network segmentation strategies for corporate, clinical, guest, biomedical, and cloud environments.
§ Support implementation and maintenance of Zero Trust Network Access (ZTNA) and network micro-segmentation initiatives.
§ Develop and maintain firewall policies, access control lists (ACLs), network security standards, and configuration baselines.
§ Evaluate and approve network connectivity requests and firewall rule changes based on security requirements and business needs.
§ Assist with securing cloud networking environments, including Azure, AWS, and hybrid cloud architectures.
§ Support wireless network security initiatives and secure authentication solutions.
§ Collaborate with Clinical Engineering and Biomedical teams to secure connected medical devices and Internet of Medical Things (IoMT) environments.
§ Conduct network security assessments, vulnerability reviews, and risk analyses.
§ Participate in incident response activities involving network-based threats, malware outbreaks, ransomware events, and unauthorized access attempts.
§ Support third-party connectivity reviews and vendor remote access security controls.
§ Maintain network security documentation, diagrams, standards, and operating procedures.
§ Participate in disaster recovery planning, network resiliency testing, and business continuity initiatives.
§ Support compliance initiatives related to HIPAA, HITRUST, NIST, and other applicable regulatory and security frameworks.
§ Evaluate emerging network security technologies and provide recommendations for improving the organization's security posture.
Knowledge & Skills
Education & Experience
§ Bachelor's degree in Information Technology, Computer Science, Information Security, Network Engineering, or a related field required.
§ Equivalent combination of education and relevant experience may be considered.
§ Minimum of 3 to 5 years of experience supporting enterprise networking and network security technologies.
§ Experience administering enterprise firewall platforms such as Palo Alto Networks, Cisco Systems, Fortinet, or similar technologies.
§ Experience with VPN technologies, network segmentation, routing, switching, and secure remote access solutions.
§ Experience implementing and supporting network access control (NAC) solutions.
§ Experience supporting wireless network security and authentication technologies.
§ Experience with cloud networking and cloud security controls in Microsoft Azure and/or AWS environments preferred.
§ Experience supporting healthcare organizations, hospitals, or other highly regulated environments preferred.
§ Familiarity with security frameworks including NIST Cybersecurity Framework (CSF), CIS Controls, HITRUST, and ISO 27001 preferred.
Special Skills & Knowledge
§ Strong understanding of TCP/IP networking, routing, switching, VLANs, DNS, DHCP, and network protocols.
§ Advanced knowledge of firewall administration, policy management, threat prevention, and network security architecture.
§ Knowledge of intrusion detection and prevention systems (IDS/IPS), web application firewalls (WAF), and network traffic analysis tools.
§ Experience with network segmentation, micro-segmentation, and Zero Trust networking concepts.
§ Understanding of secure remote access technologies, VPN solutions, and multi-factor authentication integration.
§ Knowledge of wireless networking security standards and enterprise authentication protocols.
§ Familiarity with cloud networking concepts, including virtual networks, security groups, firewalls, and hybrid connectivity models.
§ Understanding of healthcare cybersecurity risks and the protection of electronic protected health information (ePHI).
§ Knowledge of medical device network security considerations and IoMT security principles.
§ Familiarity with SIEM platforms, network monitoring tools, packet analysis tools, and threat detection methodologies.
§ Strong troubleshooting, diagnostic, and root cause analysis skills.
§ Ability to interpret security logs, network traffic patterns, and threat intelligence information.
§ Strong written and verbal communication skills.
§ Ability to create and maintain technical documentation, network diagrams, and operational procedures.
§ Ability to balance security requirements with clinical, operational, and business needs.
§ Ability to work independently and collaboratively in a fast-paced healthcare environment.
§ Strong organizational skills with the ability to manage multiple projects and priorities simultaneously.
§ Commitment to continuous learning and professional development in networking, cybersecurity, and healthcare technology.
Licenses, Certifications, etc.
Professional certifications such as CCNA, CCNP, Security+, Network+, PCNSA, PCNSE, NSE, AZ-500, CISSP (Associate), or equivalent preferred.
Requirements
Supervisory Responsibility
§ N/A
Working Conditions & Travel Requirements
§ Hybrid in Austin, TX or Nashville, TN.
§ Travel as needed
Fortified Health Security is an Equal Opportunity Employer. In compliance with the Americans with Disabilities Act, Fortified Health Security will provide reasonable accommodations to qualified individuals with disabilities. If a reasonable accommodation is needed to perform this position, you need to inform Fortified Health Security People and Culture Team of such request. Signatures below indicate the receipt and review of this job description by the associate assigned to the position and the People and Culture Team.
