Security Engineer II bei St. John’s Episcopal Hospital

Who We Are:

St. John�s Episcopal Hospital is the only hospital providing emergency and ambulatory care to the densely populated, culturally and economically diverse, and medically underserved populations of the Rockaways and Five Towns in southern Queens County and southwestern Nassau County, New York. Celebrating over 110 years of community care, the 257-bed facility provides people of all faiths with comprehensive preventive, diagnostic treatment and rehabilitative services, regardless of ability to pay.

Come Grow With Us!

Type: Full-Time

Shift: Days

Hours: 9:00AM - 5:30PM

Pay: $95,000 - $115,000

Job Summary:

The Security Engineer II is a key member of the Information Security team responsible for designing, implementing, and maintaining the security of the EHS network infrastructure. This role involves hands-on work with a variety of security technologies to protect our systems from internal and external threats. The ideal candidate will have a strong background in network security principles, hands-on experience with enterprise-grade security tools, and a passion for protecting critical healthcare data. The successful candidate will work collaboratively within the information security and IT teams but must also be a self-starter capable of managing projects independently. This role participates in an on-call escalation rotation for critical security incidents that occur off-hours.

Responsibilities:

• Design, implement, and manage network security solutions, including firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and network access control (NAC).
• Implement and manage data loss prevention (DLP) controls across on-premise and cloud environments to protect sensitive information.
• Develop and implement automation for security processes, including identity and access management (IAM) provisioning and security incident response workflows.
• Monitor network traffic for security incidents and events; conduct investigations and respond to security breaches.
• Perform regular security assessments, vulnerability scanning, and penetration testing of the network infrastructure.
• Develop and maintain network security policies, procedures, and documentation.
• Collaborate with IT and clinical teams to ensure that new and existing applications and systems are implemented with appropriate security controls.
• Manage and maintain security hardware and software, including patching, upgrading, and troubleshooting.
• Participate in the security incident response team and provide expertise during security events.
• Stay current with the latest cybersecurity threats, vulnerabilities, and industry best practices.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent work experience.
• 3-5 years of proven experience as a Network Security Engineer or in a similar role.
• Hands-on experience with enterprise security solutions, including Next-Generation Firewalls (e.g., Palo Alto Networks, Fortinet), Network Detection and Response (NDR), Endpoint Detection and Response (EDR), SIEM, and Single Sign-On (SSO) in both on-premise and cloud environments (Azure, AWS).
• Strong understanding of networking protocols (TCP/IP, DNS, DHCP, BGP, OSPF).
• Experience with security information and event management (SIEM) systems (e.g., Splunk, QRadar).
• Knowledge of vulnerability assessment tools (e.g., Nessus, Qualys).
• Experience with scripting and automation (e.g., Python, PowerShell) to enhance security operations.

Preferred Certifications:

• Professional certifications are highly desirable, such as CISSP, PCNSE, CCNA, CompTIA CySA+, or relevant GIAC certifications (GCIH, GCIA).