Chaska, MN, 55318, USA
31 days ago
Staff Network Security Engineer - On Site
At first glance, you’ll see that for more than 80 years we’ve been dedicated to advancing and optimizing the laboratory to move science and healthcare forward. Join a team where you can be heard, be supported, and always be yourself. We’re building a culture that celebrates backgrounds, experiences, and perspectives of all our associates. Look again and you’ll see we are invested in you, providing the opportunity to build a meaningful career, be creative, and try new things with the support you need to be successful. Beckman Coulter Diagnostics is proud to work alongside a community of six fellow Diagnostics Companies at Danaher. Together, we’re working at the pace of change to improve patient lives with diagnostic tools that address the world’s biggest health challenges. The Staff Network Security Engineer for Beckman Coulter Diagnostics is responsible for architecture Network Security Components as well as hands on service delivery to secure enterprise network devices leveraging industry best practices. This position is part of the Enterprise Technical Services department located in North America. At Beckman Coulter, our vision is to relentlessly reimagine healthcare, one diagnosis at a time. You will be a part of the Network Security Team and report to the Manager, Network Security responsible for architecture and service delivery of Network Security covering 150 remote sites globally, 5 data centers, and an ever-growing Cloud footprint. If you thrive in an environment where innovation is part of everyday life, where excellence and high standards are the norm, and where you can make a real impact while working on best of breed world-class technologies, then read on. In this role, you will have the opportunity to: + Participate in the definition of the technology roadmap for network security components such as firewalls, intrusion prevention, network access control, central policy management, and SSL VPN services. Including technology watch, vendor selection, and engineering validation in the lab. + Participate in strategy definition and execution for enterprise network segmentation to address high risk environments such as public facing cloud applications or backend manufacturing systems and IoT. + Translate business requirements for secure applications by designing, implementing, and managing firewall policy based on internal standards as well as industry best practices. + Take escalations for unique and complex technical problems that operations teams are unable to solve using existing work instructions, perform root cause analysis and knowledge transfer. + Participate in security incident response as part of a larger cross-functional team. The essential requirements of the job include: + 9+ years experience in IT. + 5 years of experienc e in the networking field at a global enterprise scale, including WAN, LAN, or data center environments + Advanced Knowledge and 5 years of hands-on administration experience with Next-Generation Firewall (Palo Alto) + Advanced Knowledge and 2 years of hands-on administration, designing and supporting SSL VPN services in a large enterprise environment (Preferably Palo Alto Prisma Access or Global Connect) + Proven hands-on track with at least one of the following network authentication service engines: Aruba ClearPass, Cisco ISE, Pulse Secure Policy Manager It would be a plus if you also possess previous experience in: + Optimizing security policy and migrating existing policy from one FW vendor to another. + Hands-on experience on Juniper Security Director, Juniper Next Generation Firewall, or Checkpoints + Network automation tools such as Ansible or Chef, scripting using Python, Bash, or any other tools for automating mass changes on network/security devices in a large environment. The salary range for this role is $125,000 to $150,000. This is the range that we in good faith believe is the range of possible compensation for this role at the time of this posting. We may ultimately pay more or less than the posted range. This range may be modified in the future. This job is also eligible for bonus/incentive pay. #L1-WT1 We offer comprehensive package of benefits including paid time off, medical/dental/vision insurance and 401(k) to eligible employees. Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law. Join our winning team today. Together, we’ll accelerate the real-life impact of tomorrow’s science and technology. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of science to life. For more information, visit www.danaher.com . Danaher Corporation and all Danaher Companies are committed to equal opportunity regardless of race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. We value diversity and the existence of similarities and differences, both visible and not, found in our workforce, workplace and throughout the markets we serve. Our associates, customers and shareholders contribute unique and different perspectives as a result of these diverse attributes. The EEO posters are available here (https://www.dol.gov/agencies/ofccp/posters) . We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us at applyassistance@danaher.com to request accommodation.
Confirm your E-mail: Send Email