The Sr. Network Security Engineer will be a member of the Information Security & Compliance team, in this role, the candidate will be highly technical hands-on, analytical, process oriented and possess excellent written and verbal communication skills and collaborate with product teams, be responsible for engineering security solutions and operational support across hybrid cloud environment, ensuring compliance with legal and regulatory requirements, maintain Penumbra Inc., Information security policies, standards, and industry best practices.
What You'll Work On
The ideal candidate will be responsible for ensuring the security of our hybrid environment systems, network, infrastructure and servicesYou will be responsible for all network security solutions, controls design and enforcement across our hybrid environmentYou will design and perform security assessments, penetration tests on various enterprise systems and network to simulate probable attack patterns, to validate control effectivenessYou will engage and share results of attack simulations with IT teams and promote changes vital to improve our risk postureYou will collaborate with cross-functional teams to develop and implement security measures, manage on-prem and cloud security systems.You will enforce secure design standards, specifications for on-prem and cloud-based services, pipelines, and productsDevelop, roadmaps and standards for technical solutions, ensuring they align to the overall enterprise security architecture. Serve as the subject matter expert across hybrid environment.Conduct risk assessments, security audits, and system tests to ensure the effectiveness of security measuresRespond to and, when necessary, lead the incident response activity on all enterprise security incidents.Collaborate with IT and line of business teams to integrate security protocols into new and existing deploymentsManage and configure on-prem and cloud security services/ controls, i.e., firewalls, intrusion detection/ prevention, threat prevention technologies, and all crypto technologiesCreate and maintain documentation for on-prem and cloud security procedures and protocols, conduct security training and awareness for staffStay current with emerging security threats and technologies in the IT landscape. Ensure compliance with regulatory requirements and industry standards across hybrid environment.What You'll Bring
Bachelors or Masters+ in Computer Science or Engineering with an emphasis in Computer Security or a related field, or equivalent experience10+ years of hands-on design, enforcement and testing/ validation of offensive security, defensive security, systems and solutions engineering in a large enterprise5+ years of hands-on experience and an expert on cloud security platforms i.e., Azure, AWS or Google Cloud Platform services, automation, Infra as code, scripting (i.e., Python, Go etc..) RegEx, Ariel Query Language 5+ years of hands-on experience and an expert on security technologies i.e., Firewalls (Prefer PaloAlto Tech stack),IPS, AFW, PA Threat Prevention Technologies, CASB, Crypto Tech, SAML/ OIDC NAC 802.1X, SIEM, SOAR, Radius/ TACACS+, Directory servicesProficient with network topologies, routing protocols i.e., OSPF, BGP, ISIS, SDN technologies and tunneling techniques.Proficient with tools and threat models, enforce kill chains and script own automations in a large operating environmentProficient in conducting solutions architecture, security design reviews, passionate about security and privacy research, technologies, and methods. Experienced in designing offensive security test cases and performing manual & automated attack simulations to test control effectivenessPossess an understanding of past and emerging security exploits, threat actor motivations, and trendsUnderstanding security and compliance frameworks, security engineering, software delivery, and SDLC in a hybrid environmentOutstanding ethical standards and integrity. Highly reciprocal and excellent communicator (written & verbal)Working Conditions
General office environment. Business travel from 0% - 10%. Potential exposure to blood-borne pathogens. Requires some lifting and moving of up to 25 pounds. The employee is frequently required to stand, walk, sit, and reach with hands and arms, and to use a computer, sitting for extended periods. Specific vision abilities required by this job include the ability to read, close vision, distance vision, color vision, peripheral vision, and depth perception.
Alameda, CAStarting Base Salary is $146,332/year - $217,880/year. Individual compensation will vary over time-based on factors such as performance, skill level, competencies, work location and shift.What We Offer
•A collaborative teamwork environment where learning is constant, and performance is rewarded.
•The opportunity to be part of the team that is revolutionizing the treatment of some of the world's most devastating diseases.
•A generous benefits package for eligible employees that includes medical, dental, vision, life, AD&D, short and long-term disability insurance, 401(k) with employer match, an employee stock purchase plan, paid parental leave, eleven paid company holidays per year, a minimum of fifteen days of accrued vacation per year, which increases with tenure, and paid sick time in compliance with applicable law(s).
Penumbra, Inc., headquartered in Alameda, California, is a global healthcare company focused on innovative therapies. Penumbra designs, develops, manufactures, and markets novel products and has a broad portfolio that addresses challenging medical conditions in markets with significant unmet need. Penumbra sells its products to hospitals and healthcare providers primarily through its direct sales organization in the United States, most of Europe, Canada, and Australia, and through distributors in select international markets. The Penumbra logo is a trademark of Penumbra, Inc.
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, age, disability, military or veteran status, or any other characteristic protected by federal, state, or local laws.
