Firewall Engineer | TELECOMMUTE

Work location (specify UHG/UHC/Optum location or remote/telecommute) Remote/ Permanent Telecommuter
Work hours (ex. 9am-5pm day/night shifts rotating shifts etc) 9am - 5pm

Please provide a summary of the project/initiative that this candidate will be working on
This role will be a part of Acquired Entity Security Integration Team who is responsible for Integrating the Business partners with Optum Network securely.
Provide consulting and auditing services for identifying the Security postures of the BP. Advise remediation plan accordingly.
Deploy and configure Palo alto Firewalls as per prescribed guidelines and blueprints.
Responsible for Integrating the Business partners remote sites and Data Centers securely with Optum as per the Security guidelines and policies defined by Optum.
Working with BP to understand their environment and consulting them with identifying and documenting the Traffic flows.
Review the Security posture of the BP through examining the Security Policies configured on their FWs. Flagging the high risks flows and advising BP to remediate them.
Driving the Trusted/ Untrusted Integration activities for BPs remote site and DCs. Deploying and configuring Palo Alto Firewalls the connect BP network with Optum Core.
Building the Firewalls dedicated to provide Internet connectivity and hosting services for the BP.
Troubleshooting any incidents or issues related to Plao Alto firewalls. Support the cutover and address any Firewall related issues that may arise.
Upgrade the PAN OS on Plao alto FWs and Panaromas.

Please describe the team the candidate will be working with - how many members
Liase directly with the PM assigned for the integration project and the Business partner Network/ Security Team.
Work closely with Network and F5 Teams to get the Infrastructure ready for Firewall deployment.
Sync internally with the Acquired Entity Security Integration Team to ensure uninterrupted coverage to the business. Share lesson learned and also engage support as and when needed.

What is the break-down of the teams skill sets (ex: 1 PM 4 Developers etc.)
13 Member Team comprising of Senior Sec Engineers and Info Sec Engineers. Around 10 contractors supporting the Integrations.
A single business partner is assigned a Primary and a Secondary Security Engineer in order to carry out Trust/ untrust integrations.

What are the top 5-10 responsibilities for this position (please be detailed as to what the candidate is expected to do or complete on a daily basis)
Work closely with the Business Partner Network/ Security Team to drive the Network Integrations through leveraging the Next Gen Security controls and as per Optums Security guidelines
Understand the requirements and set the expectations with all stakeholders regarding the deployment and configuration of Palo Alto
What does the ideal candidate background look like (ex: healthcare specific background specific industry experience etc.)
8-10 Years of experience within perimeter Security domain. Hands on with Palo Alto Checkpoint Juniper Firewalls. Configured security controls
What skills/attributes are required (please be detailed as to number of years of experience for each skill)
In depth knowledge with deploying and configuring Palo Alto Firewalls PA3200 PA5220 Cloud based Firewalls.
Deep understanding of Security paradigm. Access management perimeter Security controls URL filtering DNS security Deep packet inspection Malware protection.

What skills/attributes are preferred (what will set a candidate apart)
Good to have PCNSA PCNSE CISSP CCSP certifications
Cloud based Security certifications - AWS/ Azure/ GCP

What will the interview process look like (Video phone or in person How many rounds
2 rounds comprising of Technical and Managerial
How technical will the interviews be)
1st round will be core Technical with a little bit of Managerial.

Required Skills : Build & Release Engineering

Basic Qualification :

Additional Skills : Network Engineer

Background Check : No

Drug Screen : No