American Hospital Dubai
Senior Network and Infrastructure Security Engineer
American Hospital Dubai, Sioux Falls, South Dakota, United States
Designs, implements, and maintains secure, resilient, and high-performance network and security infrastructure to support world-class patient care and protect sensitive healthcare data. Provides expert-level engineering and operational oversight of AHD’s network and security platforms, ensuring continuous connectivity, compliance with regulatory requirements, and proactive defence against cyber threats.
Responsibilities
Network Engineering & Operations Configure, deploy, and manage enterprise-grade switches, routers, and wireless controllers (Juniper, Aruba, Ruckus, Huawei, Cisco). Design and operate high-availability LAN/WAN environments, including VLANs, MPLS, VPNs, SD-WAN, and cloud interconnects. Manage Wi-Fi coverage, capacity, and security to support clinical mobility, IoT medical devices, and guest access. Maintain detailed network documentation, runbooks, and enforce structured change management practices. Firewall & Security Infrastructure Configure and monitor next-generation firewalls (Fortinet, Palo Alto) including advanced features such as IPS, SSL inspection, and global VPN policies. Implement and manage Network Access Control (NAC) to enforce identity-based security. Define and enforce segmentation policies to safeguard sensitive systems (EMR, Imaging, RCM). Collaborate with Cybersecurity to integrate firewall and NAC telemetry into SOC/SIEM platforms. Deploy and manage CrowdStrike Falcon EDR/XDR across endpoints and critical systems. Implement SASE frameworks (Prisma Access, Zscaler) for secure remote and cloud access. Utilize AI-driven tools for anomaly detection and enhanced situational awareness. Integrate cloud and network threat data into the SOC for rapid response. Monitoring, Availability & Incident Response Operate and optimize monitoring platforms (SNMP, NetFlow, Syslog, SIEM). Conduct root cause analysis, corrective actions, and preventive measures for incidents. Ensure 24/7 network availability to support clinical workflows. Lead network-related security incident response and maintain DR/BCP readiness. Compliance, Governance & Continuous Improvement Ensure compliance with DHA, HIPAA, ISO 27001, and JCI standards. Support audits with documented evidence of controls and security measures. Promote Zero Trust and cloud-first security adoption. Mentor junior engineers and contribute to knowledge-sharing and playbooks. Work collaboratively with IT and clinical stakeholders, providing clear technical and operational updates. Contribute to a culture of transparency, accountability, and continuous improvement. Qualifications
QUALIFICATIONS & SKILLS: Bachelor’s Degree in Computer Science, Information Technology, or related field. Master’s Degree in Computer Science, Information Technology, or related field preferred. ITIL Foundation or Service Management certifications preferred. Certified in the following areas of expertise (preferred): Fortinet NSE 4–7 Palo Alto PCNSE CrowdStrike Falcon certifications SASE/Zero Trust vendor certifications (Zscaler, Prisma Access) Juniper JNCIP/JNCIE Aruba or Ruckus wireless certifications CISSP, CISM, or equivalent (advantage) PROFESSIONAL EXPERIENCE: Minimum of six (6) years of hands-on experience in enterprise networking and infrastructure security. Knowledge of Fortinet (FortiGate, FortiAnalyzer, FortiManager) for advanced firewall configuration and management. Knowledge of Palo Alto (NGFW, Panorama, Prisma Access) for secure enterprise connectivity and cloud integration. Knowledge of Broadcom/Aruba NAC solutions for enforcing identity-based network security. Knowledge of Ruckus & Aruba wireless platforms for enterprise-grade Wi-Fi design, coverage, and optimization. Knowledge of Juniper switching & routing environments for resilient and scalable network infrastructure. Knowledge of SASE platforms (Zscaler, Prisma Access) to support secure remote access and cloud-first strategies. Knowledge of CrowdStrike Falcon EDR/XDR for endpoint detection, response, and threat hunting. Skills in troubleshooting complex network and security incidents in mission-critical healthcare or enterprise environments. Skills in designing and maintaining highly available, secure, and compliant infrastructure. Ability to operate effectively in zero-downtime, highly regulated industries such as healthcare IT. Ability to adopt and apply Zero Trust architectures, segmentation strategies, and SASE frameworks. Ability to leverage automation frameworks (Python, Ansible, Terraform) for network and security operations. Ability to integrate AI-driven anomaly detection and threat response into SOC/SIEM platforms.
#J-18808-Ljbffr
Network Engineering & Operations Configure, deploy, and manage enterprise-grade switches, routers, and wireless controllers (Juniper, Aruba, Ruckus, Huawei, Cisco). Design and operate high-availability LAN/WAN environments, including VLANs, MPLS, VPNs, SD-WAN, and cloud interconnects. Manage Wi-Fi coverage, capacity, and security to support clinical mobility, IoT medical devices, and guest access. Maintain detailed network documentation, runbooks, and enforce structured change management practices. Firewall & Security Infrastructure Configure and monitor next-generation firewalls (Fortinet, Palo Alto) including advanced features such as IPS, SSL inspection, and global VPN policies. Implement and manage Network Access Control (NAC) to enforce identity-based security. Define and enforce segmentation policies to safeguard sensitive systems (EMR, Imaging, RCM). Collaborate with Cybersecurity to integrate firewall and NAC telemetry into SOC/SIEM platforms. Deploy and manage CrowdStrike Falcon EDR/XDR across endpoints and critical systems. Implement SASE frameworks (Prisma Access, Zscaler) for secure remote and cloud access. Utilize AI-driven tools for anomaly detection and enhanced situational awareness. Integrate cloud and network threat data into the SOC for rapid response. Monitoring, Availability & Incident Response Operate and optimize monitoring platforms (SNMP, NetFlow, Syslog, SIEM). Conduct root cause analysis, corrective actions, and preventive measures for incidents. Ensure 24/7 network availability to support clinical workflows. Lead network-related security incident response and maintain DR/BCP readiness. Compliance, Governance & Continuous Improvement Ensure compliance with DHA, HIPAA, ISO 27001, and JCI standards. Support audits with documented evidence of controls and security measures. Promote Zero Trust and cloud-first security adoption. Mentor junior engineers and contribute to knowledge-sharing and playbooks. Work collaboratively with IT and clinical stakeholders, providing clear technical and operational updates. Contribute to a culture of transparency, accountability, and continuous improvement. Qualifications
QUALIFICATIONS & SKILLS: Bachelor’s Degree in Computer Science, Information Technology, or related field. Master’s Degree in Computer Science, Information Technology, or related field preferred. ITIL Foundation or Service Management certifications preferred. Certified in the following areas of expertise (preferred): Fortinet NSE 4–7 Palo Alto PCNSE CrowdStrike Falcon certifications SASE/Zero Trust vendor certifications (Zscaler, Prisma Access) Juniper JNCIP/JNCIE Aruba or Ruckus wireless certifications CISSP, CISM, or equivalent (advantage) PROFESSIONAL EXPERIENCE: Minimum of six (6) years of hands-on experience in enterprise networking and infrastructure security. Knowledge of Fortinet (FortiGate, FortiAnalyzer, FortiManager) for advanced firewall configuration and management. Knowledge of Palo Alto (NGFW, Panorama, Prisma Access) for secure enterprise connectivity and cloud integration. Knowledge of Broadcom/Aruba NAC solutions for enforcing identity-based network security. Knowledge of Ruckus & Aruba wireless platforms for enterprise-grade Wi-Fi design, coverage, and optimization. Knowledge of Juniper switching & routing environments for resilient and scalable network infrastructure. Knowledge of SASE platforms (Zscaler, Prisma Access) to support secure remote access and cloud-first strategies. Knowledge of CrowdStrike Falcon EDR/XDR for endpoint detection, response, and threat hunting. Skills in troubleshooting complex network and security incidents in mission-critical healthcare or enterprise environments. Skills in designing and maintaining highly available, secure, and compliant infrastructure. Ability to operate effectively in zero-downtime, highly regulated industries such as healthcare IT. Ability to adopt and apply Zero Trust architectures, segmentation strategies, and SASE frameworks. Ability to leverage automation frameworks (Python, Ansible, Terraform) for network and security operations. Ability to integrate AI-driven anomaly detection and threat response into SOC/SIEM platforms.
#J-18808-Ljbffr