University of California, San Francisco
Network Security Administrator
University of California, San Francisco, San Francisco, California, United States, 94199
Network Security Administrator – University of California, San Francisco
The Network Security Administrator within the University of California, San Francisco’s (UCSF) Information Technology (IT) department will ensure the security and integrity of UCSF’s network infrastructure. The Administrator will manage and maintain UCSF’s network services to allow seamless connectivity and efficient communication across campus, protecting UCSF’s data and systems from unauthorized access, cyber‑attacks, and other vulnerabilities.
Responsibilities
Configure, install, and manage network security devices and technologies including firewalls, DDI (DNS, DHCP, and IP address management), VPNs, network access control solutions, web filtering, CASB, SASE, intrusion detection/prevention systems, network packet brokers, and network traffic visibility solutions.
Fulfill project requests for clients (firewall policy, VPN tunnels, DDI, CASB incident response, web filter entries, etc.).
Manage and mitigate vulnerabilities for devices backed by the Network Security Team.
Resolve problems and break/fix incidents on the enterprise network and its security systems.
Provide administrative‑level technical network security implementation for enterprise and data center environments.
Assist in developing network device hardening standards.
Apply professional communications concepts, industry practices, and relevant policies, procedures, and objectives to resolve highly complex issues.
Identify methods, techniques, and evaluation criteria to obtain results.
Interface with management, IT‑Security, and vendors to develop and implement new solutions that meet business requirements.
Required Qualifications
3–5 years of experience in network services, information technology, network security, or network operations.
Knowledge of network security devices and technologies such as firewalls, IDS/IPS, NAC, web filtering, packet brokers, DDI, VPN, and traffic visibility.
Experience with VPN technologies and network security protocols.
Understanding of modern enterprise TCP/IP data networks: OSPF, STP, RSTP, 802.1Q, multicast, QoS, tunneling protocols.
Experience with network monitoring and management tools such as Datadog, Panorama, or FireMon.
Ability to diagnose and resolve network connectivity issues promptly.
Familiarity with network security best practices and ability to implement firewall rules, access controls, and IDS/IPS.
Knowledge of ITIL framework and application in network management and service delivery.
Experience with Cisco routing and switching products.
Self‑motivated, works independently and as part of a team with minimal supervision.
Clear understanding of the organization’s communications and network needs.
Preferred Qualifications
Bachelor’s Degree or equivalent in computer science, engineering, information systems, or related field.
Knowledge of security architectures in private and public cloud environments.
Experience with Juniper routing and switching products.
Experience with network device management tools, technologies, and products such as SASE, CASB, and CASB solutions.
Knowledge of structured cabling systems, network facilities, electrical, UPS, etc.
Experience with virtualization technologies such as VMware or Hyper‑V.
Familiarity with cloud networking concepts and experience with AWS, Azure, or Google Cloud Platform.
Experience with network automation and scripting languages such as Python or PowerShell.
Certifications such as Security+, PCNSA, CCNA, ITIL, CCNA Security, CCNP Security, CEH, or equivalent.
Location San Francisco, CA
Salary Range $90,700 – $193,500 annually
Benefits For more information about UCSF compensation and benefits, visit https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html
Equal Employment Opportunity The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status under state or federal law.
#J-18808-Ljbffr
Responsibilities
Configure, install, and manage network security devices and technologies including firewalls, DDI (DNS, DHCP, and IP address management), VPNs, network access control solutions, web filtering, CASB, SASE, intrusion detection/prevention systems, network packet brokers, and network traffic visibility solutions.
Fulfill project requests for clients (firewall policy, VPN tunnels, DDI, CASB incident response, web filter entries, etc.).
Manage and mitigate vulnerabilities for devices backed by the Network Security Team.
Resolve problems and break/fix incidents on the enterprise network and its security systems.
Provide administrative‑level technical network security implementation for enterprise and data center environments.
Assist in developing network device hardening standards.
Apply professional communications concepts, industry practices, and relevant policies, procedures, and objectives to resolve highly complex issues.
Identify methods, techniques, and evaluation criteria to obtain results.
Interface with management, IT‑Security, and vendors to develop and implement new solutions that meet business requirements.
Required Qualifications
3–5 years of experience in network services, information technology, network security, or network operations.
Knowledge of network security devices and technologies such as firewalls, IDS/IPS, NAC, web filtering, packet brokers, DDI, VPN, and traffic visibility.
Experience with VPN technologies and network security protocols.
Understanding of modern enterprise TCP/IP data networks: OSPF, STP, RSTP, 802.1Q, multicast, QoS, tunneling protocols.
Experience with network monitoring and management tools such as Datadog, Panorama, or FireMon.
Ability to diagnose and resolve network connectivity issues promptly.
Familiarity with network security best practices and ability to implement firewall rules, access controls, and IDS/IPS.
Knowledge of ITIL framework and application in network management and service delivery.
Experience with Cisco routing and switching products.
Self‑motivated, works independently and as part of a team with minimal supervision.
Clear understanding of the organization’s communications and network needs.
Preferred Qualifications
Bachelor’s Degree or equivalent in computer science, engineering, information systems, or related field.
Knowledge of security architectures in private and public cloud environments.
Experience with Juniper routing and switching products.
Experience with network device management tools, technologies, and products such as SASE, CASB, and CASB solutions.
Knowledge of structured cabling systems, network facilities, electrical, UPS, etc.
Experience with virtualization technologies such as VMware or Hyper‑V.
Familiarity with cloud networking concepts and experience with AWS, Azure, or Google Cloud Platform.
Experience with network automation and scripting languages such as Python or PowerShell.
Certifications such as Security+, PCNSA, CCNA, ITIL, CCNA Security, CCNP Security, CEH, or equivalent.
Location San Francisco, CA
Salary Range $90,700 – $193,500 annually
Benefits For more information about UCSF compensation and benefits, visit https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html
Equal Employment Opportunity The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status under state or federal law.
#J-18808-Ljbffr