University of California, San Francisco
Network Security Engineer
University of California, San Francisco, San Francisco, California, United States, 94199
Job Summary
Join to apply for the
Network Security Engineer
role at
University of California, San Francisco . The Network Security Engineer within UCSF’s Information Technology (IT) department will ensure the security and integrity of UCSF’s network infrastructure. The Engineer supports the planning, design, optimization, implementation, audit, and troubleshooting of network security systems and improves the overall security posture of UCSF and its assets. The Engineer partners with security operations, governance, and system administrators to design and deploy required solutions to harden UCSF platforms.
Location San Francisco, CA – Mission Center Building (SF)
Job Type Full‑time
Responsibilities
Configure, install and manage network security devices and technologies including firewalls, DDI (DNS, DHCP and IP Address Management), VPN, Network Access Control, Web Filtering, CASB, SASE, Intrusion Detection/Prevention, Network Packet Brokers and Traffic Visibility solutions.
Fulfill project requests and tasks for clients such as firewall policy, VPN tunnel creation, DDI, CASB incident response, web filter entries, etc.
Manage and mitigate vulnerabilities for the devices backed by the Network Security Team.
Resolve problems and break/fix incidents on the enterprise network and its security systems.
Provide administrative‑level technical network security implementation skills for enterprise and data center environments.
Assist in developing network device hardening standards.
Apply professional communications concepts, industry practices, and relevant policies to resolve highly complex issues.
Establish methods, techniques and evaluation criteria to obtain results.
Interface with management, IT‑Security, and vendors to develop and implement new solutions meeting business requirements.
Serve as an escalation point for junior staff.
Salary The salary range for this position is $113,800 - $242,800 (Annual Rate). Final salary and offer components are subject to additional approvals based on UC policy.
Benefits: To learn more about the benefits of working at UCSF, including total compensation, please visit https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html
Required Qualifications
Bachelor’s Degree, or equivalent combination of experience/training in computer science, engineering, computer information systems, etc.
5‑7 years of experience in network services, information technology, network security, or network operations.
Cisco Certified Network Professional (CCNP) and/or equivalent experience/training.
Advanced knowledge of network security devices and technologies such as firewalls, IDS/IPS, NAC, web filtering, network packet brokers, load balancing, DDI, VPN, and network traffic visibility solutions.
Advanced knowledge of VPN technologies and network security protocols, technologies, standards, and tools.
Advanced understanding of modern enterprise TCP/IP data networks, including OSPF, STP, RSTP, 802.1Q, Multicast, QoS, and tunneling protocols.
Advanced knowledge of security architectures in private and public cloud environments (AWS, Azure).
Experience with Cisco Routing and Switching products and BGP, intrusion detection, proxies, firewalls, load balancing, packet capture, and/or data loss prevention.
Understanding of implications of work on other areas of IT and business.
Proven ability to learn effectively, meet deadlines, work independently and as part of a team with minimal supervision, and participate in a 24/7 on‑call rotation.
Excellent communication skills to convey technical information to both technical and non‑technical personnel.
Advanced ability to gather, organize and analyze data for functional assignments.
Advanced problem‑solving skills with experience diagnosing and resolving network connectivity issues, certificates and PKI, universal 1X or SSL decryption, web proxy and content filtering solutions for data loss prevention.
Familiarity with network security best practices and ability to implement and maintain firewall rules, access controls, and IDS/IPS.
Excellent interpersonal skills to work effectively with colleagues and stakeholders across departments.
Preferred Qualifications
Advanced knowledge of Juniper Routing and Switching products.
Experience with network device management tools, technologies, and products such as SASE, CASB solutions.
Extensive knowledge of structured cabling systems, network facilities, electrical, UPS, etc.
Experience performing packet and flow analysis with various toolsets, writing shell scripts using Python or Bash, and using infrastructure monitoring tools.
Palo Alto Networks Certified Network Security Engineer and/or equivalent experience/training.
Certified Information Systems Security Professional (CISSP).
AWS Solutions Architect or AWS Cloud Practitioner Certification.
License / Certification
Cisco Certified Network Professional (CCNP) and/or equivalent experience/training.
About UCSF The University of California, San Francisco (UCSF) is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate‑level education in the life sciences and health professions, and excellence in patient care. It is the only campus in the 10‑campus UC system dedicated exclusively to the health sciences.
PRIDE Values UCSF is a diverse community of people with many skills and talents. We seek candidates whose work experience or community service has prepared them to contribute to our commitment to professionalism, respect, integrity, diversity and excellence – also known as our PRIDE values. UCSF is also committed to equity in how we deliver care as well as in our workforce.
Equal Employment Opportunity The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status under state or federal law.
#J-18808-Ljbffr
Network Security Engineer
role at
University of California, San Francisco . The Network Security Engineer within UCSF’s Information Technology (IT) department will ensure the security and integrity of UCSF’s network infrastructure. The Engineer supports the planning, design, optimization, implementation, audit, and troubleshooting of network security systems and improves the overall security posture of UCSF and its assets. The Engineer partners with security operations, governance, and system administrators to design and deploy required solutions to harden UCSF platforms.
Location San Francisco, CA – Mission Center Building (SF)
Job Type Full‑time
Responsibilities
Configure, install and manage network security devices and technologies including firewalls, DDI (DNS, DHCP and IP Address Management), VPN, Network Access Control, Web Filtering, CASB, SASE, Intrusion Detection/Prevention, Network Packet Brokers and Traffic Visibility solutions.
Fulfill project requests and tasks for clients such as firewall policy, VPN tunnel creation, DDI, CASB incident response, web filter entries, etc.
Manage and mitigate vulnerabilities for the devices backed by the Network Security Team.
Resolve problems and break/fix incidents on the enterprise network and its security systems.
Provide administrative‑level technical network security implementation skills for enterprise and data center environments.
Assist in developing network device hardening standards.
Apply professional communications concepts, industry practices, and relevant policies to resolve highly complex issues.
Establish methods, techniques and evaluation criteria to obtain results.
Interface with management, IT‑Security, and vendors to develop and implement new solutions meeting business requirements.
Serve as an escalation point for junior staff.
Salary The salary range for this position is $113,800 - $242,800 (Annual Rate). Final salary and offer components are subject to additional approvals based on UC policy.
Benefits: To learn more about the benefits of working at UCSF, including total compensation, please visit https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html
Required Qualifications
Bachelor’s Degree, or equivalent combination of experience/training in computer science, engineering, computer information systems, etc.
5‑7 years of experience in network services, information technology, network security, or network operations.
Cisco Certified Network Professional (CCNP) and/or equivalent experience/training.
Advanced knowledge of network security devices and technologies such as firewalls, IDS/IPS, NAC, web filtering, network packet brokers, load balancing, DDI, VPN, and network traffic visibility solutions.
Advanced knowledge of VPN technologies and network security protocols, technologies, standards, and tools.
Advanced understanding of modern enterprise TCP/IP data networks, including OSPF, STP, RSTP, 802.1Q, Multicast, QoS, and tunneling protocols.
Advanced knowledge of security architectures in private and public cloud environments (AWS, Azure).
Experience with Cisco Routing and Switching products and BGP, intrusion detection, proxies, firewalls, load balancing, packet capture, and/or data loss prevention.
Understanding of implications of work on other areas of IT and business.
Proven ability to learn effectively, meet deadlines, work independently and as part of a team with minimal supervision, and participate in a 24/7 on‑call rotation.
Excellent communication skills to convey technical information to both technical and non‑technical personnel.
Advanced ability to gather, organize and analyze data for functional assignments.
Advanced problem‑solving skills with experience diagnosing and resolving network connectivity issues, certificates and PKI, universal 1X or SSL decryption, web proxy and content filtering solutions for data loss prevention.
Familiarity with network security best practices and ability to implement and maintain firewall rules, access controls, and IDS/IPS.
Excellent interpersonal skills to work effectively with colleagues and stakeholders across departments.
Preferred Qualifications
Advanced knowledge of Juniper Routing and Switching products.
Experience with network device management tools, technologies, and products such as SASE, CASB solutions.
Extensive knowledge of structured cabling systems, network facilities, electrical, UPS, etc.
Experience performing packet and flow analysis with various toolsets, writing shell scripts using Python or Bash, and using infrastructure monitoring tools.
Palo Alto Networks Certified Network Security Engineer and/or equivalent experience/training.
Certified Information Systems Security Professional (CISSP).
AWS Solutions Architect or AWS Cloud Practitioner Certification.
License / Certification
Cisco Certified Network Professional (CCNP) and/or equivalent experience/training.
About UCSF The University of California, San Francisco (UCSF) is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate‑level education in the life sciences and health professions, and excellence in patient care. It is the only campus in the 10‑campus UC system dedicated exclusively to the health sciences.
PRIDE Values UCSF is a diverse community of people with many skills and talents. We seek candidates whose work experience or community service has prepared them to contribute to our commitment to professionalism, respect, integrity, diversity and excellence – also known as our PRIDE values. UCSF is also committed to equity in how we deliver care as well as in our workforce.
Equal Employment Opportunity The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status under state or federal law.
#J-18808-Ljbffr