Network Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

University of California, San Francisco · 1 month ago

Network Security Engineer

positionSan Francisco, CA
timeFull-time
remoteOnsite
senioritySenior Level
money$114K/yr - $243K/yr
date5+ years exp

The University of California, San Francisco (UCSF) is a leading university dedicated to promoting health worldwide through advanced biomedical research and education. The Network Security Engineer will ensure the security and integrity of UCSF’s network infrastructure, supporting the planning, design, optimization, implementation, and troubleshooting of network security systems.

AssociationBiotechnologyEducationMedicalPharmaceutical
check
H1B Sponsor Likelynote

Responsibilities

Configure/Install and manage various network security devices, features, and technologies including, but not limited to Firewalls, DDI (DNS, DHCP and IP Address Management), VPN, Network Access Control solutions, Web Filtering solutions, CASB and SASE systems, Intrusion Detection/Prevention systems, Network Packet Brokers, and Network Traffic Visibility solutions
Fulfill project requests and tasks for our clients (Firewall Policy, VPN tunnel creation, DDI, CASB Incident Response, applying web filter entries, etc.)
Manage and mitigate vulnerabilities for the devices that are backed by the Network Security Team
Resolve problems and break/fix incidents on the enterprise network and its network security systems
Provide administrative-level technical network security implementation skill set for enterprise and Data Center environments of UCSF
Assist in the development of network device hardening standards
Apply professional communications concepts, industry practices, and relevant policies, procedures, and objectives to resolve highly complex issues
Establish methods, techniques and evaluation criteria to obtain results
Interface with management, IT-Security and vendors to develop and implement new solutions to meet business requirements
Serve as an escalation point for junior staff

Qualification

Network SecurityCisco Certified Network ProfessionalVPN TechnologiesNetwork Security ProtocolsCloud Security ArchitecturesTCP/IP NetworkingIntrusion Detection SystemsData Loss PreventionProblem SolvingCommunication SkillsInterpersonal SkillsTeam Collaboration

Required

Bachelor's Degree, or equivalent combination of experience/training in one or more of the following fields: computer science, engineering, computer information systems, etc
5-7 years of experience working in one or more of the following fields: network services, information technology, network security, or network operations
Cisco Certified Network Professional (CCNP) and/or equivalent experience/training
Demonstrated advanced knowledge of various network security devices, features, and technologies like firewalls, intrusion detection and prevention systems, network access control solutions, web filtering solutions, network packet brokers, load balancing, DDI (DNS, DHCP, and IP Address management), VPN, and network traffic visibility solutions
Demonstrated advanced knowledge of various VPN technologies
Demonstrated advanced knowledge of network security protocols, technologies, standards, and tools
Demonstrated advanced knowledge of various authentication protocols and services
Demonstrated advanced understanding of modern enterprise TCP/IP data networks using standards and technologies including but not limited to: OSPF, STP, RSTP, 802.1Q, Multicast, Quality of Service and tunneling protocols
Demonstrated advanced knowledge of security architectures in private and public cloud environments. Experience designing and implementing network services within public cloud environments (e.g., AWS, Azure)
Demonstrated advanced knowledge, skills, and experience with Cisco Routing and Switching products
Experience with Border Gateway Protocol (BGP), intrusion detection, proxies, firewalls, load balancing, packet capture, and/or data loss prevention
Understands implications of work on other areas of IT and business
Proven ability to learn effectively and meet deadlines. Self-motivated and works independently and as part of a team with minimal supervision. Participates in network on-call rotation supporting a 24/7 environment
Excellent communication skills with the ability to convey technical information to both technical and non-technical personnel. Ability to support the creation of presentation materials, generate reports, and lead presentations to stakeholders
Demonstrated advanced ability to gather, organize, and analyze data in the completion of a variety of functional assignments
Demonstrated advanced problem-solving skills. Ability to diagnose and resolve network connectivity issues, in a timely manner. Experience troubleshooting and deploying solutions involving certificates and public key infrastructures (802.1X or SSL decryption and offloading), and designing and deploying web proxy and content filtering solutions for data loss prevention
Familiarity with network security best practices and the ability to implement and maintain firewall rules, access controls, and intrusion detection/prevention systems
Excellent interpersonal skills, with the ability to work effectively with colleagues and stakeholders across departments

Preferred

Demonstrated advanced knowledge, skills, and experience with Juniper Routing and Switching products
Demonstrated advanced knowledge and experience with network device management tools, technologies, and products like SASE, CASE, and CASB solutions
Extensive knowledge of structured cabling systems, network facilities, electrical, UPS, etc
Experience performing packet and flow analysis with various toolsets, including in-line taps, firewall/IPS appliances, network routers, and hosts. Experience working with network access control platforms, writing shell scripts using Python or Bash, and using infrastructure monitoring tools
Palo Alto Networks Certified Network Security Engineer and/or equivalent experience/training
Certified Information Systems Security Professional (CISSP)
AWS Solutions Architect or AWS Cloud Practitioner Certification

Company

University of California, San Francisco

twittertwittertwitter
company-logo
University of California, San Francisco is an educational institution that focuses on medical courses.
dateFounded in 1864
location
San Francisco, California, USA
people-size10001+ employees
web-link
http://www.ucsf.edu

H1B Sponsorship

University of California, San Francisco has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (365)
2024 (342)
2023 (308)
2022 (306)
2021 (241)
2020 (268)

Funding

Current Stage
Late Stage
Total Funding
$52.45M
Key Investors
California Institute for Regenerative MedicineBaldrick's FoundationNational Institute on Aging
2025-01-30Grant· $11.9M
2023-11-21Grant
2023-10-03Grant

Leadership Team

leader-logo
Pamela Hudson
Chief Operating Officer | Center for Digital Health Innovation
linkedin
leader-logo
Jimmie Ye
Professor
linkedin

Recent News

The Real Deal
UCSF Health inks 280K sf lease at Kilroy’s Oyster Point in South SF
2026-01-06
The Hindu
Unusual genetic code in Antarctic microbes yields rare amino acid Premium
2026-01-05
Business Insider
My daughters attended Harvard, Yale, and Stanford; they then became the CEOs of YouTube and 23andMe. Letting them fail helped them grow into leaders.
2026-01-03
Company data provided by crunchbase