Network Access Engineer

Under general direction, the IT Network Access Engineer will provide advance level technical expertise and technical leadership in the area of IT security as it relates to UCDH networking (LAN, WAN, Wireless) and network access services as it relates to software defined access (SDA) and network access control (NAC). Incumbent has a primary responsibility for IT security operations, engineering and projects in new/existing environments. In consultation with the UCDH IT Security team, the IT Network Access Engineer will oversee design, installation and support functions, including coordination of projects and workflow, decision making authority on large system design and high-level problem-solving pertaining to IT Security for UCDH networks and network access services.

The IT Network Security Access Engineer applies advanced technical knowledge and leadership to enterprise level network security specializing in IT Security, software defined access, network access control, network security best practices, and network access hardening for the UC Davis Health Sacramento campus. Working closely with the UCDH IT Security team and the IT Network Security Engineer, the IT Network Access Engineer is responsible for design, implementation, troubleshooting and support of access security, as well as any new security access required. The IT Network Access Engineer has independent responsibility for design and implementation of highly complex network security designs encompassing implementation, configuration, maintenance, and troubleshooting. Additional responsibilities include assisting with general Unified Communications departmental projects, support requirements, on-call assignments, projects and design/engineering efforts that impact the Enterprise WAN/LAN/Wireless., * 30% - Network Access Architect/ Engineering Design/Project Management

• 30% - IT Security network and network services Implementation
• 20% - IT Security network and network services Hardware Purchase and Maintenance
• 10% - IT Security Network Administration
• 10% - Cisco Core network/LAN services Administration

• Required to hold a valid California driver's license, have a driving record that is in accordance with local policies/procedures, and/or enroll in the California Employer Pull Notice Program
• Some college or vocational network training
• Extensive experience (5+ years) working with Cisco Identity Services Engine (ISE) in medium to large enterprise environments.
• Strong background designing, deploying, and supporting network access control (NAC) solutions using Cisco ISE.
• Hands-on experience with 802.1X authentication, RADIUS, TACACS+, and general access-control policies for wired and wireless networks.
• Experience building and managing ISE policies, including authentication/authorization rules, device profiling, guest access, and endpoint onboarding.
• Expert knowledge and experience in network access policies, protocols, and best practice in an enterprise network, focusing on both external and internal network protection and threat detection, mitigation and response.
• Expert knowledge and experience with the standards, protocols, installation and maintenance procedures of network security hardware and core network and network access technologies.
• Advanced knowledge and experience with Cisco ISE and NAC as implemented on Cisco switches.
• Highly developed analysis and problem solving skills to quickly assess complex problems, evaluate options, make a decision and resolve problems.
• Advance knowledge and experience with network theory and technology
• A deep understanding of the OSI model and the interconnection, crititical standards and complexities related to OSI layers 1 through 4.
• Highly developed project management skills encompassing planning, purchasing, scheduling, installation, tracking, test and acceptance and problem resolution in a multi-vendor environment.
• Highly developed organizational skills to manage multiple projects simultaneously.
• Completing multiple tasks which may not be well defined and to work effectively with frequent interruptions and changing environment.
• Demonstrated ability to communicate effectively on a technical level with other knowledgeable persons and solve technical problems.
• Proven ability to work independently and generate innovative solutions to problems.
• Advanced technical writing skills to document systems and procedures and develop work plans.
• Demonstrated ability to train staff on highly technical concepts.
• Familiarity with integrating ISE with other enterprise systems such as Active Directory, certificate services (PKI), MDM solutions, and network infrastructure (switches, wireless controllers, firewalls).
• Ability to troubleshoot complex access issues involving users, devices, certificates, and switch/Wi-Fi configurations.
• Solid networking fundamentals: switching, wireless, VLANs, routing basics, DHCP/DNS, and security best practices., * Experience with Cisco Catalyst Center (formerly DNA Center) or similar centralized management tools.
• Experience automating or documenting NAC workflows (scripting is a plus but not required).
• Prior work supporting NAC in specialized environments (research, IoT/OT, medical, or lab networks).
• Experience leading migrations or upgrades of Cisco ISE environments.
• Experience with Zero Trust or identity-based access models is strongly preferred., * Sustained attention and concentration - Frequent 3 to 6 Hours
• Complex problem solving/reasoning - Frequent 3 to 6 Hours
• Ability to organize & prioritize - Frequent 3 to 6 Hours
• Communication skills - Frequent 3 to 6 Hours
• Numerical skills - Occasional Up to 3 Hours
• Constant Interaction - Occasional Up to 3 Hours
• Customer/Patient Contact - Occasional Up to 3 Hours
• Multiple Concurrent Tasks - Frequent 3 to 6 Hours

vision insurance, parental leave, paid time off, paid holidays, sick time, long term disability, tuition reimbursement, remote work, Outstanding benefits and perks are among the many rewards of working for the University of California. UC Davis offers a full range of benefits, resources and programs to help you bring your best self to work, as well as to help you and your family achieve your health, wellness, financial and career goals. Learn more about the benefits below and eligibility rules by visiting either our handy Benefits Summary for UC Davis Health Employees or Benefits Summary for UC Davis Employees and our Benefits Page.

If you are represented by a union, benefits are negotiated between the University of California (UC) and your union and finalized in a contract. Read your bargaining unit's employment contract, stay abreast of current negotiations and learn about collective bargaining at UC: https://ucnet.universityofcalifornia.edu/labor/bargaining-units/index.html

• High quality and low-cost medical plans to choose from to fit your family's needs
• UC pays for Dental and Vision insurance premiums for you and your family
• Extensive leave benefits including Pregnancy and Parental Leave, Family & Medical Leave
• Paid Holidays annually as stipulated in the UC Davis Health Policies or Collective Bargaining Agreement
• Paid Time Off/Vacation/Sick Time as stipulated in the UC Davis Health Policies or Collective Bargaining Agreement
• Continuing Education (CE) allowance and Education Reimbursement Program as stipulated in the UC Davis Health Policies or Collective Bargaining Agreement
• Access to free professional development courses and learning opportunities for personal and professional growth
• WorkLife and Wellness programs and resources
• On-site Employee Assistance Program including access to free mental health services
• Supplemental insurance offered including additional life, short/long term disability, pet insurance and legal coverage
• Public Service Loan Forgiveness (PSFL) Qualified Employer & Student Loan Repayment Assistance Program for qualified roles
• Retirement benefit options for eligible roles including Pension and other Retirement Saving Plans. More information on our retirement benefits can be found here

Physical Demands

• Standing - Frequent 3 to 6 Hours
• Walking - Frequent 3 to 6 Hours
• Sitting - Frequent 3 to 6 Hours
• Lifting/Carrying 0-25 Lbs - Occasional Up to 3 Hours
• Pushing/Pulling 0-25 Lbs - Occasional Up to 3 Hours
• Bending/Stooping - Occasional Up to 3 Hours
• Squatting/Kneeling - Occasional Up to 3 Hours
• Keyboard use/repetitive motion - Occasional Up to 3 Hours

IT Unified Communications Network Engineering provides planning and implementation activities to deliver Wide Area Network (WAN), Local Area Network (LAN), Wireless (LAN) for the entire UC Davis Health enterprise. In response to institutional requirements, the department provides technological leadership and support for the cost-effective use of computers, software and networking to include installation, training and problem resolution., UC Davis is a smoke and tobacco free campus effective January 1, 2014. Smoking, the use of smokeless tobacco products, and the use of unregulated nicotine products (e-cigarettes) will be strictly prohibited on any UC Davis owned or leased property, indoors and outdoors, including parking lots and residential space. Special Requirements - Please contact your recruiter with questions regarding which activities apply by position * This is a critical position, as defined by UC Policy and local procedures, and as such, employment is contingent upon clearing a criminal background check(s) and may include drug screening, medical evaluation clearance and functional capacity assessment * This position is designated as a mandated reporter under CANRA and UC policy, and employment is contingent on compliance with applicable policies, procedures and training requirements Misconduct Disclosure Requirement: As a condition of employment, the final candidate who accepts a conditional offer of employment will be required to disclose if they have been subject to any final administrative or judicial decisions within the last seven years determining that they committed any misconduct; received notice of any allegations or are currently the subject of any administrative or disciplinary proceedings involving misconduct; have left a position after receiving notice of allegations or while under investigation in an administrative or disciplinary proceeding involving misconduct; or have filed an appeal of a finding of misconduct with a previous employer. A Culture of Opportunity and Belonging At UC Davis, we're committed to solving life's most urgent challenges and building a healthier, more resilient world. We believe in growing through every challenge, continually striving to improve, and welcoming new perspectives that strengthen our community. We recognize that a vibrant and innovative organization values both individual strengths and shared purpose. The best ideas often emerge when people with different experiences come together. As you consider joining UC Davis, we invite you to explore our Principles of Community, our Clinical Strategic Plan and strategic vision for research and education. We believe you belong here. The University of California, Davis is an Equal Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age or protected veteran status. To view the University of California's Anti-Discrimination Policy, please visit: https://policy.ucop.edu/doc/1001004/Anti-Discrimination Because we want you to feel seen and valued, our recruitment process at UC Davis supports openness and authenticity. Research shows that some individuals hesitate to apply unless they meet every qualification. You may be an excellent fit for this role-or the next one. We encourage you to apply even if your experience doesn't match every listed requirement. #YouBelongHere To learn more about our background check program, please visit: https://hr.ucdavis.edu/departments/recruitment/ucd/selection/background-checks