Job Description
Overview
The Senior Network Security Engineer provides a leadership role in delivering advanced network routing and switching services to the University community. This position ensures the availability, integrity, security and reliability of mission critical networking and switching services. This position is primarily involved with network switching, routing and security infrastructure management.
As a member of the Network Routing and Switching group, the senior engineer is also responsible for managing and monitoring network infrastructure, analyzing and resolving network problems, and regularly improving network and switching infrastructure. As a key resource of the Network services team, the senior engineer plays a crucial role in enabling and supporting the research, teaching, and administrative mission of the university.
Responsibilities
Network security architecture and design support
- Responsible for designing, implementing, and managing secure networks for the university campus.
- Assess the security of existing networks, identify potential risk areas, and take proactive measures to protect network resources from unauthorized access.
- Lead and participate in the design: creating secure network architectures, developing access control policies, implementing encryption protocols, and configuring and managing firewalls. The security design must take into account various aspects of connectivity including LAN, WAN, internet, remote access, and VPN.
- Stay up to date with the latest industry best practices, trends, and technologies from a security perspective.
- Regularly review network routing and security system log files and resolve any issues identified
- Adhere to the data confidentiality policies according to the university guidelines.
Network routing and switching operations support
- Monitor, analyze and verify scalability, performance, high availability, and data integrity for networking and security using service management best practices
- Configure and regularly update all monitoring, alerting, and reporting for network routing and switching services.
- Maintain documentation and configuration information for networking and monitoring systems using service management tools including knowledge management, change management, and event management
- Provide operational support for all advanced network routing and switching services to OIT and the University community on a routine schedule using request management practices.
- Routinely apply critical bug fixes, security updates, and required configuration changes, following established change management procedures.
- Lead & provide advanced troubleshooting assistance, and routinely collaborate, with University departments and OIT teams on operational issues, projects, and initiatives using incident management practices
- Routinely review, test, and verify backup and restore procedures for networking and monitoring systems.
- Provide on-call support on a routine schedule to perform network upgrades, execute maintenance changes, and effectively resolve major incidents outside of normal business hours.
Project design and implementation support
- Collaborate with University departments to deploy and manage highly reliable, advanced network routing and switching solutions. Design and implement necessary security services for campus and border networks to ensure the safety of the University's network. Primary responsibility for the administration and support of networking systems including network switch and router management.
- Design and manage the configuration of network core devices, Internet border routers, building routers and connectivity to service providers.
- Participate in and manage the analysis, design, installation and management of network infrastructure and network systems, through the full lifecycle of development, quality assurance, user acceptance testing and production.
- Proactively participate in professional development opportunities to continuously develop professional and technical skills
- Adhere to OIT IT service management processes
- Maintain confidential data in the strictest confidence and ensure privacy, security, and proper use in accordance with University Information Security Policy
- Assist other colleagues with a lower technical skillset in Network Services.
Qualifications
Essential Qualifications:
- Minimum of 7 years of experience managing or supporting a medium to large network infrastructure, with at least 5 years of experience focused on security networking
- Demonstrated innovative thinker and creative problem solver
- Knowledge and experience in network routing, switching, and security management.
- Demonstrated skill in solving complex problems in the network environment particularly in the areas of packet switching, routing and network security
- Extensive understanding of network protocols including TCP/IP and network security policies.
- Experience with multi-vendor equipment including Cisco and Aruba and related OS configurations
- Experience with Palo Alto Firewalls and Global Protect VPN solution
- Demonstrated ability to adapt to multiple operating systems and platforms.
- Excellent oral and written communications skills in this highly collaborative environment
- Knowledge of service management processes including change management, request and incident handling, knowledge management, and event management
- Ability to work on multiple projects simultaneously, to respond to shifting priorities, and to work efficiently under the pressure of critical problems and deadlines
- Ability to work outside of normal working hours and be on call to perform network maintenance and support unexpected critical network failures
- Ability to work independently, as well as in a team environment
- Education: Bachelor’s degree preferred or equivalent experience and/or certifications degree
Preferred Qualifications:
- Familiarity with network routing and switching management tools.
- Experience with Aruba downloadable user roles and ClearPass integration
- Experience with VxLAN overlay, Multicast/Anycast and BGP routing.
- Ability to leverage network automation tools to improve overall service delivery.
Princeton University is an Equal Opportunity/Affirmative Action Employer and all qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability status, protected veteran status, or any other characteristic protected by law. KNOW YOUR RIGHTS
Standard Weekly Hours36.25Eligible for OvertimeNoBenefits EligibleYesProbationary Period180 daysEssential Services Personnel (see policy for detail)NoPhysical Capacity Exam RequiredNoValid Driver’s License RequiredNo Experience LevelMid-Senior Level#LI-JJ1
Job Tags
Remote job, Shift work,