Network Security Engineer 2/3

JOB SUMMARY

Under the direction of the Chief Information Security Officer the Network Security Engineer is responsible for the development and operation of UConns Network Security (NetSec) infrastructure and systems. The engineer deploys and manages highly available network security technologies to support secure network and secure digital communication at the university. The role will assess develop deploy and maintain network security systems including firewalls site to site VPN client VPN IDP IDS network detection and response (NDR) varied firewall rulesets access control rulesets and related systems.

The Network Security Engineer is responsible for investigating a diverse range of technical issues across multiple platforms and working with clients who have a wide range of technical proficiency. The engineer works among a team of skilled information security and network professionals to address problems within a complex network environment and develops solutions that fit into that environment.

The Network Security Engineer is responsible for processes and procedures to ensure the continuous improvement of monitoring detection and mitigation capabilities network communications. The engineer plans organizes and establishes priorities related to an assignment; works independently with minimal support; and handles sensitive information in a confidential manner.

SALARY

• Network Security Engineer 2 (Information Security Analyst 2 UCP 6): $80790 to $109874
• Network Security Engineer 3 (Information Security Analyst 3 UCP 7): $90485 to $123060

Note: Please indicate the role you are applying for in your cover letter. All minimum qualifications must be met at the applicable level to be eligible for consideration at that level. Applicable role will be verified by the hiring committee with respect for qualifications and demonstrated experience. Salary will be commensurate with experience and may be negotiable for exemplary candidates.

BENEFITS INCLUDE

• Defined contribution with employer match or defined benefit program retirement options
• Excellent and affordable healthcare options
• 35 hour work week
• 22 paid vacation days per year paid sick leave and 13 paid holidays
• Employee and dependent tuition waivers
• A highly desirable work environment and worklife balance

DUTIES AND RESPONSIBILITIES

Network Security Engineer 2

• Administer and use security tools to identify investigate and mitigate threats to the environment.
• Develop and support UConns security infrastructure including but not limited to firewalls VPNs IDS / IDP / NDR firewall management logging SIEM and identity access management.
• Research recommend implement and support security tools and counter measures to reflect the evolving security terrain and trends; perform network security testing and reports as needed.
• Develop scripts or deploy programs to assist with automation provisioning and/or telemetry and to ensure integrity of resources to dependent systems.
• Produce and maintain detailed engineering plans operating procedures diagrams models and standards as they relate to network security design deployment and operations.
• Proactively analyze network traffic and system logs to identify threats intrusions and/or compromises.
• Perform analyses of security incidents to help determine root cause and prevent future occurrences.
• Triage and respond to service requests from customers and/or internal teams.
• Maintain awareness of potential and developing threats across industries and in general.
• Participate in cyber security incident response activities as required.
• Maintain appropriate documentation and diagrams of infrastructure and security systems.
• Promote security awareness to improve and ensure system security and best practices.
• Participate in oncall rotation afterhour changes and afterhour escalations as needed.
• Perform other related duties as assigned.

Network Security Engineer 3 (additional responsibilities inclusive of Engineer 2)

• Serve as domain and subject matter expert in one or more information security domains.
• Lead design development implementation and maintenance of university firewalls VPNs IDS/IDP/NDR/XDR and network security systems.
• Design implement and maintain new information security solutions.
• Lead major projects/initiatives related to information security and/or cybersecurity.
• Integrate data for use between various applications and systems.
• Identify enterprise level security gaps perform risk assessments and recommend solutions to ensure best practices and security measures are being met across and between enterprise level systems.
• Create custom code api/rest integrations or other maintainable integrations to facilitate data gathering/sharing across applications and platforms.

RELATED SKILLS AND COMPETENCIES

• Problem Solving: Demonstrates sound analytic and diagnostic skills dealing with issues that are loosely defined and/or where information is available but must be further manipulated. Once decisions are made you can follow and direct action to implement intended results. Breaks a problem down to manageable pieces and implements effective timely solutions. Openly and directly confront issues until resolved.
• Team Orientation: Builds relationships with peers and other departments to achieve objectives. Balances team and individual responsibilities. Exhibits objectivity and openness to others views. Gives and welcomes feedback. Puts success of team above self. Responsibilities are assigned with some latitude for setting priorities and decisionmaking using established policies and procedures. Results are reviewed with nextlevel team lead/manager for clarification and direction before proceeding.
• Planning and Project Management: Works with or serves as the project lead in identifying those project tasks that are most important establishes clear priorities and understands the larger picture. Executes project tasks and creates documentation as required.
• Physical Demands: This position involves extended periods of sitting and the extensive use of computers and office equipment. May involve stooping kneeling crouching and/or working on step ladders. Involves close vision color vision depth perception and focus adjustment. Must be able to lift 35 lbs. to shoulder height.

MINIMUM QUALIFICATIONS

Network Security Engineer 2

• Must be a US Citizen.
• Bachelors degree and two (2) years of related experience OR
  Associates degree and four (4) years of related experience OR
  Six (6) years of related experience (IT/Security)
• One (1) or more years of experience working in an information security role in the network security domain.
• Experience applying knowledge of network architecture concepts including topology protocols components and principles.
• Experience applying knowledge of firewalls VPN network proxies and network design.
• Experience with network flow data (i.e. NetFlow sFlow IPFIX) or related forms of flow records and session summary data.
• Understanding of diagnostic and troubleshooting tools such as the ability to perform detailed analysis on packet capture data SIM/SIEM log analysis and failure diagnosis.
• Experience managing enterprise security devices/platforms from vendors such as Fortinet Palo Alto Arbor/NetScout f5 iBoss Splunk Cisco and/or Juniper.
• Programming/development/scripting skills (Python PHP PERL and/or Powershell).
• Experience in security analysis policies procedures and standards.
• Strong technical analytical interpersonal and organizational skills.

Network Security Engineer 3 (inclusive of Network Security Engineer 2)

• Bachelors degree and two (4) years of related experience (IT/Security) OR
  Associates degree and four (6) years of related experience (IT/Security) OR
  Eight (8) years of related experience (IT/Security)
• Three (3) or more years of experience working in an information security role in the network security domain.
• Experience designing deploying and administering complex firewall VPN IDS/IDP/NDR/XDR and network security management systems in an enterprise environment.
• Familiar with IT Security frameworks and relevant regulatory obligations and audit requirements (GDPR SOX NIST ISO PCI FERPA HIPAA and/or AICPA/SOC2).
• Senior level Network Security Engineer experience.

PREFERRED QUALIFICATIONS

Network Security Engineer 2

• Bachelors degree or higher in a Science Technology Engineering Math (STEM) field.
• Demonstrated ability to stay informed in securing evolving technologies.
• Demonstrated understanding of a wide array of enterprise applications/services including DNS SMTP SSL/TLS IIS Apache LDAP CAS Entra Azure/AWS SQL RADIUS TACACS etc.
• Demonstrated understanding of related security domain concepts including Identity & Access Management Security Operations Application Security Risk Management and Incident Management.
• Experience working in a higher education environment.

Network Security Engineer 3 (inclusive of Network Security Engineer 2)

• Experience securing onprem and cloud providerbased networks.
• Experience configuring and troubleshooting clients and point to point VPNs.
• Senior level experience with Palo Alto firewalls.
• Senior level experience with Cisco firewalls.
• Senior level experience with Fortinet firewalls.
• Senior level experience with Meraki network gear.
• Experience deploying administering operating and troubleshooting firewall management systems such as Tufin Panorama Fortimanager and Cisco FMC.
• Experience deploying administering operating integrating and troubleshooting Cisco Anyware and Cisco ISE.
• Experience with NDR/XDR (ie SNA/Stealthwatch Vectra)
• Experience with network monitoring platforms (ie LogicMonitor)
• Experience with automation using vendor APIs.
• Experience in contract negotiations pricing terms and conditions.
• CISSP CISM or other senior information security or network security certification.

APPOINTMENT TERMS

This is a fulltime permanent position located at the Storrs Campus in Storrs CT. This position may require you to travel instate and may work irregular hours to support operational or security activities and initiatives.

The University offers a competitive salary and outstanding benefits including employee and dependent tuition waivers at UConn and a highly desirable work environment. For additional information regarding benefits visit: rights terms and conditions of employment are contained in the collective bargaining agreement between the University of Connecticut and the University of Connecticut Professional Employees Association (UCPEA).

TERMS AND CONDITIONS OF EMPLOYMENT

Employment of the successful candidate is contingent upon the successful completion of a preemployment criminal background check.

TO APPLY

Please apply online at Faculty & Staff Positions Search #499046 to upload aresume cover letter that demonstrates how you meet the minimum qualifications for the position and contact information forthree (3) professional references.

In compliance with federal law all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

This job posting is scheduled to be removed at 11:55 p.m. Eastern time on June 3 2025.

All employees are subject to adherence to the State Code of Ethics which may be found at members of the University of Connecticut are expected to exhibit appreciation of and contribute to an inclusive respectful and diverse environment for the University community.

The University of Connecticut aspires to create a community built on collaboration and belonging and has actively sought to create an inclusive culture within the workforce. The success of the University is dependent on the willingness of our diverse employee and student populations to share their rich perspectives and backgrounds in a respectful manner. This makes it essential for each member of our community to feel secure and welcomed and to thoroughly understand and believe that their ideas are respected by all. We strongly respect each individual employees unique experiences and perspectives and encourage all members of the community to do the same. All applicants will receive consideration for employment without regard to race color religion gender gender identity or expression sexual orientation national origin genetics disability age or veteran status.

The University of Connecticut is an AA/EEO Employer.