Description
UCLA HEALTH
To apply for this position please CLICK HERE
Description
Provide technical leadership for wired and wireless
network systems for a university medical system. Serve as subject matter expert for wired and
wireless network architecture, design, planning, assessment, and implementation. Serve in a lead role as escalation support
resource person for authentication, authorization, and accounting (AAA) and
Network Access Control (NAC). Provide
recommendations and initiate necessary corrective action to ensure robust wired
and wireless authentication, authorization and endpoint posture compliance.
Provide day-to-day support of the 24 x 7 production environment of the
enterprise network (core, distribution, wired and wireless access layers, AAA
servers, IPAM, DHCP). Be responsible for
design, implementation and administration of Network Access Control on wired,
wireless and VPN. Be responsible for
enterprise project deliverables, including performing project tasks, project
documentation, build, installation, performance monitoring, optimization,
troubleshooting and maintenance of a variety of systems of the network. Identify and evaluate the competitive
products and solutions pertaining to network edge security and endpoint
posture. Build and improve the wired and
wireless NAC dashboards for managing operations to fulfill business requirements, leveraging API, Syslog,
Webhooks of ClearPass Policy Manager and Cisco Identity Services Engine.
The employer offers hybrid work-from-home benefit
within 2 hours or 50 commuting miles distance from the jobsite.
Salary Range: $116,300 – $264,600 annuallyQualifications
Bachelor’s
degree in computer science, electronics engineering or a related field, plus
ten years of experience in job offered or as a Network Engineer, Network
Architect, or a related occupational title.
Alternatively, the employer will accept a Master’s degree in computer
science, electronics engineering, or a related field plus eight years of
experience in job offered or as a Network Engineer, Network Architect, or a
related occupational title.
- Aruba Certified ClearPass Expert
(ACCX) or Cisco Certified Internetworking Expert – Security (CCIE-Security).
The following
skills and experiences can be met concurrently with the number of years of
required experience.
- 8
years of experience working in an enterprise network environment with over 1000
wireless access points and WLAN and NAC implementation. - 8
years of experience working with infrastructure technology. - 8
years of Experience in network design or network support.
The following
required skills and experiences do not require set amount of time as a
demonstration of proficiency.
- Demonstrated
experience configuring, implementing, and supporting network access control and
authentication methodologies, including AAA, NAC, WPA/WPA2-Enterprise, 802.1X
and EAP methodologies (EAP-PEAP/TLS/TTLS, EAP-FAST), RADIUS, TACACS+, IPsec,
GRE, PKI, and guest onboarding and management solutions. - Demonstrated
understanding of certificate management and Public Key Infrastructure (PKI)
design and implementation in enterprise environments. - Demonstrated
experience integrating Microsoft Active Directory Domain Controllers using
LDAP/LDAPS and implementing encryption policies. - Demonstrated
experience in the architecture and optimization of enterprise Wireless LAN
(802.11) infrastructures leveraging Aruba or Cisco wireless technologies. - Demonstrated
experience designing and deploying enterprise network architectures
incorporating AAA and NAC for secure access and compliance. - Demonstrated
experience utilizing project management methodologies. - Demonstrated
experience leading large-scale security project implementations. - Demonstrated
proficiency in oral and written communications. - Demonstrated
experience mentoring and coaching peers and team members. - Demonstrated
experience with the following operating systems and software: Aruba OS or Cisco
AireOS/CatOS, Aruba ClearPass Policy Manager or Cisco ISE, Aruba Airwave
Management Platform or Cisco Prime Infrastructure/DNAC, Wireshark or Omnipeek
Protocol Analyzers, and MS Visio. - Demonstrated
experience with the following hardware technologies: Aruba Wireless Controller
and Access Points or Cisco Wireless Controller and Access Points. - Experience
working on routing & switching protocols: OSPF, STP, VRRP, HSRP, LACP, DHCP
& DNS. - Experience
in implementing Wired and Wireless QOS. - Experience
building customized wireless dashboards leveraging REST API and Syslog messages
from various wireless and AAA/NAC system. - Experience
with systems integrations using REST API and Webhooks. - Experience in network
automation using Python and Ansible.