The mission of the Information Technology Group (ITG) is to develop, implement and maintain technology-based services and solutions that enable OHSU to effectively manage information to accomplish its missions.

The Network Architecture & Engineering work unit provides for analysis, design, implementation, maintenance, security, and optimization of OHSU local and wide area (LAN/WAN) wired and wireless networks, data center networks, and associated infrastructure.   As detailed below, the individual positions within this work unit will be required to collaborate and assist staff in other technology work units.

 

The Network Security Systems Analyst/Engineer position requires extensive experience in designing and deploying Cisco wireless networks in a large-scale healthcare environment. This role manages a multi-controller infrastructure supporting 5,000+ access points across Oregon and Washington, covering approximately 10 million square feet. It ensures seamless connectivity, performance, and security while supporting OHSU’s business operations and institutional missions. 

 

This Network Security Engineer position demands industry-leading technical expertise in designing, deploying, managing, and optimizing firewall infrastructures, specifically with Cisco Firewalls (ASA, Firepower, and Cisco Secure) and Palo Alto Networks products. Comprehensive knowledge of Network Address Translation (NAT), VPN solutions, load balancing, and advanced routing configurations within segmented DMZ environments.

 

Equally crucial is expert-level proficiency in Cisco Identity Services Engine (ISE), including advanced policy management, 802.1X Network Access Control (NAC) implementations, detailed device profiling, posture assessments, licensing management, platform upgrades, and TrustSec policy enforcement to ensure robust, identity-driven access control throughout the network. 

 

The incumbent will have primary responsibilities for one or more technology platforms and secondary responsibility for other technologies and will need to be conversant in both.  This position also provides for problem analysis, communications and technical feedback between customers, field support, and other ITG work units and provides (Tier III) support and technical escalation for design and problem resolution.

 

This position combines technology roles that include Systems Analyst, Systems Administrator, Systems Engineer, and Project Manager. These are multi-tasking, broadly based, positions that require a unique combination of analytic, engineering, project management, and customer service skills to provide ITG systems support across all OHSU healthcare, academic and research missions. Incumbents are proficient in troubleshooting and root cause analysis using the scientific method of refining a problem statement and queuing up a series of increasingly specific tests to isolate the problem.  Necessarily, this requires specialized knowledge for the equipment and services for which the analyst/engineer is directly responsible.  In addition, expert broad-based knowledge is used to troubleshoot integrated applications suites, services running across hybrid network architectures, fiber equipment & tools, virtualized servers or desktops, load balanced server farms, firewalls, VPNs, etc. 

 

This position is a member of a team that supports a 24x7 mission critical healthcare operation. In order to make this possible, this position will participate in an on-call rotation that is shared across a team for 1 week periods. In addition to the scheduled on-call week, this position may be required to assist during off-shift periods when troubleshooting critical systems.

Education: 

Bachelor’s degree, and three years of progressively responsible Information Technology related experience leading to proven proficiency and subject matter expertise in the areas outlined within the class specification; OR

 

Equivalent alternative educational experience that includes approved coursework, professional certifications as outlined below, vendor training, and seven years of documented professional experience leading to proven proficiency and subject matter expertise in the areas outlined within the class specification; OR

 

An equivalent combination of education and experience.

 

Experience: 

• Experience in designing, implementing and supporting new systems and infrastructure independently
• Experience using one or more formal project management methods (Waterfall, Agile, etc.)
• Experience in supporting large mission critical systems in 24X7 multiple production environments
• 3 years working with Cisco or Juniper systems
• Experience with TCP/IP, and other networking protocols.
• Crash analysis and troubleshooting
• Application installation and configuration
• Understanding of Microsoft Networks at the operating system level, file/directory security, and user account level
• Enterprise experience with Systems administration (at minimum UNIX and Microsoft), Scripting

Job Related Knowledge, Skills, and Abilities: 

• Expert skills and knowledge in network architectures and topologies
• Expert skills and knowledge in TCP/IP, UDP/IP
• Expert and comprehensive knowledge of the following:
• Network Protocols (TCP/IP, etc.)
• Routing Protocols (OSPF, EIGRP, etc.)
• Network Topologies (Ethernet, Wave Division Multiplexing, etc.)
• Data Communications Equipment (Routers, Switches, WIFI, Radio backhaul, etc.)
• Network Management Tools (SNMP, packet sniffing, management consoles, etc.)
• Premise Distribution Systems (Fiber, Copper Cabling Systems, etc.)
• Working knowledge of VMWare NSX
• Experience in one or more: Scripting / programming languages: Python, Rest API, PowerShell, etc.
• Expert skills and knowledge of Security Toolsets: VPN, Firewalls, advanced ACL methods, Auditing Tools, Intrusion Detection, etc.
• Expert skills using accepted change control management processes
• Expert level knowledge of IT security best practices and processes
• Advanced, broad-based “IT technical generalist” skills
• Advanced and proven technology analytic skills that demonstrate accepted systems analysis processes including expert skills for root cause analysis
• Working knowledge of Power Systems: Remote Power Supplies, UPS, Generators, power loading, etc.
• Working knowledge of Legacy Technology
• Working knowledge of  Quality of Service methodologies and practice
• Working knowledge of MPLS (Multi-Protocol-Label-Switching) methodologies and practice
• Working knowledge of project management best practices
• Working knowledge of IP Telephony methodologies and practice
• Network security at the operating system level, file/directory level, and user account level.
• Proven ability to effectively multitask
• Working knowledge of network data storage
• Working knowledge of server cluster concepts
• Working knowledge of Web Infrastructure
• Working knowledge of directory services (Microsoft Active Directory, LDAP interfaces, etc.)

Registrations, Certifications, and Licenses: 

• Within six months of hire obtain one or more current Industry certifications for active network components such as Cisco CCNA, Juniper JNCIA or JNCIS, etc.
• Physical layer certifications may be substituted with manager approval: Low Voltage License, Dark Fiber Termination, Wave Division Multiplexing certification, etc.

Normal schedule is Monday – Friday, various hours 6a.m – 6 p.m. Schedule to be determined by manager and departmental need.

 

Will also work on call rotation as well as some weekend and non-standard business hours.

Oregon Health & Science University values a diverse and culturally competent workforce. We are proud of our commitment to being an equal opportunity, affirmative action organization that does not discriminate against applicants on the basis of any protected class status, including disability status and protected veteran status. Individuals with diverse backgrounds and those who promote diversity and a culture of inclusion are encouraged to apply. To request reasonable accommodation contact the Affirmative Action and Equal Opportunity Department at 503-494-5148 or aaeo@ohsu.edu.