Oregon Health & Science University values a diverse and culturally competent workforce. We are proud of our commitment to being an equal opportunity, affirmative action organization that does not discriminate against applicants on the basis of any protected class status, including disability status and protected veteran status. Individuals with diverse backgrounds and those who promote diversity and a culture of inclusion are encouraged to apply. To request reasonable accommodation contact the Affirmative Action and Equal Opportunity Department at 503-494-5148 or .
Network Systems Analyst/Engineer (System Analyst/Engineer)
US-OR-Portland
Job ID: 2025-33736 Type: Regular Full-Time # of Openings: 1 Category: Information Systems Portland, OR (Marquam Hill)
Overview
The Network Architecture & Engineering work unit provides for analysis, design, implementation, maintenance, security, and optimization of OHSU local and wide area (LAN/WAN) wired and wireless networks, data center networks, and associated infrastructure. As detailed below, the individual positions within this work unit will be required to collaborate and assist staff in other technology work units.
The Network Security Systems Analyst/Engineer position requires extensive experience in designing and deploying Cisco wireless networks in a large-scale healthcare environment. This role manages a multi-controller infrastructure supporting 5,000+ access points across Oregon and Washington, covering approximately 10 million square feet. It ensures seamless connectivity, performance, and security while supporting OHSU's business operations and institutional missions.
This Network Security Engineer position demands industry-leading technical expertise in designing, deploying, managing, and optimizing firewall infrastructures, specifically with Cisco Firewalls (ASA, Firepower, and Cisco Secure) and Palo Alto Networks products. Comprehensive knowledge of Network Address Translation (NAT), VPN solutions, load balancing, and advanced routing configurations within segmented DMZ environments.
Equally crucial is expert-level proficiency in Cisco Identity Services Engine (ISE), including advanced policy management, 802.1X Network Access Control (NAC) implementations, detailed device profiling, posture assessments, licensing management, platform upgrades, and TrustSec policy enforcement to ensure robust, identity-driven access control throughout the network.
The incumbent will have primary responsibilities for one or more technology platforms and secondary responsibility for other technologies and will need to be conversant in both. This position also provides for problem analysis, communications and technical feedback between customers, field support, and other ITG work units and provides (Tier III) support and technical escalation for design and problem resolution.
This position combines technology roles that include Systems Analyst, Systems Administrator, Systems Engineer, and Project Manager. These are multi-tasking, broadly based, positions that require a unique combination of analytic, engineering, project management, and customer service skills to provide ITG systems support across all OHSU healthcare, academic and research missions. Incumbents are proficient in troubleshooting and root cause analysis using the scientific method of refining a problem statement and queuing up a series of increasingly specific tests to isolate the problem. Necessarily, this requires specialized knowledge for the equipment and services for which the analyst/engineer is directly responsible. In addition, expert broad-based knowledge is used to troubleshoot integrated applications suites, services running across hybrid network architectures, fiber equipment & tools, virtualized servers or desktops, load balanced server farms, firewalls, VPNs, etc.
This position is a member of a team that supports a 24x7 mission critical healthcare operation. In order to make this possible, this position will participate in an on-call rotation that is shared across a team for 1 week periods. In addition to the scheduled on-call week, this position may be required to assist during off-shift periods when troubleshooting critical systems.
Responsibilities
Education:
Bachelor's degree, and three years of progressively responsible Information Technology related experience leading to proven proficiency and subject matter expertise in the areas outlined within the class specification; OR
Equivalent alternative educational experience that includes approved coursework, professional certifications as outlined below, vendor training, and seven years of documented professional experience leading to proven proficiency and subject matter expertise in the areas outlined within the class specification; OR
An equivalent combination of education and experience.
Experience: Experience in designing, implementing and supporting new systems and infrastructure independentlyExperience using one or more formal project management methods (Waterfall, Agile, etc.) Experience in supporting large mission critical systems in 24X7 multiple production environments 3 years working with Cisco or Juniper systemsExperience with TCP/IP, and other networking protocols.Crash analysis and troubleshootingApplication installation and configurationUnderstanding of Microsoft Networks at the operating system level, file/directory security, and user account levelEnterprise experience with Systems administration (at minimum UNIX and Microsoft), Scripting Job Related Knowledge, Skills, and Abilities: Expert skills and knowledge in network architectures and topologiesExpert skills and knowledge in TCP/IP, UDP/IPExpert and comprehensive knowledge of the following:Network Protocols (TCP/IP, etc.)Routing Protocols (OSPF, EIGRP, etc.)Network Topologies (Ethernet, Wave Division Multiplexing, etc.)Data Communications Equipment (Routers, Switches, WIFI, Radio backhaul, etc.)Network Management Tools (SNMP, packet sniffing, management consoles, etc.) Premise Distribution Systems (Fiber, Copper Cabling Systems, etc.)Working knowledge of VMWare NSX Experience in one or more: Scripting / programming languages: Python, Rest API, PowerShell, etc.Expert skills and knowledge of Security Toolsets: VPN, Firewalls, advanced ACL methods, Auditing Tools, Intrusion Detection, etc.Expert skills using accepted change control management processesExpert level knowledge of IT security best practices and processes Advanced, broad-based "IT technical generalist" skillsAdvanced and proven technology analytic skills that demonstrate accepted systems analysis processes including expert skills for root cause analysisWorking knowledge of Power Systems: Remote Power Supplies, UPS, Generators, power loading, etc.Working knowledge of Legacy TechnologyWorking knowledge of Quality of Service methodologies and practiceWorking knowledge of MPLS (Multi-Protocol-Label-Switching) methodologies and practiceWorking knowledge of project management best practicesWorking knowledge of IP Telephony methodologies and practiceNetwork security at the operating system level, file/directory level, and user account level.Proven ability to effectively multitaskWorking knowledge of network data storage Working knowledge of server cluster conceptsWorking knowledge of Web InfrastructureWorking knowledge of directory services (Microsoft Active Directory, LDAP interfaces, etc.) Registrations, Certifications, and Licenses: Within six months of hire obtain one or more current Industry certifications for active network components such as Cisco CCNA, Juniper JNCIA or JNCIS, etc. Physical layer certifications may be substituted with manager approval: Low Voltage License, Dark Fiber Termination, Wave Division Multiplexing certification, etc. Equal employment opportunity, including veterans and individuals with disabilities.
