Network Security Engineer

Network Security Engineer Protect and Strengthen USC’s Digital Campus The University of Southern California (USC) is seeking a Network Security Engineer to help safeguard one of the nation’s most dynamic academic environments. In this role, you’ll play a critical part in strengthening the university’s network security posture—protecting systems, data, and users across a complex and evolving infrastructure. You’ll collaborate closely with security operations, governance, and systems teams to design, implement, and optimize security solutions that support USC’s academic, research, and administrative missions. This is an opportunity to apply deep technical expertise while contributing to work that truly matters. What You’ll Do Design, implement, and maintain network security solutions that protect infrastructure from internal and external threats. Evaluate, deploy, and manage firewalls, intrusion prevention systems, web proxies, and data loss prevention technologies. Troubleshoot and resolve complex network security issues, partnering with campus departments and ITS stakeholders. Perform packet and flow analysis using industry-standard tools to identify risks and improve visibility. Support public cloud security architectures (AWS, Azure) and hybrid environments. Monitor, upgrade, and patch network security systems using leading-edge practices and tools. Contribute to incident response efforts, risk assessments, and operational improvements. Develop and maintain clear technical documentation and present findings and recommendations to stakeholders. Minimum Qualifications Bachelor’s degree, or combined experience and education as a substitute. Minimum of 4 years of relevant experience. Required Knowledge, Skills, and Abilities Experience with Border Gateway Protocol (BGP) and network security technologies including intrusion detection and prevention systems, proxies, firewalls, packet capture, and data loss prevention (DLP) solutions. Experience designing and implementing security controls within public cloud environments, such as AWS and/or Azure, including support for hybrid architectures. Experience deploying and troubleshooting certificate-based security solutions and public key infrastructure (PKI), including 802.1X authentication, SSL decryption/offloading, and related technologies. Experience designing, deploying, and supporting web proxy and content filtering solutions to enforce security policies and support data loss prevention initiatives. Demonstrated experience performing packet and flow analysis using a variety of tools, including in-line taps, firewall and IPS appliances, network routers, and host-based tools. Experience working with network access control (NAC) platforms, writing shell scripts using Python and/or Bash, and leveraging infrastructure monitoring and alerting tools. Experience designing, implementing, and supporting firewall and intrusion prevention system (IPS) architectures in enterprise environments. Proven ability to work effectively in project-based environments, collaborating and communicating with individuals and teams across diverse technical and non-technical organizations. Ability to generate technical reports, create presentations, and present findings and recommendations to appropriate stakeholders. Ability to contribute subject matter expertise to design discussions and support the development and implementation of secure, scalable network solutions. Preferred Knowledge, Skills, and Abilities Experience in IT and/or network engineering roles within enterprise or large-scale environments. Hands-on experience designing, implementing, and supporting firewalls, intrusion prevention systems, and infrastructure monitoring tools, with specific preference for Fortinet technologies and SolarWinds. Experience working with HPE ClearPass or similar network access control platforms. In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC’s Unifying Values of integrity, excellence, community, well-being, open communication, and accountability. Pay Transparency Act Statement The annual base salary range for this position is $135,360.01 – $144,758.48. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate’s work experience, education/training, key skills, internal peer equity, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations. Benefits To support faculty and staff well-being, USC provides benefits-eligible employees with a broad range of benefits and perks to help protect their and their dependents’ health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC’s comprehensive benefits here. Ready to Make an Impact? If you’re excited to help secure a world-class academic institution and work alongside talented technology professionals, we encourage you to apply today. Submit your application and resume to be considered for this opportunity. Equal Opportunity Statement USC is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or any other characteristic protected by law or USC policy. #LI-Hybrid MINIMUM QUALIFICATIONS The candidate for the position of Network Security Engineer must meet the following qualifications: • Bachelor’s degree, or vocational training in a relevant field such as computer science, computer engineering, etc., or equivalent combination of education, training, experience. • Two years of experience in information technology, network engineering, or network security. • One of the following certifications: CCNA Security, CCNP Security, Fortinet NSE 4, OSCP, CISSP, CEH, or equivalent relevant experience. • Experience with border gateway protocol (BGP), intrusion detection, proxies, firewalls, packet capture, and/or data loss prevention (DLP). • Experience designing and implementing security measures within public cloud environments, such as AWS or Azure. • Experience troubleshooting and deploying solutions involving certificates and public key infrastructures such as 802.1X or SSL decryption and offloading. • Experience designing and deploying web proxy and content filtering solutions for DLP. • Experience performing packet and flow analysis across a variety of toolsets such as in-line taps, firewall/IPS appliances, network routers, and hosts. • Ability to contribute expertise to design discussions and support the development of network solutions. • Experience writing shell scripts using Python or Bash. • Experience using infrastructure monitoring tools. • Experience working with network access control platforms. • Experience designing and working with firewall and intrusion prevention systems. • Ability to support the creation of presentation materials, generate reports, and assist in presenting to appropriate stakeholders. • Experience working in project-based environments. • Ability to collaborate across an organization and effectively communicate with others. USC is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or any other characteristic protected by law or USC policy. USC observes affirmative action obligations consistent with state and federal law. USC will consider for employment all qualified applicants with criminal records in a manner consistent with applicable laws and regulations, including the Los Angeles County Fair Chance Ordinance for employers and the Fair Chance Initiative for Hiring Ordinance, and with due consideration for patient and student safety. Please refer to the Background Screening Policy Appendix D for specific employment screen implications for the position for which you are applying. We provide reasonable accommodations to applicants and employees with disabilities. Applicants with questions about access or requiring a reasonable accommodation for any part of the application or hiring process should contact USC Human Resources by phone at (213) 821-8100, or by email at uschr@usc.edu. Inquiries will be treated as confidential to the extent permitted by law. Notice of Non-discrimination Employment Equity Read USC’s Clery Act Annual Security Report USC is a smoke-free environment Digital Accessibility If you are a current USC employee, please apply to this USC job posting in Workday by copying and pasting this link into your browser: https://wd5.myworkday.com/usc/d/inst/1$9925/9925$148432.htmld USC is a leading private research university located in the heart of downtown Los Angeles – a global center for arts, technology and international business. As the largest private employer in the city – responsible for more than $5 billion annually in economic activity in the region – we offer the opportunity to work in a dynamic and diverse environment, in careers that span a broad spectrum of talents and skills. As a USC employee, you will enjoy excellent benefits and perks, and you will be a member of the Trojan Family - the faculty, staff, students and alumni who make USC a great place to work. Application help If you need assistance during the application process, see our application help. (If you already work for USC, see Your USC career.) At any point you may also contact our HR Service Center for help at (213) 821-8100 or uschr@usc.edu. Don't see the dream job you are looking for? Drop off your contact information and resume and we will reach out to you if we find the perfect fit!