Network Access Engineer

Job Summary

Under general direction, the IT Network Access Engineer will provide advance level technical expertise and technical leadership in the area of IT security as it relates to UCDH networking (LAN, WAN, Wireless) and network access services as it relates to software defined access (SDA) and network access control (NAC). Incumbent has a primary responsibility for IT security operations, engineering and projects in new/existing environments.

In consultation with the UCDH IT Security team, the IT Network Access Engineer will oversee design, installation and support functions, including coordination of projects and workflow, decision making authority on large system design and high-level problem-solving pertaining to IT Security for UCDH networks and network access services.

The IT Network Security Access Engineer applies advanced technical knowledge and leadership to enterprise level network security specializing in IT Security, software defined access, network access control, network security best practices, and network access hardening for the UC Davis Health Sacramento campus. Working closely with the UCDH IT Security team and the IT Network Security Engineer, the IT Network Access Engineer is responsible for design, implementation, troubleshooting and support of access security, as well as any new security access required.

The IT Network Access Engineer has independent responsibility for design and implementation of highly complex network security designs encompassing implementation, configuration, maintenance, and troubleshooting. Additional responsibilities include assisting with general Unified Communications departmental projects, support requirements, on-call assignments, projects and design/engineering efforts that impact the Enterprise WAN/LAN/Wireless.

Apply By Date: 1/23/2026 by 11:59pm

• Required to hold a valid California driver's license, have a driving record that is in accordance with local policies/procedures, and/or enroll in the California Employer Pull Notice Program
• Some college or vocational network training
• Extensive experience (5+ years) working with Cisco Identity Services Engine (ISE) in medium to large enterprise environments.
• Strong background designing, deploying, and supporting network access control (NAC) solutions using Cisco ISE.
• Hands‑on experience with 802.1X authentication, RADIUS, TACACS+, and general access‑control policies for wired and wireless networks.
• Experience building and managing ISE policies, including authentication/authorization rules, device profiling, guest access, and endpoint onboarding.
• Expert knowledge and experience in network access policies, protocols, and best practice in an enterprise network, focusing on both external and internal network protection and threat detection, mitigation and response.
• Expert knowledge and experience with the standards, protocols, installation and maintenance procedures of network security hardware and core network and network access technologies.
• Advanced knowledge and experience with Cisco ISE and NAC as implemented on Cisco switches.
• Highly developed analysis and problem solving skills to quickly assess complex problems, evaluate options, make a decision and resolve problems.
• Advance knowledge and experience with network theory and technology
• A deep understanding of the OSI model and the interconnection, crititical standards and complexities related to OSI layers 1 through 4.
• Highly developed project management skills encompassing planning, purchasing, scheduling, installation, tracking, test and acceptance and problem resolution in a multi‑vendor environment.
• Highly developed organizational skills to manage multiple projects simultaneously.
• Completing multiple tasks which may not be well defined and to work effectively with frequent interruptions and changing environment.
• Demonstrated ability to communicate effectively on a technical level with other knowledgeable persons and solve technical problems.
• Proven ability to work independently and generate innovative solutions to…