Network Security Engineer II

Rochester, NY


The Network Security Engineer II ensures the security, stability and integrity of all internal and external firewalls. This is achieved by planning, designing, developing and managing firewall rules that comply with company security requirements and risk acceptance. In addition, the position participates in the design, installation, monitoring, maintenance, refresh, support and optimization of all network firewall hardware and software.


  1. Manages firewalls that protect our complex and diverse network, including design, installation, monitoring, administration and maintenance. Develops and maintains efficient and secure firewall policies and configurations to respond to the evolving threat landscape and changing business needs.

  2. Completes requests for updates to firewall policies that often require critical thinking and careful analysis. Troubleshoots user-reported issues and either updates firewalls or directs people to an alternate solution as resolution. Investigates and assists with resolution of network events and issues discovered by other teams. Adheres to processes and procedures for change management and trouble ticket resolution. Maintains documentation as changes are made.

  3. Participates in architecture designs for network security platforms, including remote access and site-to-site VPN, and network growth that requires additional firewalls.

  4. Maintains and organizes documentation for platforms and internal processes. Educates, trains and guides other team members to improve skills. Maintains awareness of developing trends and best practices in security and continues to deepen established skills with ongoing personal development.

  5. Participates in administration for netflow collection and analysis platform and ensures that relevant data and events, including firewall and system logs, are forwarded to appropriate parties. Collaborates with Network and Systems teams to ensure appropriate monitoring and alerting is done and events are resolved.

  6. Serves as team representative for projects as necessary. Provides high-level support to others in general problem resolution.

  7. Participates in team on call rotation as required.

Other duties as assigned


  • Bachelor's degree in related discipline such as Computer Science, Business, Mathematics, Statistics, Science or Engineering required.

  • Master's Degree preferred.

  • 2 years of related experience required.

  • or equivalent combination of education and experience required.

  • Knowledge of computer networking concepts and protocols and network security methodologies, cyber threats and vulnerabilities and encryption required.

  • Skilled at managing systems in a disciplined IT environment required.

  • Ability to troubleshoot issues and apply critical thinking required.

  • Knowledge of and familiarity with physical and virtual network devices (hubs, switches, routers, firewalls, etc.) required.

  • Knowledge of the configuration of diverse firewall features, including packet filtering, routing, NAT, threat protection / IDS, IPSec and SSL VPN, etc. required.

  • Skilled in general firewall administration, with emphasis on Palo Alto or Cisco firewalls required.

  • Skilled in assessing, testing and evaluating tools to identify areas for improvement required.

  • Skilled in technical writing and presentation required.

  • Ability to provide customer satisfaction and appropriate follow-through in all interactions coupled with a sense of urgency when needed required.

  • Ability to work under pressure and handle multiple, competing priorities, adjusting as needed required.

The University of Rochester is committed to fostering, cultivating, and preserving a culture of equity, diversity, and inclusion to advance the University’s mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion/creed, sex, sexual orientation, citizenship status, or any other status protected by law. This commitment extends to the administration of our policies, admissions, employment, access, and recruitment of candidates from underrepresented populations, veterans, and persons with disabilities consistent with these values and government contractor Affirmative Action obligations.

How To Apply

All applicants must apply online.

EOE Minorities/Females/Protected Veterans/Disabled

Pay Range

Pay Range: $77,216 - $115,824 Annually

The referenced pay range represents the minimum and maximum compensation for this job. Individual annual salaries/hourly rates will be set within the job’s compensation range, and will be determined by considering factors including, but not limited to, market data, education, experience, qualifications, expertise of the individual, and internal equity considerations.

Apply for Job

  • Careers

  • Sign In

  • New User

Location: Central Administration
Full/Part Time: Full-Time