Network Analyst II, Security Operations

University of British ColumbiaVancouver, BC
CA$8,554 - CA$13,341Hybrid

About The Position

The Network Analyst II, Security Operations, is responsible for designing, developing, implementing, configuring, automating, and maintaining network security solutions to meet the evolving security and business needs of the organization. This role provides advanced technical expertise in monitoring, detecting, and mitigating security threats while ensuring compliance with modern network security principles, including zero-trust architecture. This position leads initiatives to enhance security configurations, optimize performance monitoring, and improve capacity management across both on-premises and hybrid cloud environments. The Network Analyst II also plays a key role in supporting UBC’s external network connections, including the BCNET backbone, and contributes to the continuous enhancement of network detection and response (NDR) capabilities. A fixed work schedule is set for this role, but flexibility is required as some work must be performed outside regular business hours. The position may be required to act in an on-call capacity in the event of a cybersecurity incident or major service disruption.

Requirements

  • Undergraduate degree in a relevant discipline.
  • In-depth knowledge of applications and the business requirements supporting them.
  • Minimum of five years of related experience, or the equivalent combination of education and experience.
  • Willingness to respect diverse perspectives, including perspectives in conflict with one’s own
  • Demonstrates a commitment to enhancing one’s own awareness, knowledge, and skills related to equity, diversity, and inclusion
  • Strong knowledge of network protocols, Layer 2 (STP) and Layer 3 (OSPF, BGP) routing, and security best practices.
  • Minimum of five years of hands-on experience managing network security operations, including Cisco firewalls, VPNs, Linux systems, Cisco routers/switches, and network detection and response (NDR) tools.
  • Demonstrated experience with security automation using Ansible, Python, Bash, or PowerShell.
  • Experience with incident response, security event correlation, and risk assessments.
  • Strong problem-solving, analytical thinking, and communication skills.
  • Ability to work independently and collaboratively in a fast-paced security operations environment.
  • Ability to face challenges and learn new knowledge and skills.

Nice To Haves

  • Industry certifications such as CISSP, CEH, CCNP Security, or equivalent are preferred.

Responsibilities

  • Work with the BMS and PLC controls team
  • Generate a network deployment plan for buildings.
  • Support PWC report goals
  • Design and develop Network Security solutions that align with the UBC Cybersecurity guidelines.
  • Integrating these new solutions with existing systems and solutions.
  • Collaborating with vendors to ensure solutions will not impact operations.
  • Collaborate with the Cybersecurity Group to address vulnerabilities related to network devices reported by the vendors and 3rd parties, follow security advisories/recommendations, and perform or coordinate patches and upgrades accordingly.
  • Analyze network systems to assess the overall security risks, ensuring conformity with UBC Cybersecurity guidelines, up-to-date patching, and develop network policies or rules in order to best protect the network systems.
  • Manage and troubleshoot firewall rules & ACLs on the firewall and routers protecting the network infrastructure and operations.
  • Monitor and analyze Logs/Alerts specifically related to the security of internal network infrastructure devices.
  • Develop, recommend, and undertake mitigation steps to proactively reduce Cybersecurity risks related to logs/alerts.
  • Support UBC IT Cybersecurity Initiatives and NMC/CI Network Projects by ensuring secure network operations and documentation.
  • Leads small and medium-sized network-specific security projects and initiatives.
  • Generates reports using CAASM to identify system vulnerabilities and security concerns.
  • Design and develop mitigation steps to address any such identified vulnerabilities or concerns.
  • Perform system administration tasks on Linux systems, including user account management, patching, and system updates to enhance security and performance.
  • Implements fixes independently where possible or devises a strategic plan for patching, collaborating with colleagues as needed.
  • Maintain up-to-date knowledge on emerging security threats and vulnerabilities, proactively alerting the team to any issues requiring immediate attention.
  • Manage, update, and patch network security tools, and perform operational and security incident response using these tools.
  • Proactively manage privileged access management (PAM) systems, ensuring devices and accounts are configured correctly and compliant with established policies.
  • Develop, deploy and maintain automated security patching processes using tools like Ansible Tower, automate Linux server configurations and security patches, reducing manual efforts and ensuring consistency across systems.
  • Develop, implement and maintain automated pre- and post-upgrade checks to validate the health of server VMs and network devices, allowing for automatic rollbacks if issues are detected. This ensures network reliability during maintenance windows.
  • Modify existing Ansible playbooks to accommodate evolving requirements and security standards.
  • Create new playbooks when necessary to automate additional tasks or enhance security measures.
  • Collaborates with internal teams such as the Cybersecurity Team, Systems Team, Cloud Architecture Team, and other relevant departments to determine the necessary technical support for network systems, including monitoring network activity, troubleshooting, and diagnosing network security related issues.
  • Design and develop any resulting required network security measures.
  • Works closely with cross-functional teams to ensure that UBC’s network infrastructure aligns with the organization's hybrid cloud security architecture and implements layered security controls for applications and data, ensuring seamless integration and adherence to security policies.
  • Recommends and implements network security procedures, patching, OS upgrades and predetermined software or hardware changes to rectify any security issues.
  • Contributes to the security architecture by deploying firewalls, NDR, micro-segmentation, and network access control (NAC) technologies to enhance both internal and external network security.
  • Develops, manage and maintain the automation environment by developing and troubleshooting Ansible workflows for security patching, system configuration, and network upgrades.
  • Maintain a centralized script repository (e.g., a Git repository) with version control and approval processes to ensure security, compliance, and efficiency.

Benefits

  • The Compensation Range is the span between the minimum and maximum base salary for a position.
  • The midpoint of the range is approximately halfway between the minimum and the maximum and represents an employee that possesses full job knowledge, qualifications and experience for the position.
  • In the normal course, employees will be hired, transferred or promoted between the minimum and midpoint of the salary range for a job.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service