Job Information

TIAA Sr. Network Engineer - Cisco ISE in Broomfield, Colorado

Senior Engineer

The Information Systems Engineer designs information systems that are appropriate for users' needs and consistent with the overall design of the organization's information systems architecture. Under limited supervision, this job is responsible for the installation, configuration and maintenance of the organization's operating systems.

Key Responsibilities and Duties

  • Formulates system scope through research and fact-finding to develop or modify moderately complex information systems.

  • Evaluates and implements changes to existing system logic difficulties and documentation as necessary.

  • Reviews flow charts, models, and procedures and feasibility studies to design possible system solutions.

  • Reviews technical documentation to guide system users and to assist with the ongoing operation, maintenance, and development of the system.

  • Collaborates with system analysts, engineers, and programmers to design systems and to determine project limitations and capabilities, performance requirements, systems performance standards, and interfaces.

  • Identifies and documents all system constraints, implications and consequences of various proposed system changes.

  • Educates end users on system designs and functionalities through creation of training materials and conducting demos.

  • Evaluates the efficiency and effectiveness of application operations and troubleshooting problems.

Educational Requirements

  • Bachelor's Degree Required

Work Experience

  • 3+ Years Required; 5+ Years Preferred

Physical Requirements

  • Physical Requirements: Sedentary Work

Career Level


TIAA has an opportunity for a Sr. Network Operations Engineer - Cisco ISE position that will provide support to the Network Operations Services Organization and will interact heavily with the Federated Operations community. This role be responsible for determining the business requirements and manage the day-to-day operational effectiveness and stability for the enterprise network, with a focus on security services including network access control (NAC), firewall and proxy, both on premise and in the cloud.

The primary responsibilities will involve fault and event management, along with providing customer support for both incident and change management. A critical aspect of the role is to manage and support the network aspects of Network Security Service programs, including network access control (NAC), specifically Cisco Identity Services Engine (ISE).

The ideal candidate will have experience with ITIL processes, customer support, firewall management, proxy management, and the ability to work in a collaborative team environment, is necessary. In addition, will be a Subject Matter Expert (SME) for Cisco ISE and its related components. Additional experience with Palo Alto firewalls, Blue Coat proxies, and/or Zscaler Internet Access (cloud proxy) would be greatly beneficial.

The candidate will be responsible for managing technical solutions that will carry TIAA into the future and support a period of tremendous change; leading with influence and a balanced approach to quality execution, stability, and excellent customer support.


  • Strong experience with Cisco Identity Service Engine (ISE), and related protocols (802.1x, TACACS, RADIUS, EAP-TLS, etc.)

  • Lead the support of on premise and cloud proxy solutions, in addition to firewall services, including policy management, site-to-site business VPN’s, and end user remote VPN.

  • Understand, and support for, the full platform product life cycle

  • Support the platforms and determine the best operating model that enables our people to be productive 7x24 regardless of geography

  • Participate in service reviews, continually improving our service


  • Provide daily operational duties, to include: fault management, incident management, and ticket management

  • Provide support and technical guidance for massively growing global infrastructure

  • Process customer requests for network configuration updates, such as firewall and proxy changes

  • Write, augment and maintain operational documentation

  • Define and deliver selection of appropriate tools and target state connectivity solutions, service management, and service catalog integration

  • Make recommendations on integration strategies, platforms, and application infrastructure required to successfully implement desired solutions providing best practice advice to other teams.



  • Minimum of 3+ years of experience in supporting, monitoring, configuring, and implementing enterprise networks with diverse solutions from multiple vendors on a large enterprise and global scale.

  • Minimum of 3+ years hands-on technical experience with Cisco Identity Services Engine (ISE)

  • Minimum of 3+ years’ experience with hands-on technical experience with proxy services, both cloud and on premise, such as Zscaler and Blue Coat

  • Minimum of 3+ years hands-on technical experience with firewall services, and Cisco FirePower/ASA

  • Validated knowledge of network technologies through achievement of professional certifications.

  • Solid understanding of network and data center architecture, including cloud architectures in design, implementation and operations such as Microsoft Teams, AWS, Workday.

  • Knowledge of networking infrastructure suppliers and service offerings including or similar to: Cisco, F5 Networks, Palo Alto, Riverbed, Zscaler, Blue Coat, AT&T, Lumen and Telstra

  • Knowledge of security design principals ensuring secure, scalable and supportable network services


  • Bachelor’s degree preferred along with relevant industry certifications

  • Minimum of 3+ years hands-on technical experience with firewall services, such as Palo Alto

  • Demonstrated record of technical experience with network technologies, tools and platforms

  • In-depth understanding of the design, operation and regulatory aspects of global networks

  • Solid understanding of remote access and SaaS solutions

  • Passion for leading change and ability to bring others along

  • CCNA or equivalent certification

  • CCNP or equivalent certification


  • Charlotte, NC

  • Broomfield, CO

  • Chicago, IL

  • Iselin, NJ

  • New York Ci

  • Jacksonville, FL

  • Remote possible for a particularly strong candidate

Potential Salary: $114,000.00 USD

Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).

Company Overview

TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.

COVID-19 Vaccination

TIAA requires all U.S. employees to be fully vaccinated against COVID-19 and provide documentation of full vaccination, unless you qualify for an accommodation as determined by TIAA consistent with applicable law.

Benefits and Total Rewards

The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary ( .

Equal Opportunity

We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.

Read more about the Equal Opportunity Law here ( .

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone: (800) 842-2755


Privacy Notices

For residents of California, please click here ( to access the TIAA CA Applicant Privacy Notice.

For residents of the EU / UK, please click here ( to access the EU / UK Pre-employment Notice.

For all other residents, click here ( to access the Applicant Privacy Notice.

TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.