Skip to Main Content

Information Security Engineer

To apply for this position, select 'Apply for this Job'.

Disclaimer

This is a job description. It does not necessarily indicate that this position is open for employment. Visit www.etsu.edu/jobs for current job openings.

Classification Details

Classification Information

Classification Title Engineer
Classification Code 37670
FLSA Exempt

Position Details

Position Information

Position Title Information Security Engineer
Position Number 113490
CIP Code
FTE 1.0
Pay Grade 13
Department Academic Technology Support - 25010
Expectations for All Employees:

East Tennessee State University pursues its mission based upon core values. An employee’s job performance must support and exhibit the university’s core values: PEOPLE come first, are treated with dignity and respect, and are encouraged to achieve their full potential; RELATIONSHIPS are built on honesty, integrity and trust; DIVERSITY of people and thought is respected; EXCELLENCE is achieved through teamwork, leadership, creativity, and a strong work ethic; EFFICIENCY is achieved through wise use of human and financial resources; and COMMITMENT to intellectual achievement is embraced.

Job Summary

Reports to the CISO and Associate CIO and is responsible for coordinating, planning, implementing, tracking, and measuring technical and administrative information security controls; all aspects of hands-on enterprise/university information security and compliance; technical controls such as firewalls and ACL, IDS/IPS, Network Access Control (NAC), Antivirus (AV), log aggregation and correlation (SIEM), encryption (PKI, at rest, in transit), vulnerability management, and technical control assessment; developing, testing, monitoring and updating information security management controls such as information security policies, standards, guidelines development and assessment, business impact analysis (BIA), disaster recovery (DR), business continuity (BCP), risk assessment (RA) planning and testing, and information security awareness training; and performing other related duties as assigned.

Knowledge, Skills and Abilities
  • Knowledge of the OSI model, TCP/IP, encryption standards, wired and wireless packet and network traffic analysis and troubleshooting using common packet capture and network tools.
  • Knowledge of network level protocols and applications, including analysis, reverse engineering and troubleshooting.
  • Knowledge of forensics and anti-forensics methodologies, including file and data recovery, MAC times, network forensics and mobile device forensics.
  • Knowledge of application-aware next-gen enterprise firewall management, network ACL, VPN, DMZ, and content/application filtering.
  • Knowledge of enterprise level IDS/IPS including cloud based application containment and analysis.
  • Knowledge of vulnerability and penetration testing tools, including commercial and open source solutions, vulnerability testing, remediation and compensating control best practices.
  • Knowledge of enterprise-level Network Access Control (NAC) systems, including wired, wireless, in-band and out-of-band solutions, permanent and volatile agent configurations.
  • Knowledge of SIEM and log management, including commercial, open-source, ELK stack and syslog-ng.
  • Knowledge of enterprise-level antivirus and malware solutions, including cloud-based and behavioral based solutions.
  • Knowledge of enterprise authentication systems, including RADIUS, TACACS+, and 802.1X.
  • Knowledge of enterprise wireless systems, including enterprise-level wireless authentication and encryption.
  • Ability to monitor and recognize information security breaches or intrusions.
  • Ability to demonstrate strong technical writing skills.
  • Ability to communicate network security issues to peers and management.
Required Qualifications

Bachelor’s degree in Computer Science or related field required; or, 2 years of hands-on, enterprise-level or university-level work experience in information security; Security+, equivalent or higher information security certification required.

Preferred Qualifications

Experience in higher education.

Experience with coding, including PowerShell and Linux shell.

Experience with security and service automation.

Physical Demands
Supervision Given and Received

Performs under general supervision. Determines own methods for performing assigned work.

Version Date April 2017

Job Duties

These are the job duties required of the position.

Description of Job Duty
  • Plans, implements, tracks, monitors, measures, manages, and improves the University Network Access Control System (NAC).
  • Plans, implements, tracks, monitors, measures, manages, and improves the University network security architecture, including firewalls, network and application-based ACL, Virtual Private Network (VPN) Demilitarized Zone(s) (DMZ), and content/application filtering.
  • Plans, implements, tracks, monitors, measures, manages, and improves the University Intrusion Detection and Prevention System(s) (NIPDS).
  • Plans, implements, tracks, monitors, measures, manages, and improves the University vulnerability scanning and penetration testing efforts.
  • Plans, implements, tracks, monitors, measures, manages, and improves the University enterprise antivirus/anti-malware system(s).
  • Plans, implements, tracks, monitors, measures, manages, and improves the University security authentication and log system(s), including log correlation and aggregation, automated altering and prioritization.
  • Assists with developing, testing, monitoring, and updating information security management controls such as information security policies, standards, guidelines, development and assessment, business impact analysis, disaster recovery, business continuity, risk assessment planning and testing.
  • Plans, implements, tracks, monitors, measures, manages, and improves the University information security awareness-training program.
Job Duty Type Essential
Description of Job Duty
  • Performs other related duties as assigned.
Job Duty Type Secondary