Skip to Main Content

Information Security Engineer

To apply for this position, select 'Apply for this Job'.

Posting Details

Position Information

Job Title Information Security Engineer
Department Information Technology Services - 50300
Pay Grade 13
Job Category Administrative
Job Summary

Reporting to the CISO and Associate CIO coordinates, plans, implements, tracks, and measures technical and administrative information security controls. Responsible for all aspects of hands-on enterprise / university information security and compliance. Responsible for technical controls such as firewalls and ACL, IDS/IPS, Network Access Control (NAC), Antivirus (AV), log aggregation and correlation (SIEM), encryption (PKI, at rest, in transit), vulnerability management, and technical control assessment. Responsible for developing, testing, monitoring and updating information security management controls such as information security policies, standards, guidelines development and assessment, business impact analysis (BIA), disaster recovery (DR), business continuity (BCP), risk assessment (RA) planning and testing, and information security awareness training.

Plan, implement, track, monitor, measure, manage, and improve the University Network Access Control System (NAC)

Plan, implement, track, monitor, measure, manage, and improve the University network security architecture, including firewalls, network and application-based ACL, Virtual Private Network (VPN), Demilitarized Zone/s (DMZ) and content/application filtering.

Plan, implement, track, monitor, measure, manage, and improve the University Intrusion Detection and Prevention System/s (NIPDS)

Plan, implement, track, monitor, measure, manage, and improve the University vulnerability scanning and penetration testing efforts.

Plan, implement, track, monitor, measure, manage, and improve the University enterprise antivirus/anti-malware system/s.

Plan, implement, track, monitor, measure, manage, and improve the University security authentication and log system/s, including log correlation and aggregation, automated alerting and prioritization.

Plan, implement, track, monitor, measure, manage, and improve the University enterprise antivirus/anti-malware system/s.

Assist with developing, testing, monitoring and updating information security management controls such as information security policies, standards, guidelines development and assessment, business impact analysis, disaster recovery, business continuity, risk assessment planning and testing.

Plan, implement, track, monitor, measure, manage, and improve the University information security awareness-training program.

Knowledge, Skills and Abilities

- Working knowledge of the OSI model, TCP/IP, encryption standards, wired and wireless packet and network traffic analysis and troubleshooting using common packet capture and network tools.
- Working knowledge of network level protocols and applications, including analysis, reverse engineering and troubleshooting.
- Working knowledge of forensics and anti-forensics methodologies, including file and data recovery, MAC times, network forensics and mobile device forensics.
- Working knowledge of application-aware next-gen enterprise firewall management, network ACL, VPN, DMZ, and content/application filtering.
- Working knowledge of enterprise level IDS/IPS including cloud based application containment and analysis.
- Working knowledge of vulnerability and penetrations testing tools, including commercial and open source solutions, vulnerability testing, remediation and compensating control best practices.
- Working knowledge of enterprise-level Network Access Control (NAC) systems, including wired, wireless, in-band and out-of-band solutions, permanent and volatile agent configurations.
- Working knowledge of SIEM and log management, including commercial, open-source, ELK stack and syslog-ng.
- Ability to monitor and recognize information security breaches or intrusions.
- Working knowledge of enterprise-level antivirus and malware solutions, including cloud-based behavioral based solutions.
- Working knowledge of enterprise authentication systems, including RADIUS, TACACS+, and 802.1X.
- Working knowledge of enterprise wireless systems, including enterprise-level wireless authentication and encryption.
- Must possess strong technical writing skills.
- Experience with NIST 800-53, PCI, HIPAA and FERPA.
- Experience with, producing, reviewing, implementing and enforcing information security policies, standards, and guidelines.
- Experience working with BIA, DRP, COOP, RA and RA tools, CERT, and other enterprise-level plans.
- Experience implementing, automating and reviewing information security awareness training programs.
- Experience with Active Directory and Linux distributions, including Kali and its tools.
- Experience with cloud technologies
- Ability to communicate network security issues to peers and management.

Required Qualifications

Bachelor’s degree and 2 years of hands-on, enterprise-level or university-level work experience in information security
OR
4+ years of hands-on, enterprise-level or university-level work experience in information security.

Security+, or equivalent certification.

Preferred Qualifications

Experience in higher education.
Experience with coding, including PowerShell and Linux Shell.
Experience with security and service automation.

Salary

Posting Detail Information

Posting Number AS00101P
Is this position subject to a criminal background check? No
Is any part of the funding for this posting coming from a grant or outside funding source? No
Open Date 09/05/2017
Close Date 10/05/2017
Open Until Filled No
Special Instructions to Applicants

Supplemental Questions

Required fields are indicated with an asterisk (*).

Documents Needed To Apply

Required Documents
  1. Resume
  2. Cover Letter
Optional Documents