Associate Security Engineer
Associate Security Engineer
Madison Area Technical College
Posting Date: 10/13/2017
Application Deadline: 10/20/2017
Open Until Filled:
Salary: $59,834-74,793 C42
Location: Madison-Truax
Department: Technology Services
Employment Conditions:
PSRP Salary Range C42 with a starting salary between $59,834 to $74,793 annually depending on qualifications and experience.
Madison College offers a generous benefits package, including health and dental benefits. The individual selected will serve a twelve (12) month introductory period. This posting may be used to fill similar vacancies that occur within six months of the closing date.
Hours: This is a full-time position, 40 hours per week, 52 weeks per year, Monday – Friday, with core hours between-8:00 am to 4:30 pm. Flexible as needed with evening and weekend hours required. Schedule is subject to change by the supervisor.
Organizational Function and Responsibilities:
Madison College strives to be innovative in its application of information technology to deliver best in class service to students while responsibly managing cost. This position assists the Chief Information Security Officer (CISO ) and other College personnel in designing, implementing and operating security controls to protect the privacy of institutional data and reduce institutional risk.
This position is an operational position that impacts Madison College's security infrastructure. This position focuses primarily on the design, implementation and operation of information security controls. This position has cross-organization scope both within the College and in Technology Services.
The Security Engineer must possess high-quality design, implementation and documentation skills and an above average attention to detail and accuracy to ensure security controls are properly implemented.
This position works with all functional areas of IT, including the Directors of Technology Services, and reports to the CISO .
Essential Duties:
The following are duties typically expected of this position. These are not to be construed as exclusive or all-inclusive. Other duties may be required and assigned.
1. Administers, monitors and maintains network-based security controls
• Implements and maintains network security architectures to meet the College’s security requirements and safeguards. Assist in the design of these controls.
• Provides technical management of security services and functions provided by the Palo Alto, including firewall management, URL filtering, network intrusion detection/prevention, sandboxing and other Palo Alto features.
• Assists in the design and implementation of ACI , Cisco’s software defined networking solution.
• Investigates and evaluates network security management applications, hardware, and software solutions.
• Remains current on technical security and networking issues.
• Monitors threat intelligence feeds for implementation.
• Uses network security tools such as Wireshark, nMap and TCPdump proficiently.
2. Administers, monitors and maintains Vulnerability Management Program
• Provides the technical management of security services and functions available in the Nessus and Qualys vulnerability scanners.
• Performs regular external and internal scanning of Madison College network and monitor timely remediation of critical vulnerabilities.
• Monitors industry and vendor lists for security vulnerabilities and recommends mitigations and improvements as necessary.
• Provides best practices for secure configuration of network devices, servers, desktop and other devices.
3. Develops and administers Security Event Management operations
• Provides the technical management of the features and functions of the security event management system (Splunk).
• Maintains current logging infrastructure to ensure events of interest are forwarded to the security event manager.
• Continuous improvement of monitoring and management of security alerts.
• Develops and implements reporting for situational awareness.
• Develops and implements alerting on security anomalies, including coordination of timely responses to identified events.
• Provides best practices for use of Splunk including assisting staff in using Splunk.
4. Responds to security incidents
• Serves as 2nd level support for troubleshooting network anomalies, intrusions, misuse, and malicious activity occurring on or in College systems.
• Performs incident response and investigation of security events and provide information to assist with resolution of the incident.
• Performs basic forensics and malware analysis.
• Uses SIFT workstation, Kali Linux, Metasploit, Wireshark, Nmap, SNORT , the Sysinternals suite, and Nirsoft tools or other security tools to assist in incident response proficiently.
5. General security operational support
• Provides daily support for security operations.
• Develops automated methods for support of security services.
• Implements controls and procedures to cost-effectively protect IT assets.
• Identifies and reports challenging or high impact/risk issues for resolution by CISO or Security Architect.
• Serves as an advisor and liaison regarding IT security controls for Technology Services projects and operations.
• Provides guidance and consulting to operational teams and projects to ensure security safeguards are in place and operating effectively.
• Shares knowledge and trains internal staff on security trends and best practices.
• Functions as a security technical expert on systems and networking services projects.
• Assists in writing project plans.
• Preserves the security architecture and service model for the District.
Knowledge, Skills, and Abilities:
Knowledge of:
• Network protocols such as TCP /IP, sub netting, NAT and routing protocols.
• ACI Cisco’s software defined networking protocol.
• Scripting languages, preferably Python and Powershell.
• Firewall operations and management.
• Risk assessment, management and contingency/mitigation planning in higher education.
• Vulnerability program development, implementation and monitoring principles and practices.
• Security event management development, implementation and monitoring principles and practices.
• Incident Response practices, procedures, tools and techniques.
• Security architecture frameworks, models, process and protocols.
• Security controls design and troubleshooting.
• Security concepts, best practices and procedures, tools and techniques.
• Troubleshooting and solving complex security issues.
• Knowledge of the latest developments in technology, including knowledge of current security protocols, tools, threats and mitigations.
• Extensive level of understanding of the Microsoft security platform.
• Moderate level of Linux-based knowledge.
Skill in:
• Communicating (orally and in writing) information, data, and opinions to inform, influence, and/or persuade a wide variety of individuals and audiences.
• A clear and succinct writing style for the purpose of developing and completing correspondence and project documents.
• Strong communication, presentation, persuasion and documentation skills.
• Communications and human relations with diverse populations in working with adults of diverse socio-economic and racial backgrounds.
• Designing, implementing and operating security controls.
• Presenting Technology Services security issues or concerns to leadership.
• Implementing and monitoring security programs across technology services.
• Planning, coordinating, and implementing security program components and activities.
• Analyzing processes and making recommendations for improvement.
• Researching, analyzing, and applying relevant information to the development of security processes and programs.
• Self-starter with strong sense of personal responsibility.
• Demonstrates a commitment to the College, its values of excellence, respect and integrity.
• Demonstrates professional maturity by working as part of a team to meet business objectives in an innovative way that encourages creativity and participation of all team members.
Ability to:
• Work collaboratively as a team member.
• Assess risk to effectively safeguard confidential and sensitive information about Madison College people, systems and architecture.
• Assess risk and develop and implement mitigation plans.
• Define, implement, document and test security controls in complex applications and infrastructure environment.
• Maintain the sensitivity and confidentiality of data and systems architecture environment.
• Implement innovative solutions utilizing emerging technologies
• Translate business needs into technical solutions that improve service quality and efficiency while meeting business objectives.
• Work alone and as part of a team, sharing responsibilities to achieve a common outcome.
• Work effectively with members of diverse technical and functional teams.
• Work with Madison College Technology Services staff and management and other College staff as needed.
• Independently make technical decisions regarding implementation strategy.
• To work on and push multiple projects at once
• Solve complex problems, defining root causes, improving systems and making establishing preventive measures for the future.
• Translate complex technical concepts into plain English for management and staff outside of information technology to understand.
• Easily shift priorities based on operational needs.
Qualifications:
1. Bachelor’s degree from an accredited college or university in business administration or information security or a closely related field; or equivalent combination of education and work experience directly related to the skills required for successfully performing this position.
Experience used as an equivalent of an educational requirement is in addition to any experience required by the position.
2. Two years of progressively responsible security tool administration experience. Experience can be in any combination of the following areas:
• One year next generation security appliance configuration and management experience. Experience and knowledge in firewall appliance configuration – Palo Alto experience preferred.
• One year security vulnerability management and assessment experience. Experience and knowledge in vulnerability scanning tools as well as understanding methods to assess, remediate, and report — Qualys or Nessus preferred.
• One year security controls and administration experience. Experience and knowledge in (but not limited to): network security; intrusion prevention; malware removal; and incident response and forensics.
• One year experience in scripting language (PowerShell preferred) to automate repetitive and complex tasks.
Madison Area Technical College does not discriminate on the basis of race, color, national origin, sex, disability or age in its programs or activities. The following person has been designated to handle inquiries regarding the non-discrimination policies:
FLSA: Exempt
Madison Area Technical College does not discriminate on the basis of race, color, national origin, sex, disability or age in employment, admissions or its programs or activities.
Copyright ©2017 Jobelephant.com Inc. All rights reserved.
Madison Area Technical College
Posting Date: 10/13/2017
Application Deadline: 10/20/2017
Open Until Filled:
Salary: $59,834-74,793 C42
Location: Madison-Truax
Department: Technology Services
Employment Conditions:
PSRP Salary Range C42 with a starting salary between $59,834 to $74,793 annually depending on qualifications and experience.
Madison College offers a generous benefits package, including health and dental benefits. The individual selected will serve a twelve (12) month introductory period. This posting may be used to fill similar vacancies that occur within six months of the closing date.
Hours: This is a full-time position, 40 hours per week, 52 weeks per year, Monday – Friday, with core hours between-8:00 am to 4:30 pm. Flexible as needed with evening and weekend hours required. Schedule is subject to change by the supervisor.
Organizational Function and Responsibilities:
Madison College strives to be innovative in its application of information technology to deliver best in class service to students while responsibly managing cost. This position assists the Chief Information Security Officer (CISO ) and other College personnel in designing, implementing and operating security controls to protect the privacy of institutional data and reduce institutional risk.
This position is an operational position that impacts Madison College's security infrastructure. This position focuses primarily on the design, implementation and operation of information security controls. This position has cross-organization scope both within the College and in Technology Services.
The Security Engineer must possess high-quality design, implementation and documentation skills and an above average attention to detail and accuracy to ensure security controls are properly implemented.
This position works with all functional areas of IT, including the Directors of Technology Services, and reports to the CISO .
Essential Duties:
The following are duties typically expected of this position. These are not to be construed as exclusive or all-inclusive. Other duties may be required and assigned.
1. Administers, monitors and maintains network-based security controls
• Implements and maintains network security architectures to meet the College’s security requirements and safeguards. Assist in the design of these controls.
• Provides technical management of security services and functions provided by the Palo Alto, including firewall management, URL filtering, network intrusion detection/prevention, sandboxing and other Palo Alto features.
• Assists in the design and implementation of ACI , Cisco’s software defined networking solution.
• Investigates and evaluates network security management applications, hardware, and software solutions.
• Remains current on technical security and networking issues.
• Monitors threat intelligence feeds for implementation.
• Uses network security tools such as Wireshark, nMap and TCPdump proficiently.
2. Administers, monitors and maintains Vulnerability Management Program
• Provides the technical management of security services and functions available in the Nessus and Qualys vulnerability scanners.
• Performs regular external and internal scanning of Madison College network and monitor timely remediation of critical vulnerabilities.
• Monitors industry and vendor lists for security vulnerabilities and recommends mitigations and improvements as necessary.
• Provides best practices for secure configuration of network devices, servers, desktop and other devices.
3. Develops and administers Security Event Management operations
• Provides the technical management of the features and functions of the security event management system (Splunk).
• Maintains current logging infrastructure to ensure events of interest are forwarded to the security event manager.
• Continuous improvement of monitoring and management of security alerts.
• Develops and implements reporting for situational awareness.
• Develops and implements alerting on security anomalies, including coordination of timely responses to identified events.
• Provides best practices for use of Splunk including assisting staff in using Splunk.
4. Responds to security incidents
• Serves as 2nd level support for troubleshooting network anomalies, intrusions, misuse, and malicious activity occurring on or in College systems.
• Performs incident response and investigation of security events and provide information to assist with resolution of the incident.
• Performs basic forensics and malware analysis.
• Uses SIFT workstation, Kali Linux, Metasploit, Wireshark, Nmap, SNORT , the Sysinternals suite, and Nirsoft tools or other security tools to assist in incident response proficiently.
5. General security operational support
• Provides daily support for security operations.
• Develops automated methods for support of security services.
• Implements controls and procedures to cost-effectively protect IT assets.
• Identifies and reports challenging or high impact/risk issues for resolution by CISO or Security Architect.
• Serves as an advisor and liaison regarding IT security controls for Technology Services projects and operations.
• Provides guidance and consulting to operational teams and projects to ensure security safeguards are in place and operating effectively.
• Shares knowledge and trains internal staff on security trends and best practices.
• Functions as a security technical expert on systems and networking services projects.
• Assists in writing project plans.
• Preserves the security architecture and service model for the District.
Knowledge, Skills, and Abilities:
Knowledge of:
• Network protocols such as TCP /IP, sub netting, NAT and routing protocols.
• ACI Cisco’s software defined networking protocol.
• Scripting languages, preferably Python and Powershell.
• Firewall operations and management.
• Risk assessment, management and contingency/mitigation planning in higher education.
• Vulnerability program development, implementation and monitoring principles and practices.
• Security event management development, implementation and monitoring principles and practices.
• Incident Response practices, procedures, tools and techniques.
• Security architecture frameworks, models, process and protocols.
• Security controls design and troubleshooting.
• Security concepts, best practices and procedures, tools and techniques.
• Troubleshooting and solving complex security issues.
• Knowledge of the latest developments in technology, including knowledge of current security protocols, tools, threats and mitigations.
• Extensive level of understanding of the Microsoft security platform.
• Moderate level of Linux-based knowledge.
Skill in:
• Communicating (orally and in writing) information, data, and opinions to inform, influence, and/or persuade a wide variety of individuals and audiences.
• A clear and succinct writing style for the purpose of developing and completing correspondence and project documents.
• Strong communication, presentation, persuasion and documentation skills.
• Communications and human relations with diverse populations in working with adults of diverse socio-economic and racial backgrounds.
• Designing, implementing and operating security controls.
• Presenting Technology Services security issues or concerns to leadership.
• Implementing and monitoring security programs across technology services.
• Planning, coordinating, and implementing security program components and activities.
• Analyzing processes and making recommendations for improvement.
• Researching, analyzing, and applying relevant information to the development of security processes and programs.
• Self-starter with strong sense of personal responsibility.
• Demonstrates a commitment to the College, its values of excellence, respect and integrity.
• Demonstrates professional maturity by working as part of a team to meet business objectives in an innovative way that encourages creativity and participation of all team members.
Ability to:
• Work collaboratively as a team member.
• Assess risk to effectively safeguard confidential and sensitive information about Madison College people, systems and architecture.
• Assess risk and develop and implement mitigation plans.
• Define, implement, document and test security controls in complex applications and infrastructure environment.
• Maintain the sensitivity and confidentiality of data and systems architecture environment.
• Implement innovative solutions utilizing emerging technologies
• Translate business needs into technical solutions that improve service quality and efficiency while meeting business objectives.
• Work alone and as part of a team, sharing responsibilities to achieve a common outcome.
• Work effectively with members of diverse technical and functional teams.
• Work with Madison College Technology Services staff and management and other College staff as needed.
• Independently make technical decisions regarding implementation strategy.
• To work on and push multiple projects at once
• Solve complex problems, defining root causes, improving systems and making establishing preventive measures for the future.
• Translate complex technical concepts into plain English for management and staff outside of information technology to understand.
• Easily shift priorities based on operational needs.
Qualifications:
1. Bachelor’s degree from an accredited college or university in business administration or information security or a closely related field; or equivalent combination of education and work experience directly related to the skills required for successfully performing this position.
Experience used as an equivalent of an educational requirement is in addition to any experience required by the position.
2. Two years of progressively responsible security tool administration experience. Experience can be in any combination of the following areas:
• One year next generation security appliance configuration and management experience. Experience and knowledge in firewall appliance configuration – Palo Alto experience preferred.
• One year security vulnerability management and assessment experience. Experience and knowledge in vulnerability scanning tools as well as understanding methods to assess, remediate, and report — Qualys or Nessus preferred.
• One year security controls and administration experience. Experience and knowledge in (but not limited to): network security; intrusion prevention; malware removal; and incident response and forensics.
• One year experience in scripting language (PowerShell preferred) to automate repetitive and complex tasks.
Madison Area Technical College does not discriminate on the basis of race, color, national origin, sex, disability or age in its programs or activities. The following person has been designated to handle inquiries regarding the non-discrimination policies:
FLSA: Exempt
Madison Area Technical College does not discriminate on the basis of race, color, national origin, sex, disability or age in employment, admissions or its programs or activities.
Copyright ©2017 Jobelephant.com Inc. All rights reserved.