Position information
position title: information security engineer i
department: information technology
job purpose: the information security engineer i participates in the development and implementation of tools and processes to ensure that all university systems and networks are secure, compliant, and protected against unauthorized access and other security risks. Participates in the development and administration of security policies and best practices; participates in incident management and response; works to mitigate/prevent attacks and recommends effective security countermeasures. Assists in response to security-related audit findings.
this position is not a hybrid/remote position. It is located on-campus in scranton, pa.
responsibilities:
1. participates in the research, evaluation, design, and implementation of information security solutions and procedures that protect university information assets.
2. research security advisories, intrusion techniques, analysis tools, and practices.
3. implement and maintain security hardware and appliance systems and their corresponding or associated software.
4. perform routine security audits to ensure compliance with established policies and procedures.
5. respond to security-related service requests.
6. maintain accurate documentation associated with office procedures and projects. Maintain confidentiality of data and information in all matters. Ensure high standards of data integrity.
7. promote information security awareness and good security practices throughout the university.
8. enforce policy, guidance, and training requirements.
9. ensure log files and audits are maintained and reviewed for all systems to identify potential security breaches, interpret activity and recommend resolutions.
10. investigate, contain, eradicate, and/or escalate security detections as appropriate.
11. document and generate reports of detections and response actions for review by management and other stakeholders.
additional skills required:
1. excellent troubleshooting and creative problem-solving skills.
2. proficient in computer forensics software, hardware, and methodologies.
3. working knowledge of tcp/ip networking and routing, linux and windows server operations.
4. ability to quickly spot problematic trends and take proactive steps to mitigate impact to business.
5. understanding of various regulatory requirements including pci dss, hipaa, ferpa, fisma, glba and control frameworks including iso/iec 27002 and cobit.
6. actively participate in security communities.
7. ability to analyze, diagnose, and recommend solutions to problems with information security systems.
8. ability to parse logs, create queries, and perform root cause analysis of events.
9. understanding of logical security, user access and identity management.
10. must be able to manage multiple projects while meeting deadlines.
11. exerting up to 10 pounds of force occasionally and/or negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body; sedentary work involves sitting most of the time.
12. must be able to support the university’s commitment to fostering a diverse, equitable, and inclusive culture.
13. must be able to respect, support and contribute to the university’s catholic and jesuit mission.
minimum qualifications:
bachelor’s degree in information systems, computer science, or related field. Certified information systems security professional (cissp), systems security certified practitioner (sscp), or certified information systems auditor (cisa) preferred.
minimum job experience requirements:
minimum of 3 years’ experience with information security technologies, such as auditing tools, antivirus software, malware removal programs, firewalls, intrusion detection and prevention systems; networking equipment and networking protocols; ms windows; and linux operating systems.
schedule/work hours: monday through friday, 8:30 a.m. to 4:30 p.m. Additional hours as required.
full time/part time: full-time
posting number: s0881p
open date: 10/25/2024
close date: 11/11/2024
#j-18808-ljbffr