Information Security Engineer
Perform vulnerability assessment, monitoring, incident response, and security training for the College. Recommend, deploy, configure, and operate various technical information security solutions, and analyze, report on, and respond to information collected by those systems. Provide technical research and recommendations for security-related solutions, policies, standards, procedures, and guidelines, including those related to network-connected devices, endpoint systems, servers, networks, storage, software, cloud services, identity and access management, and remote access. Lead efforts within Digital Instruction and Information Services (DIIS) to develop, adopt, and ensure compliance with security procedures, standards, and configuration baselines. The Information Security Engineer works closely with staff from DIIS, and with students, faculty, and staff in other departments and divisions, as well as vendors and service providers to implement appropriate and reasonable security protections for College information resources.
This position reports to the Information Security Officer. This position has no direct supervisory responsibilities, but may function as a Service and Solutions Team Lead or Project Manager.
Duties may include, but are not limited to the following. Other duties may be assigned.
1. Perform security risk assessments and recommend security requirements for new and existing information technologies, systems, applications, and services. Perform vulnerability assessments against networks, systems, and applications, and work with DIIS and other IC staff and faculty to eliminate vulnerabilities found or otherwise mitigate the associated risks.
2. Aid in the development and execution of the security incident response procedures.
3. Provide technical recommendations and support for the adoption, configuration, and deployment of network and host based information security solutions and capabilities such as malware defenses, firewalls, intrusion detection and prevention, security configuration management, user and device authentication, and incident detection and response.
4. Perform application administration for information security systems to include systems configuration, integration, monitoring, operations, and troubleshooting.
5. Recommend and develop security standards and configuration baselines for network-connected devices, endpoint systems, servers, applications, network equipment, and security systems. Work with technical staff responsible for the development, implementation, and administration of these systems to ensure appropriate use of secure methods and compliance with standards and baselines.
6. Lead the development and delivery of security awareness training for students, faculty, staff, and other users of College information resources.
7. Develop and maintain deep technical knowledge of security issues and protections related to network-connected devices, endpoint systems, servers, network equipment, and cloud solutions.
8. Develop and maintain deep technical knowledge of identity and access management technologies, including directory services, two-factor authentication, and federation services.
9. Apply knowledge of information security along with a deep understanding of the academic and business needs of the College to provide security-related recommendations and support to students, faculty, and staff.
10. Develop, analyze, and present scheduled and ad hoc reports, and make recommendations based on the data from various sources.
11. Develop and maintain security systems documentation.
12. Apply broad technical background and the visibility provided by security technologies to support various troubleshooting efforts by others in DIIS.