Information Security Engineer – Computing and Technology Services (CTS) | Duquesne University - Military Veterans

POSITION SUMMARY:

The Information Security Engineer is responsible for the operational support of Duquesne University’s Cyber Security program which includes detection, prevention, incident response and training & awareness as organized and operated by Computing and Technology Services (CTS), the Duquesne University’s central IT organization.  This position will help design, develop, implement, and support information security systems and programs. The position will also monitor, analyze, and prioritize threats and respond to risks facing the University’s systems and data. In addition, this position will assist with identifying and reporting all security issues, monitoring threat intelligence feeds, and confirming that threat mitigation is in accordance with company standards. This position collaborates with all business units to help respond to security alerts, phishing emails, as well as provide feedback on new information security technologies uses.

DUTIES AND RESPONSIBILITIES:

Build, deploy, support, monitor and configure various tools used to scan and monitor various aspects of computer, account, or network security and respond to computer security, abuse, and e-discovery incidents. This will entail monitoring intrusion detection, vulnerability scanning and log correlation systems; doing research; scanning machines; reviewing usage logs; etc. to confirm reports and perform forensic analysis according to established procedures. User contact will also be needed in order to inform people of breaches as necessary, and to obtain detailed information.

Provide threat assessment and remediation which includes evaluating how threats impact the University, communicating that information and implementing or recommending techniques to mitigate the threat. Provide detailed information to the Service Desk so that the campus community can be informed of new threats or other security issues as needed. Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.

Executing incident response procedures and processes to identify computer security incidents, contain intrusions and recommend options for eradication & recovery all the while effectively communicating with both internal and external customers and escalating as necessary which may require off-hours work as it requires 24/7 coverage by the department.

Deliver training and awareness services by providing training documentation and announcements for security & abuse issues and current threats. Collaborate with end user support groups to provide training and awareness to campus on information security activities, trends and threats.

Participates in external community outreach and professional activities related to their field, according to their own interest, and affected by relevance to key challenges for CTS and/or Duquesne University.  For example, works with external organizations, e.g., EDUCAUSE, on projects or efforts that enhance the reputation of the university as well as maintains proficiency and/or contributes to his/her professional development.

Participate in ongoing professional development (attending/presenting at conferences, meetings, etc.)

Perform other duties and projects as needed. Minimum qualifications:

Bachelor’s degree from an accredited institution.

3 – 5 years information security program experience to include incident management vulnerability management, data-loss prevention, endpoint protection, security information event management (SIEM), intrusion detection systems, intrusion prevention systems, malware analysis, and network situational awareness.

Experience with a variety of operating systems including Windows, Macintosh and/or Linux

Programming and scripting experience (PowerShell, Python, PHP, Perl, etc.)

Digital Forensics and E-Discovery

Preferred qualifications:

Bachelor’s degree in Computer Science, Information Security, Information Science, Business. Information Security Certifications (CISSP, GIAC Security Essentials Certification (GSEC), CompTIA Security+, MCSA: Security, and/or OSCP) preferred.

Experience in a higher education environment is preferred.

Alternately, the successful candidate may possess any equivalent combination of experience and training, which provides the knowledge, skills and abilities required to perform the essential job functions. This includes, but is not limited to, the following:

Extensive experience with security tools such as: Firewalls, Intrusion Detection System (IPS), Security Information Event Systems (SIEM), Endpoint Protection Tools, Vulnerability Management Tools.

Experience with Splunk and scripting tools. 

Strong understanding of IP, TCP/IP, and other network administration protocols.

Strong understanding of Windows, Macintosh and/or Linux operating systems. 

Familiarity with Information Technology service management (ITSM) tools.

Experience with email security and other cloud-based security features.

Experience with Cybersecurity Training Awareness platforms.

Experience with Third Party Risk Management Reviews and Information Technology audits.

Experience with Incident Response troubleshooting and activities.

Commitment to the University’s values of diversity, equity and inclusion, and recognition of the importance of treating each individual with dignity and respect consistent with the University’s Mission.  Demonstrated experience with, and understanding of, the broad diversity of the University community (students, faculty, staff and others).

Ability to establish and maintain effective working relationships with the University Community.

Ability and willingness to contribute actively to the mission of the University and to respect the Spiritan Catholic identity of Duquesne University.  The mission is implemented through a commitment to academic excellence, a spirit of service, moral and spiritual values, sensitivity to world concerns, and an ecumenical campus community.