Lead Security Engineer Campus Bloomington Department VICE PRES INFORMATION TECHNLGY (UA-VPIT-IUBLA)
Operates under minimal supervision and serves as lead security engineer supporting the security consulting, information gathering, analysis, sharing, incident response, system design, and information product development activities of the IU-hosted, multi-institution, security operations center (OmniSOC). Assists the staff and management of member institutions in examining their environments for system and information security exposures. Provides very high level technical and practical expertise/consulting, particularly in detecting, analyzing, and responding to network-based threats. Gains, maintains, and applies a significant depth of knowledge in many widely varied technology areas, including computing, data and voice networking, and complex security systems and software.
REQUIRED: Bachelor’s degree in computer science and four years of advanced systems analysis / programming / systems administration experience that includes two years of experience in development, administration, and maintenance of security systems and software.
Combinations of related education and experience may be considered.
Knowledge of the IP protocol suite, specifically relating to TCP and UDP protocol behavior and interdependencies with the applications suite (DNS, SMTP, HTTP, etc.); and in-depth knowledge of operating systems and the utilities used in system administration, system and kernel customization, security analysis, system logging, and security incident diagnosis. Demonstrated ability to program in C, Perl, Python, or other widely-used, general purpose language and apply security tools in small- and large-scale vulnerability assessments (vulnerability scanners, password cracking tools, etc.). Excellent interpersonal skills. Ability to effectively communicate and exchange information, including demonstrated presentation skills and ability to interact with a wide variety of individuals. Strong organizational and time management skills including ability to clearly and effectively document the areas of primary responsibility.
Two years of computer incident response and investigation experience; experience in a university-based technology environment; demonstrated knowledge of Security Information and Event Management (SIEM) systems and the utilities used in system administration, system and kernel customization, security analysis tools, system logging, and security incident diagnosis; practical experience with one or more relational database packages.
Working Conditions / Physical Demands
Must be able to push and lift 50+ pounds.