JOB SUMMARY
CEN, through The University of Connecticut (UConn) Information Technology Services (ITS), has an amazing opportunity for Information Security (IS) professionals to join a fast-paced team providing information and cyber security services to our members in CT. Incumbents will manage and enhance CEN’s security infrastructure, and customer service offerings, provide “DevSecOps” type support leveraging automation and self-service capabilities, develop API integrations for security tools, and generally advance the security of, and visibility into the network.
This posting is intended to provide support for CEN’s internal needs and external customer-facing managed security services. Those needs may include, though are not limited to: SIM/SIEM/SOAR management, Identity Access Management (IAM), MFA/2FA, Vulnerability Management, Endpoint Protection, Application Security, Firewalls, VPN, and IDS/IPS, load balancing, DDoS mitigation, web content filtering, penetration testing, security architecture, and other related Information Security disciplines.
The successful candidate will bring various levels of experience, support, and knowledge of specific network and information security (IS) methodologies, practices, processes, and software packages and a conceptual understanding of other IS security procedures and/or policies.
Note: Please indicate the role you’re applying for in the cover letter. All minimum qualifications must be met at the applicable level to be eligible for consideration at that level. Applicable role will be verified by the hiring committee with respect to qualifications and demonstrated experience.
ORGANIZATIONAL OVERVIEW
The Connecticut Education Network (CEN) is Connecticut’s trusted internet partner, committed to our member community and its success. By honoring this commitment, we have grown the member customer network and maintained our reputation as one of the most valued and secure Internet Service Providers serving CT for over 20 years. Join CEN to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do, where you do it, and contributing to a mission and vision that provides unprecedented value to CT.
SALARY
• Information Security Engineer 1, (Information Security Analyst 1, P4): $64,405 - $83,727
• Information Security Engineer 2, (Information Security Analyst 2, P6): $80,790 - $105,027
• Information Security Engineer 3, (Information Security Analyst 3, P7): $90,485 - $117,630
BENEFITS INCLUDE
• Defined contribution with employer match or defined benefit program retirement options
• Excellent and affordable healthcare options
• 35-hour work week
• 22 paid vacation days per year, in addition to paid sick leave and 13 paid holidays
• Annual merit increase program
• Employee and dependent tuition waivers
• A highly desirable work environment and work-life balance
DUTIES AND RESPONSIBILITIES
Security Engineer 1
- Administer and use security tools to identify, investigate, and mitigate threats to the environment.
- Proactively analyze network traffic, system logs, to identify threats, intrusions, and/or compromises.
- Aids in analysis of security incidents to help determine root cause and prevent future occurrences.
- Triage and respond to service requests from customers and/or internal teams.
- Maintain awareness of the potential and developing threats across the industry and in general.
- Participate in Incident response activities as required for cyber security incidents.
- Maintain appropriate documentation and diagrams of infrastructure and security systems.
- Reports on security metrics to proactively monitor threats and provide trend data for reporting.
- Promote security awareness to improve and ensure system security and best practices.
- Interact with customers, forge relationships, and contribute to the development of the community.
- Expected travel may be 20% for on-site support, community/customer interactions, and/or vendors.
- May directly collaborate with UConn ISO staff as needed.
- May participate in on-call rotation, after-hour changes, and after-hour escalations as needed.
- Performs related work as required.
Security Engineer 2 (additional responsibilities inclusive of Engineer 1)
- Develop and support CEN’s security infrastructure including but not limited to firewalls, DDoS mitigation system, filtering, load balancers, logging, SIEM, and identity access management.
- Host workshops, training, and/or events and mentor technical staff on security best practices and recommend training programs to encourage cross-team competency.
- Research, recommend, implement, and support security tools and countermeasures to reflect the evolving security terrain and trends; perform manual penetration testing and reports as needed.
- Draft scripts or deploy programs to assist with automation, provisioning, and/or telemetry, and to ensure integrity of resources to dependent systems.
- Produce and maintain detailed engineering plans, operating procedures, diagrams, models, and standards as they relate to network security design, deployment, and operations.
Security Engineer 3 (additional responsibilities inclusive of Engineer 2)
- May serve as the senior technical resource and final escalation point for all things infosec-related.
- Assist in negotiations with vendors and/or subcontractors.
- Operate autonomously with general direction and limited supervision.
- Lead major projects / initiatives related to information and network security.
- Integrate data for use between various applications.
- Identify gaps and implement solutions to align with best practices.
- Creates custom code to facilitate data gathering / sharing across applications.
RELATED SKILLS AND COMPETENCIES
- Problem Solving: Demonstrates sound analytic and diagnostic skills dealing with issues that are loosely defined and/or where information is available but must be further manipulated. Once decisions are made, you can follow and direct action to implement the intended results. Breaks a problem down to manageable pieces and implements effective, timely solutions. Openly and directly confront issues until resolved.
- Team Orientation: Builds relationships with peers and other departments to achieve objectives. Balances team and individual responsibilities. Exhibits objectivity and openness to others’ views. Gives and welcomes feedback. Puts success of team above self. Responsibilities are assigned with some latitude for setting priorities and decision-making using established policies and procedures. Results are reviewed with next-level team lead/manager for clarification and direction before proceeding.
- Planning and Project Management: Works with, or serves as, the project lead in identifying those project tasks that are most important, establishes clear priorities, and understands the larger picture. Executes project tasks and creates documentation as required.
- Physical Demands: This position involves extended periods of sitting and the extensive use of computers and office equipment. May involve stooping, kneeling, crouching and/or working on step ladders. Involves close vision, color vision, depth perception, and focus adjustment. Must be able to lift 35 lbs. to shoulder height.
MINIMUM QUALIFICATIONS
Security Engineer 1
- Must be a US Citizen
- Bachelor’s Degree (BD) OR Associate’s Degree (AD) and 2 years related experience OR 4 years related experience (IT/Security).
- Knowledge of network architecture concepts including topology, protocols, components, and principles.
- Strong technical, analytical, interpersonal, and organizational skills.
Security Engineer 2 (inclusive of Security Engineer 1)
- BD + 2 years' experience OR AD + 4 years of experience OR 6 years related experience (IT/Security).
- Excellent understanding of OSI layers 1-4.
- Experience with Network flow data (i.e., NetFlow, sFlow, IPFIX) or related forms of flow records and session summary data.
- Understanding of diagnostic and troubleshooting tools, such as the ability to perform detailed analysis on packet capture data; SIM/SIEM log analysis and diagnosis.
- Experience managing enterprise security devices/platforms from vendors such as Fortinet, Palo Alto, Arbor/NetScout, f5, iBoss, Splunk, Cisco and/or Juniper.
- Programming/development skills (preferably in Python, PERL, and/or Powershell).
Security Engineer 3 (inclusive of Security Engineer 2)
- BD + 4 years' experience OR AD + 6 years' experience OR 8 years related experience (IT/Security).
- Familiar with IT Security frameworks and relevant regulatory obligations and audit requirements (GDPR, SOX, NIST, ISO, PCI, FERPA, HIPPA, and/or AICPA/SOC2).
- Strong written and oral communication skills, and the ability to communicate technical information to a non-technical audience.
- Excellent time management, prioritization, and planning skills.
PREFERRED QUALIFICATIONS
Security Engineer 1
- Bachelor’s degree or higher in a Science, Technology, Engineering, or Math (STEM) field.
- Ability to present complex technical concepts in clear verbal or written business terms.
Security Engineer 2 (in addition to Security Engineer 1)
- Master’s degree or 5 years of direct experience in a large enterprise or service provider environment.
- One or more technical certifications such as Cisco CyberOps, CCNP Security, Fortinet NSE, Palo PCNSA, or better.
- Demonstrated understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, and Incident Management.
- Experience leveraging IP routing protocols such as BGP, OSPF, and/or ISIS.
- Working knowledge of network security concepts and technologies, including but not limited to firewalls, IDS / IPS, proxy servers, access control systems, and web application firewalls.
- Demonstrated understanding of a wide array of enterprise applications/services including DNS (Domain Name System), SMTP, IIS, Apache, LDAP, SQL, RADIUS, TACACS, etc.
Security Engineer 3 (in addition to Security Engineer 2)
- Experience supervising and managing employee performance.
- CISSP, CISM, or related information security certifications.
- Understanding of NIST standards including NIST 800-171/172 and NIST 800-53.
- Experiencing in contract negotiations, pricing, terms, and conditions.
APPOINTMENT TERMS
This is a full-time, end-dated position with the possibility of renewal subject to performance and funding. The University offers a competitive salary, and outstanding benefits, including employee and dependent tuition waivers at UConn, and a highly desirable work environment. For additional information regarding benefits visit: https://hr.uconn.edu/health-benefits/.
Other rights, terms, and conditions of employment are contained in the collective bargaining agreement between the University of Connecticut and the University of Connecticut Professional Employees Association (UCPEA).
TERMS AND CONDITIONS OF EMPLOYMENT
Employment of the successful candidate is contingent upon the successful completion of a pre-employment criminal background check.
TO APPLY
Please apply online at https://hr.uconn.edu/jobs, Staff Positions, Search #498803 to upload a resume, cover letter, and contact information for three (3) professional references.
This job posting is scheduled to be removed at 11:55 p.m. Eastern time on December 24, 2024.
All employees are subject to adherence to the State Code of Ethics which may be found at http://www.ct.gov/ethics/site/default.asp.
All members of the University of Connecticut are expected to exhibit appreciation of, and contribute to, an inclusive, respectful, and diverse environment for the University community.
The University of Connecticut aspires to create a community built on collaboration and belonging and has actively sought to create an inclusive culture within the workforce. The success of the University is dependent on the willingness of our diverse employee and student populations to share their rich perspectives and backgrounds in a respectful manner. This makes it essential for each member of our community to feel secure and welcomed and to thoroughly understand and believe that their ideas are respected by all. We strongly respect each individual employee’s unique experiences and perspectives and encourage all members of the community to do the same. All applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
The University of Connecticut is an AA/EEO Employer.