Information Security Engineer II
Job no: 492979
Work type: Staff Full-Time
Location: Denver, CO
Categories: Information Technology
Information Technology (IT) is the unified IT organization that supports the vision, values, mission, and goals of the University by providing IT infrastructure, systems, administrative applications, academic resources and related services to faculty, students and staff. Embracing DU’s Impact 2025, the division aligns IT resources with University and unit strategic goals and operational plans, providing service in the spirit of “One DU”.
The Information Security Engineer is responsible for the management and administration of all IT Information Security related applications, systems, and services. Some of the responsibilities include performing and/or coordinating penetration tests, system/application vulnerability assessments, network security architecture reviews, risk assessments, and security service administration (Intrusion Detection/Intrusion Prevention Systems, SPAM Filtering, Web Filtering, etc.).
This individual is also a key participant in the investigation, evaluation and remediation of security incidents. Other areas of focus are supporting various department activities which may include: the development and maintenance of information security policies, procedures, and standards; training, and awareness activities; monitoring and administration of information security solutions. This position requires that the individual work in a team based environment which includes the work station space.
- Manage, administer, and configure Information Security related systems and applications
- Perform Technology Risk Assessments for vendors, products, services or processes
- Participate in or lead Information Security projects or department initiatives as required
- Work with Information Security, Engineering and Operations teams to define and document technical security standards
- Architect and design security control systems to address requirements
- Participate in Security event analysis, incident response, and threat hunting.
- Identify control deficiencies and make appropriate recommendations.
- Ensure 3rd party software and services are securely configured and implemented in an “effective’ manner.
- Engage appropriate University resources to assess the security risk associated with proposed projects and system/application modifications
- May be asked to serve as technical lead for security related projects
Knowledge, Skills, and Abilities
- Intermediate working knowledge of security technologies including:
- Vulnerability assessment tools and pen testing tools.
- Network monitoring tools
- Firewalls and NextGen Firewalls
- Remote access VPN
- AAA systems for Radius and web access
- Endpoint protection software
- Email protection systems
- Intrusion Detection Systems/Intrusion Prevention Systems
- Web Application Firewall
- Security information and event management systems
- Secure Wireless Architecture
- Three-tiered application secure architecture
- General secure architectural design concepts
- Intermediate analytical and problem-solving skills
- Good balance of technical competence and people skills
- Project management skills a plus
- Solid working knowledge of the network OSI model (Layer 2 and 3 in particular)
- Ability to work with the application and database teams to include security principles in their development process.
- Ability to present complex information in a clear, concise manner
- Knowledge of domestic and international information security standards (e.g., ISO 27001/27002, SSAE16/ ISAE 3409, PCI DSS, HIPAA, FERPA, etc.
- Bachelor’s degree in Computer Science, Information Systems, Engineering or a closely related discipline
- Two - five years of related information security work experience or a combination of equivalent training and/or work experience.
- One or more Information Security Certifications: CISSP, CISM, GIAC, CCSP, CEH, CCNA-Cyber, Sec+.
- Working Knowledge of Palo Alto firewalls, Citrix Netscalers, ProofPoint Email and Threat Protection, HP/Aruba Clearpass Secure Network Access Control
- Direct experience implementing and managing information security technology solutions.
- Direct experience working in a NOCSOC environment.
- Standard office environment (position is inside our NOCSOC).
- Unexpected interruptions occur often and stress level is moderate to high
- Noise level is quiet to moderate
- Ability to sit in front of a computer for an extended period of time
- Occasionally required to move about the office/campus with the capability of transporting objects up to 20 lbs.
Monday - Friday, 8:00 a.m. - 4:30 p.m. Occasional early morning, evenings and weekends as required.
For best consideration, please submit your application materials by 4:00 p.m. (MST) on March 13, 2020.
Candidates must apply online through jobs.du.edu to be considered. Only applications submitted online will be accepted.
Salary will be determined by the qualifications of the selected candidate balanced with departmental budget availability, internal salary equity considerations, and available market information.
Please include the following documents with your application:
2. Cover Letter
The University of Denver is committed to enhancing the diversity of its faculty and staff. We are an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment regardless of age, race, color, national origin, religion, sex, sexual orientation, gender identity, disability, military/ veteran status or any other status protected by law.
All offers of employment are based upon satisfactory completion of a criminal history background check.