Systems Programmer III (Security Analyst) - IT-Network & Systems Services

Deadline: February 12, 2014 Context of the Job: The Network and Systems Services (NSS) Infrastructure group is responsible for the operation, maintenance, support, and growth of networking, telecommunications, and the central computing systems. The University's central computing systems include enterprise class client/server, data storage and retrieval systems, web, learning management, and e-mail servers. The volume and variety (servers, routers, firewalls, switches, and networked UPSes) of central systems, the data center environmental systems, and departmental systems backed up by IT, adds to the complexity of the work of this group. Staff in the NSS Infrastructure unit provide services that support the entire University. Other groups in the IT unit rely heavily upon NSS for services and technical support. NSS is one of several groups within the larger organization of Information Technologies (IT). The technology work of this group is critical to the achievement of the IT organization's and University's strategic plans and goals. This group also provides the technological foundation that supports the institutional mission. The Technical Security group within the NSS Infrastructure unit provides technical expertise on system and network security. The group implements and administers security policy for central IT managed systems and networks. Work involved in ensuring system and network security includes log analysis, disabling compromised systems from the network, incident handling, conducting periodic scans for vulnerabilities, firewall configuration, penetration tests, maintaining intrusion detection systems, and administering other security hardware/software installs and configurations. The unit conducts regular periodic audits to ensure that security policy is being enforced. The group partners with the IT Security Policy & Compliance group to develop and maintain security policy for the University. The group also collaborates with staff in the NSS Infrastructure Systems group to implement security policy on servers and network equipment and with staff who have primary responsibilities for security and disaster recovery in Management Information Services and Web Development. The Systems Programmer III is considered essential personnel and provides off-hour, on-call coverage to support the central IT systems. The Systems Programmer III reports to the Manager of the Technical Security group within the NSS Infrastructure unit. Major Responsibilities: · Performs log analysis, incident response, and SIEM (Security Information and Event Management) monitoring. · Configures, maintains and analyzes IDS/IPS systems, traditional and application layer firewalls and other security systems. · Conducts regular periodic vulnerability scans and acts upon the results. · Conducts regular periodic security audits of system and network configurations. Ensures that security patches have been applied and no software versions with known security vulnerabilities are in use. · Analyzes packet flow data (i.e. netflow, ipfix) to find compromises, intrusions, etc. or for forensic analysis. · Participates in disaster recovery (DR) site verification and testing. Works with other groups in IT to verify that data is replicated to DR securely. · Works closely with the NSS Infrastructure Systems group to implement security policy on servers that provide services for the University and secure network configurations. · Consults with other groups in IT to ensure that University information security standards are being enforced. · Provides system and network administration expertise, programming and analysis as related to information security considerations for systems and networks managed by IT. · Maintains a high degree of familiarity with hardware and software supported by staff in IT. Cross trains with and assists colleagues with their work as needed. Trains IT staff, and occasionally campus department staff, on new or modified software/hardware and in areas of technical expertise. · Participates in designing specifications and implementing new security hardware/software. Recommends and develops modifications and enhancements to existing hardware and software, new implementations, and installation standards to increase system security and improve monitoring. Creates programs and procedures to make internal and external business processes more efficient. Writes documentation as needed. · Provides technical expertise and support to the campus clientele regarding departmental systems and applications when needed. Contributes to planning, leadership, and support of campus technical initiatives and innovative solutions. · Participates in, feasibility studies related to client/server, network, software and policies. Performs trending analysis to predict future problems. · Mentors and trains student interns. Provides guidance and gives feedback to interns. Reviews interns’ work. · Participates in strategic and long-range planning for campus network and system services. · Maintains an expert level of technical skill in areas of specialization and basic knowledge of emerging state-of-the art computer and network systems technologies, architectures and products. Researches and evaluates future technologies and solutions. · Establishes and maintains appropriate working relationships with colleagues and follows University and department policies and procedures governing IT efforts. Works within the department’s overall strategic plan following project priorities and scope. Meets deadlines and achieves goals. · Performs miscellaneous job-related duties as assigned. Qualifications: · Bachelor's degree with three years’ experience, or equivalent combination of education, certification, and experience. Degree in Computer Science, Information Systems, Electrical/Computer Engineering, or other directly related field preferred. · Experience in TCP/IP networking. · Experience with traditional firewall configurations. · Familiarity with system/network design using principles of least privilege and separation of privilege. · Experience with network and host intrusion detection systems, firewalls and other security systems. · One or more security certifications highly desirable (CISSP, SANS, etc). · Experience with system administration, system and network security, development tools and methodology, and system management in Unix environments. · Experience in administration of Linux and other UNIX-like operating systems. · In-depth knowledge of one or more operating systems, common networking equipment, and major network protocols, and multiple technologies. · Ability to plan, design, develop, implement, test, and modify complex systems, subsystems, applications, hardware configurations, and customizations, and external application interfaces to meet specified needs. · Ability to solve problems independently, troubleshoot, fully diagnose, and correct systems problems. · Analytical, evaluative, and objective critical thinking skills. · Effective verbal and written communication, interpersonal, and organizational skills. · Ability to work independently as well as part of a team. · Ability to communicate technical information to non-technical users. · Knowledge of information flow and management environments within area of operational specialty. · Knowledge of current technological developments/trends in area of expertise. · Knowledge of a broad range of relevant multi-user computer systems, applications, and/or equipment. · Knowledge of computer systems analysis and design concepts, methods, procedures, and standards. · Experience in a University computing service environment is desirable. How To Apply When applying please submit a one-page cover letter and your resume as one document. Also, please remember to provide names, addresses and telephone number of at least three references in the online application. Equal Employment Opportunity Employment offers will be conditioned upon successful completion of a criminal background check. A conviction will not necessarily exclude you from employment. The University of Delaware is an Equal Opportunity Employer which encourages applications from Minority Group Members, Women, Individuals with Disabilities and Veterans. The University's Notice of Non-Discrimination can be found at http://www.udel.edu/aboutus/legalnotices.html