Information Security Engineer-8908
Description
This position provides incident response and handling for computing network security and abuse
events at Carnegie Mellon. This involves executing incident response procedures and other
Information Security Office processes, vulnerability and intrusion monitoring and response, responding
to related trouble tickets, analyzing compromised computer systems, assisting campus IT personnel
technically and procedurally with incident handling and E-Discovery requests, working with other
groups in the division to assist in securing infrastructure as needed, providing documentation and
announcements for security and abuse issues, and for current threats, and working with University
Counsel to obtain forensic evidence for legal cases and subpoena compliance. This position is also
responsible for maintaining documentation on all incidents and incident handling procedures.
Qualifications
Minimum:
·
Education: Bachelor's degree in computer science or equivalent training and experience in
computer security and incident handling; expertise with Windows and Macintosh operating
systems is required
Experience: Three or more years of experience in solving computer problems, resolving
computer security incidents, general troubleshooting, and interacting with clients with tact and
diplomacy
Skills: Ability to diagnose and respond to computer and network security incidents, negotiate
with administrative organizations, obtain forensic data in support of University Counsel and
on-going computer security incidents, provide guidance and ensure compliance with incident
response procedures, evaluate security threats and applicability to a given environment,
incorporating excellent interpersonal communication skills (both verbal and written)and
excellent technical and problem solving skills
Physical Mobility: Ability to work with computers for extended periods of time. Normally
sedentary with some mobility (i.e. able to travel to other campus locations.); ability to lift
computers and monitors that weigh approximately 45 pounds.
Environmental Conditions: Ability to work under pressure, handling frequent interruptions.
There is usually close contact with computer monitors for long periods of time.
Mental: Ability to prioritize incidents based on impact, severity and importance, effectively
handle multiple problems, completing each in a timely manner; excellent questioning and
analytical skills; ability to identify, isolate and communicate problems from/to all levels of
users and technical staff; ability to follow procedures despite interruptions and excessive
demands placed by clients. Attention to detail and excellent analytical skills are essential.
Other: Knowledge of operating systems and applications on Macintosh, Windows, and Unix
platforms. Ability to work and make significant contributions in a team environment. Ability to
prioritize projects, operations and incident
response
activities according to resource
availability, risk, and/or compliance requirements. Requires flexibility to adjust to changing
priorities and frequent interruptions. Requires ability to work under pressure with attention to
detail and excellent analytical skills
·
Preferred:
·
Education: Master's degree in Computer Science or related experience; expertise with
UNIX/Linux operating systems and security
Licenses: Certified Information Systems Security Practitioner (CISSP), Global Information
Assurance Certification (GIAC) Security Essentials Certification (GSEC), or equivalent
Experience: Five years or more experience in information technology and/or computer and
network security in an academic environment. Prior experience interfacing with law
enforcement, fulfilling subpoena requests, and conducting host and network forensics is
preferred
Skills: Strong technical skills in forensic methods, multiple operating systems and file systems
(i.e. Mac, Windows, and Unix), multiple databases (Oracle, MySQL,etc.), multiple data storage
technologies (SAN, tape, etc.) and enterprise systems (e.g. e-mail, collaboration software,
·
·
·
ERP). Additionally requires familiarity with scripting languages, encryption tools, and chain of
custody requirements.
TO APPLY: Please go online to
http://www.cmu.edu/jobs
and apply to Job #8908.
CARNEGIE MELLON UNIVERSITY IS AN EOE/AA EMPLOYER COMMITTED TO DIVERSITY
