The Research and Education Networking Information Sharing and Analysis Center's (REN-ISAC) current customer base includes 618 member institutions and will grow to a majority of U.S. higher education. REN-ISAC's position as the authority for computer and network security information sharing in higher education, ability to develop relationships sustaining a robust information sharing base, ability to garner trust of the community, and ability to deliver quality of information product to our members depends on the integrity, capabilities, and strength of our staff. Consider joining the team! .
Responsible for development, implementation, and execution of REN-ISAC information products and technical services. The scope of work is in service to institutions of higher education and supports efforts to protect national cyber-infrastructure through the formal US ISAC structure. Develops and maintains relationships with the REN-ISAC members (primarily Information Security Officers and Staff at universities and colleges) and with external security collaborators. Provides technical analysis interaction with REN-ISAC members. Represents REN-ISAC as an authority for computer and network security in higher education. Ensures services are executed at the highest standards.
Provides high-level technical and practical expertise and consulting. Gain, maintain, and apply a significant depth of knowledge in many widely varied technology areas, including computing, data and voice networking, and complex security issues, practices, systems, and software. Advises the technical activities of other REN-ISAC team members on a day-to-day basis. Contributes to REN-ISAC systems architecture design. Contributes to other supervisory activities.
Develops and maintains contacts at high levels such as the Information Security Officers and IT Directors at REN-ISAC member organizations, to provide information (e.g. report incidents), and to exert influence to drive appropriate responses in security awareness, proactive defense, and incident response.
Serves as the lead security engineer/technical investigator supporting the security information gathering, analysis, and sharing, incident response, and information product development activities of the REN-ISAC. Performs analysis of cyber security vulnerability and threats. Develops alert, notification, and other information product based on that analysis. Responds to cyber security incidents that have wide-spread affect in the R&E sector. Develops new information resources, analysis techniques, and information products. Makes recommendations concerning risk/benefit and cost of protections. Provides reports and recommendations on appropriate tactical and strategic security actions. Provides input that could have a direct impact on important technology decisions made at the high levels of university information technology organizations. Provides training and leadership to front-line technicians. Participates in the administration, development of REN-ISAC systems and tools.
Other: Preference is for employment location in Bloomington, IN however, depending on the candidate, a telecommuting arrangement may be acceptable.
REQUIRED: Bachelor’s degree and four years of advanced IT experience in one or more areas of security incident response, investigations, systems analysis, programming, or systems administration.
Combinations of related education and experience may be considered.
Must be able to receive federal government security clearance.
Possess advanced technical background and skills in computer and network security analysis and incident response. Must be able to work with complex matters that involve technology, human behavior, politics, communications, and persuasion.
Working knowledge of security incident diagnosis, system vulnerabilities, penetration and defense, security analysis tools, and system logging; Microsoft and/or UNIX operating systems and the utilities used in system administration, system and kernel customization. Working knowledge of network protocols, behavior, and interdependencies with applications (e.g. NNTP, DNS, SMTP, HTTP, SSL/SSH, etc.). Demonstrated knowledge of tcpdump, netflow, firewalls, and router ACLs.
Excellent interpersonal skills and ability to effectively communicate and exchange information including ability to interact with a diverse group of individuals with varied levels of understanding and authority within customer institutions. Ability to clearly and effectively document the areas of primary responsibility. A high level of accuracy, dependability, and responsibility is essential.
Established relationships and superior reputation among the higher education security community and global community of cyber security defenders; Degree in computer science; Demonstrated knowledge of intrusion detection and prevention devices; Experience in web information and application delivery; Python and/or Perl programming experience; Ability to apply security tools in small and large scale vulnerability assessments (e.g. vulnerability scanners, password cracking tools, etc.); Practical experience with one or more relational database systems; Experience in Macintosh operating systems and applications; Experience in a university-based technology environment.
Salary Plan: PAE
Salary Grade: 3IT
Department: VICE PRES INFORMATION TECHNLGY (UA-VPIT-IUBLA)
Internal Number: 68686
About Indiana University
Founded in 1820, Indiana University is the state’s public university system, comprised of two core campuses—IU-Bloomington and IUPUI—and six regional campuses located throughout the state. Combined, the total student population is more than 114,000 undergraduate, graduate and professional school students. IU is one of the largest employers in the state, with over 20,000 faculty and staff. Indiana University is an equal employment and affirmative action employer and a provider of ADA services. Diversity and inclusion remains a core commitment to IU’s mission to cultivate an educational environment that supports equal access, participation and representation on all of its campuses and that provides educational and career opportunities for all.