The Research and Education Networks Information Sharing and Analysis Center (REN-ISAC) serves over 650 higher education and research member institutions in the United States, Australia, Canada, New Zealand, and the United Kingdom. Members gain access to services and threat intelligence to aid and promote cybersecurity operational protection and incident response. REN-ISAC's position as an authority for computer and network security information sharing in higher education, and ability to develop relationships sustaining a robust information sharing base, ability to garner trust of the community, and ability to deliver quality information product to our members depends on the integrity, capabilities, and strength of our staff. Consider joining the REN-ISAC team!
The Principal Security Engineer contributes at the highest technical professional level to the development and execution of REN-ISAC security intelligence products and services such as: information gathering, analysis, and sharing; incident response; tool development; and threat intelligence.
Responsible for design, development, implementation, and execution of REN-ISAC information products and services. Develops and maintains relationships with the REN-ISAC members (primarily Information Security Officers and Staff at universities and colleges) and with external security collaborators. Provides principal technical analysis interaction with REN-ISAC members. Represents REN-ISAC as an authority for computer and network security in higher education. Ensures services are executed at the highest standards.
Provides a very high-level of technical and practical expertise and consulting. Gains, maintains, and applies a significant depth of knowledge in many widely varied technology areas including computing, data networking, complex security issues, practices, systems, and software. Directs the technical activities of other REN-ISAC team members on a day-to-day basis. Contributes to REN-ISAC systems architecture design and provides technical guidance to REN-ISAC systems administration. Contributes to other supervisory activities.
Develops and maintains contacts at high levels such as the Information Security Officers and IT Directors at REN-ISAC member organizations to provide information and exert influence to drive appropriate responses in security awareness, proactive defense, and incident response. Works with personally established contacts with a superior reputation in the higher education security community.
Contributes to the development of tools supporting REN-ISAC operations and member services. Performs high-level analysis of complicated and disparate technical and data architectures by applying highly specialized training and experiences to identify and address technical and information security vulnerabilities.
Bachelor's degree and six years of advanced IT analysis, programming, or systems administration experience that includes two years of computer security / abuse incident response and investigation experience, and two years of experience in development, administration, or maintenance of security systems and software.
Combinations of education and related experience may be considered.
Ability to receive federal government security clearance.
Possess advanced technical background and skills in computer and network security analysis and incident response, systems architecture, and administration. Ability to work with complex matters that involve technology, human behavior, politics, communications, and persuasion. Extensive knowledge of security incident diagnosis, system vulnerabilities, penetration and defense, security analysis tools, and system logging. Extensive knowledge of Microsoft and/or UNIX operating systems and the utilities used in system administration, and system and kernel customization. Extensive knowledge of network protocols, behavior, and interdependencies with applications (NNTP, DNS, SMTP, HTTP, SSL/SSH, and others). Demonstrated knowledge of tcpdump, netflow, firewalls, and router ACLs. Excellent interpersonal and communication skills, including ability to interact with a diverse group of individuals with varied levels of understanding and authority within customer institutions, and while using a variety of mediums (email, phone, in-person, and others). Ability to clearly and effectively document the areas of primary responsibility.
Degree in Computer Science. Demonstrated knowledge of intrusion detection and prevention devices. Extensive experience in web information and application delivery. Python and/or Perl programming experience. Ability to apply security tools in small- and large-scale vulnerability assessments (vulnerability scanners, password cracking tools). Practical experience with one or more relational database systems. Experience in Macintosh operating systems and applications. Experience in a university-based technology environment.
Remote work will be considered based on the candidate's experience and qualifications. Remote workers are required to attend biannual week-long all staff gatherings.
Salary Plan: PAE
Salary Grade: 4IT
Job Function: Information Technology
This posting is scheduled to close at 11:59pm EST on the advertised Close Date. This posting may be closed at any time at the discretion of the University, but will remain open for a minimum of 5 business days. To guarantee full consideration, please submit your application within 5 business days of the Posted Date.
If you wish to include a cover letter, you may include it with your resume when uploading attachments.
Equal Employment Opportunity
Indiana University is an equal employment and affirmative action employer and a provider of ADA services. All qualified applicants will receive consideration for employment without regard to age, ethnicity, color, race, religion, sex, sexual orientation, gender identity or expression, genetic information, marital status, national origin, disability status or protected veteran status. Indiana University does not discriminate on the basis of sex in its educational programs and activities, including employment and admission, as required by Title IX. Questions or complaints regarding Title IX may be referred to the U.S. Department of Education Office for Civil Rights or the university Title IX Coordinator. See Indiana University's Notice of Non-Discrimination here which includes contact information .
Campus Safety and Security
The Annual Security and Fire Safety Report, containing policy statements, crime and fire statistics for all Indiana University campuses, is available online . You may also request a physical copy by emailing IU Public Safety at email@example.com or by visiting IUPD.
Founded in 1820, Indiana University is the state’s public university system, comprised of two core campuses—IU-Bloomington and IUPUI—and six regional campuses located throughout the state. Combined, the total student population is more than 114,000 undergraduate, graduate and professional school students. IU is one of the largest employers in the state, with over 20,000 faculty and staff. Indiana University is an equal employment and affirmative action employer and a provider of ADA services. Diversity and inclusion remains a core commitment to IU’s mission to cultivate an educational environment that supports equal access, participation and representation on all of its campuses and that provides educational and career opportunities for all.