Network Security Engineer
University of Oregon (Central Oregon, Oregon)

This job posting has expired.

You may wish to try a search for Network Security Engineer

Or visit the FlipDog home page
 

NETWORK SECURITY ENGINEER

Information Services

University of Oregon

Job Context

Information Services is responsible for supporting information services for faculty, students, and staff members at the University of Oregon. Network Services, a department within Information Services, provides support for the University of Oregon campus data network, consisting of more than 20,000 networked computer systems and peripherals. Network Services provides support for all routers, switches, firewalls, wireless access systems, dialup modem pools, and VPN systems.

The Network Security Engineer will provide assistance with the design, installation, and maintenance of network and computer security systems on campus. Any candidate must be technically competent and be able to work well with people in a university environment. This position will be a part of the network security team and will officially report to the Director of Network Services, although day to day reporting will be to the other members of the network security team.

Responsibilities

Under direction of the Director of Network Services and the other members of the security team, the duties and responsibilities for this position include, but are not limited to the following:

Participate in long-range planning for security systems on campus. Assist in the development and implementation of computer and network security policies.

Develop and deploy network security systems to monitor and protect the campus network. This will include at least the following: configuration and deployment of firewalls, authentication systems, authorization systems, intrusion detection and intrusion prevention systems, encryption, network monitoring and flow analysis tools.

· Evaluate new information security products and technologies. Make recommendations to the security team about these products and technologies.

· Participate in incident response, including gathering, analyzing, and processing confidential materials, performing post-incident analysis of systems and logs, and performing forensics on systems involved in these incidents.

· Perform periodic scans of campus systems. Advise administrators of vulnerable systems to ensure that systems are properly patched and protected.

· Advise campus units on current and best practices for information security. Disseminate this information via campus e-mail lists, public forums, and the UO security website. Meet with members of the campus IT community as needed to implement these practices.

· Document security procedures as they are developed.

· Teach workshops on computer and network security-related topics on a periodic basis. Develop workshop content and materials.

· Provide off-hours, on-call support on a rotation basis with others in the Network Services and Security groups.

· Other duties as assigned, including serving on committees and participate in major networking meetings and standards forums as directed.

Qualifications

The following are minimum requirements for this position:

· Bachelor’s degree in Computer Science or relevant field or equivalent professional experience.

· Proven experience with network hardware and software, including firewalls, routers and switches.

· Experience as a Unix system administrator.

· Software development experience.

· Experience with the security features of desktop operating systems, including Microsoft Windows and Mac OS.

Proven skills in technical writing, verbal communications, consulting, and problem solving in a rapidly changing technical environment.

· U.S. citizenship (or eligibility for and ability to obtain valid employment standing under prevailing U.S. immigration laws by hire date).

The following qualifications are desirable:

· Graduate work in a related field.

· Experience as a Linux system administrator.

· Experience as a Window system administrator.

· Experience developing software in a Linux environment with perl or C.

· Experience with IPSEC and other network encryption technologies.

· Experience with network analysis tools, utilities, and network monitoring.

· Experience with post-incident analysis and computer forensics.

Supplemental Questions

To assist the panel in making a selection for this position, please respond to the following questions. Responses should be approximately one to two paragraphs long and numbered to correspond to the questions. Note any professional experience or training you have that relates to each question. Please ensure that any experience or training mentioned in your responses is also included in your application materials.

1. Describe your experience administering Unix or Linux servers, including any methods used to secure, monitor and manage these servers.

2. Describe the computer languages you are most familiar with and the types of programming projects you have been involved in.

3. Describe your experience using the security features of desktop operating systems, including host firewalls, disk encryption and file integrity monitoring.

4. Describe any firewall configuration and deployment experience you have, including methods for configuration and change management.

5. Describe any experience with IPSEC or other network transport encryption technologies. Describe how these technologies were deployed and used.

6. Describe any network traffic analysis experience that you have. Include the tools you have worked with and how they have been used.

7. Describe any vulnerability scanning or posture assessment experience you have. Include the tools you have worked with and how they have been used.

8. Describe any post incident analysis or computer forensics experience you have. Include the tools you have worked with and how they were used.

Application Process:

To insure full consideration all materials should arrive by June 18, 2008. This position will remain open until a suitable candidate is identified. Completed applications must include:

A letter of application which addresses the candidate’s qualifications and interest in the position. A current resume The names, addresses and phone numbers of three current references who can comment on the candidate’s qualifications for the position. References will be kept confidential and will not be contacted without the candidate’s permission. Answers to the supplemental questions listed above.

Preferred submission method:

The application materials should be packaged as one PDF attachment using the applicant’s last name as the document name and emailed to iscareer@uoregon.edu. Please reference position #8155 in the subject of the email.

Alternate submission methods:

Mail to: Information Services

Attn: Network Security Engineer Search

253 Computing Center

1212 University of Oregon

Eugene, OR 97403

Email to: iscareer@uoregon.edu

Fax to: (541) 346-4397

The University of Oregon is an equal opportunity affirmative action institution committed to cultural diversity and compliance with the Americans with Disabilities Act. Candidates with a demonstrated commitment to promoting a diverse learning and working environment are encouraged to apply.