Position: Information Security Analyst (9529)
Posted: September 18, 2012
FLSA status: Exempt
This position works alone or with a team (sometimes leading) as required, stays abreast with existing and new computer/information security vulnerabilities and applicable patches and workarounds, monitors network and host information to detect attacks, viruses, worms and unauthorized use, evaluates new security technologies, contributes to development of security policies and procedures, performs systems administration necessary to implement the security policies, develops procedures for and maintains monitoring systems for security incidents and ensures those procedures are followed, participates in security incident response, conducts security risk assessments and audits, contributes to security awareness training for staff and users, develops security documentation and reports on security status to center management. Conducts computer forensics on hosts as needed, performs other high performance computing systems administration functions as needed (e.g., troubleshooting system software problems, identifying and solving operational problems, and installing and testing operating systems and other software).
- Education: BS in Computer Science, related discipline or equivalent experience.
- Experience: Two or more years experience with systems administration and programming in a UNIX environment, working knowledge of Windows XP and Macintosh OS X operating systems.
- Skills: Strong problem solving skills; knowledge of or the ability to learn current computer/information security practices for a high performance computing environment; the ability to lead projects and to communicate clearly and work well with others; the ability to review a system, determine areas in need of improvement and develop and implement tools to improve the functioning of the system.
- Physical Mobility: Generally sedentary; requires ability to attend off-site meetings; requires ability to stay at a terminal and use a keyboard and mouse for extended periods of time.
- Environmental Conditions: Primarily usual office setting, but must be able to work occasionally in a machine room setting (both remote and local). Close contact with a computer display for extended periods.
- Mental: Must be able to analyze and troubleshoot problems, must be able to work independently and creatively and must be able to work successfully in stressful situations and under tight time constraints.
- Other: Strong desire to support production based systems -- some weekend or evening hours will be required; on call 24 hours a day, 7 days a week.
- Education: Advanced degrees or additional academic or professional courses.
- Experience: Experience in an academic setting as well as some team leadership experience.
- Skills: Knowledge of current computer/information security practices, especially in a high performance computing environment. Knowledge of and work experience with LINUX; shell programming; scripting languages, such as perl or python; HTML, and gnu software. Experience with Intrusion Detections systems such as Bro and SNORT, Prelude, OSSEC and file integrity management systems. Experience supporting authentication systems such as PKI services, RADIUS and Kerberos, firewalls IPSEC/IPTables and security scanners such as NESSUS. Awareness of distributed file systems, such as AFS, and parallel file systems, such as Luster; high performance interconnect technology, grid computing software such as Globus. Familiarity with current networking software and hardware.
How to apply:
To apply submit your credentials online at http://www.cmu.edu/jobs/index.html. No applications will be accepted via email or snail mail.
Carnegie Mellon University is an Affirmative Action/Equal Opportunity employer.