at National Center for Supercomputing Applications in Urbana, Illinois, United States
Job Description
Assistant – Senior Security Engineers (3 levels, 3-4 vacancies)
National Center for Supercomputing Applications
NCSA Security is looking for Linux system administrators who are interested in being part of a security operations team.
If you prefer stability and robustness over “move fast and break things,” and also like to work a regular 40-hour work week with very few outside-of-work-day calls, NCSA’s Incident Response and Security Team might be the place for you.
0% to 100% remote office allowed, must live within 60 miles of Urbana, IL to address any unplanned hardware issues.
Salary range $65,000-$105,000; commensurate with experience.
Duties and Responsibilities:
1) Assistant Security Engineer
Cybersecurity Research
• Assist with project development to enhance the security stance of NCSA in support of research and education.
• Under the guidance of a higher-level Security Engineer, suggest and evaluate security requirements and evaluate solutions for NCSA and collaborator systems.
Cybersecurity Support
• Participate in discussions regarding NCSA’s cybersecurity policies, practices, system development, architecture, and posture.
• Respond to or assign security alerts and tickets using established procedures and policies.
• Detect and investigate digital intrusions and other incidents with cyber components by coordinating with the CSD leadership.
• Provide on-call and off-hours support as assigned; job duties may require working schedules that are outside of normal business hours.
2) Security Engineer
Cybersecurity Research
• Provide cybersecurity-related guidance to academic- and industry-funded research projects.
• Assist with the development of projects that enhance the security stance of NCSA in support of research and education, and help develop strategy for future direction of team.
• Maintain currency in the activities and high impact issues of the computer security or incident response community.
• Apply scientific domain knowledge to implement and maintain the security and monitoring infrastructure in support of technical and scientific research projects.
• Suggest and evaluate security requirements and evaluate solutions for NCSA and collaborator systems.
Cybersecurity Support
• Respond to or assign security alerts and tickets as appropriate.
• Make technical recommendations regarding NCSA’s cybersecurity policies, practices, system development, architecture and posture.
• Make recommendations for ticket processes.
• Ensure the security and integrity of NCSA Incident Response and Security Team (IRST) systems according to NCSA policies and procedures.
• Detect and, investigate digital intrusions and other incidents with cyber components by coordinating with the Senior IRST staff.
• Provide on-call and off-hours support as assigned; job duties may require working schedules that are outside of normal business hours.
• Assist with drafting incident reports for public and internal consumption, cooperate with law enforcement and Legal as needed.
Leadership and Outreach
• Provide training, guidance, and assistance related to cybersecurity to NCSA staff and partners.
3) Senior Security Engineer
Cybersecurity Research
• Provide cybersecurity-related guidance to academic- and industry-funded research projects.
• Lead and develop projects to enhance the security stance of NCSA in support of research and education and help develop strategy for future direction of team.
• Maintain currency in the activities and high impact issues of the computer security and incident response community.
• Apply scientific domain knowledge to design, implement, and maintain the security and monitoring infrastructure in support of technical and scientific research projects.
• Architect and develop security requirements and evaluate solutions for NCSA and collaborator systems.
Cybersecurity Support
• Make technical recommendations regarding NCSA’s cybersecurity policies, practices, system development, architecture and posture.
• Establish procedures regarding ticket creation and handling.
• Respond to or assign security alerts and tickets as appropriate.
• Ensure the security and integrity of NCSA systems according to NCSA policies and procedures.
• Detect, investigate, mitigate and remediate digital intrusions and other incidents with cyber components by coordinating with the Principal Security Engineer, unless there is no principal security engineer, in which case they lead.
• Provide on-call and off-hours support as assigned; job duties may require working schedules that are outside of normal business hours.
• Draft incident reports for public and internal consumption, cooperate with law enforcement and Legal as needed.
Leadership and Outreach
• Represent NCSA in the national community and liaise with other incident response teams.
• Provide training, guidance, and assistance related to cybersecurity to NCSA staff and partners.
• Guide, assist, and task more junior Security Engineers.
• May supervise students or interns.