Senior Security Analyst

Location
Washington D.C
Posted
Apr 05, 2019
Closes
Jul 07, 2019
Ref
JR05769
Industry
Education
Hours
Full Time
Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world.

Requirements

Senior Security Analyst - University Information Services

The Senior Security Analyst provides technical expertise and guidance in the areas of information security analysis, intrusion detection, incident response, and network security management. AS/he audits and strengthens security on workstations, servers and network systems. The position works with systems and network administrators at Georgetown University to ensure that appropriate security levels are maintained. In cooperation with staff and operating within the guidelines of the information security policy and acceptable use policy, the position performs penetration testing, security validation and other technical tasks using commercial and publicly available security tools. The position works with legal counsel, campus police, internal and external auditing and a broad section of the University community on identifying and clarifying the issues related to computer security and risk. May be required to work outside the usual business hours of Georgetown University including on-call responsibilities. Duties include but are not limited to:

Security Analysis and Reporting
  • Using available security tools and processes, audit workstations, servers and network systems to identify security flaws and vulnerabilities in operating system or application software in accordance with established policies regarding periodicity, coordination, notification, etc. Maintain records of audit results, and inform, as appropriate, system administrators, auditors, managers, the security officer, etc., of these results and as to positive or negative trends that may be observed.


Intrusion Detection and Prevention
  • Build and maintain an infrastructure for intrusion detection, network security management. Perform trend analysis on intrusion data. Maintain detailed records of attempted and successful intrusions.


Incident Response
  • Investigate possible security incidents or other violations of the acceptable use policies. Assist and guide systems and network administrators as necessary. Act as a UIS liaison during investigations that may involve University Counsel, law enforcement and national and international security agencies.


Training and Education
  • Provide security and training support to the systems and networks administrator, staff and end users. Support and foster collaboration and discussion of security issues via the web, e-mail, discussion lists, user groups, etc. Develop processes for informing systems and network administrators of security-related events which may impact the secure operation of a system. Coordinate with technical staff and other service providers on campus to develop and revise system policies and procedures that help to provide a safe and secure computing environment at Georgetown University


Keeping Current
  • Stay current on new software tools, security vulnerabilities, and solutions through CERT, SANS, FIRST, EDUCAUSE and other organizations, web sites, mailing lists, and training opportunities.


Requirements
  • Bachelor's degree or equivalent with relevant course work in Computer Science, Information Systems or related field(s)
  • At least four years of technical information security experience in one or more of the following areas: intrusion detection, incident response, forensics, vulnerability assessment, system audit, and firewall management; experience with current commercial and open-source security tools, such as Nmap, Nessus, ISS Internet Scanner, Snort, and tcpdump
  • At least three years of enterprise Unix (pref. Solaris), Windows NT/2000/XP, and/or Cisco system/network administration in an enterprise environment, including the ability to perform operating system hardening, tuning and audit
  • In-depth knowledge of TCP/IP
  • Experience with Active Directory, LDAP, Kerberos, Sendmail, SNMP, Apache, IIS, Oracle, and SQL desirable
  • Familiarity with at least one of the following programming languages: Perl, Unix Shell, C, C++, or Java
  • Excellent interpersonal, written and oral communication and analytical skills


Preferred Qualifications
  • Graduate degree highly desirable
  • Experience with Cisco PIX and Checkpoint FW-1 highly desirable
  • Experience in a university environment a plus

Similar jobs