Detailed Job Description
Bentley University is currently recruiting for a Security Analyst.
Responsibilities for this position include as follows: perform monitoring and management of the various security systems employed at the university such as firewalls, VPN, IPS/IDS, vulnerability management and log management software. Conduct daily security log review, maintenance and archive for all network security devices. Perform internal and external security assessments/testing to validate the effectiveness of the university's security measures. Work with business units to identify and remediate security and information vulnerabilities. This position will assist the Information Security & Privacy administrator with providing guidance to the community with respect to network and information security.
Additional Description of Duties:
Monitor, analyze and report security statistics on a regular basis. This includes security baseline and trend analysis for the entire University Campus. The analyzed data should be presented to the Manager, Network Infrastructure Services and Information Security & Privacy Administrator to identify any abnormalities, breaches or compromises with the security posture of the campus. Assist in the development and implementation of overall network security strategy. Perform detection and remediation of identified security events. Participate in incident response and forensics as required.
Firewalls, IPS/IDS, Log Management and VPN:
Maintain and monitor Campus firewalls and IPS/IDS. Upgrade and/or install new hardware as required. Make adjustments, additions or deletions to firewall and IPS/IDS policies and devices to maintain maximum performance, reliability and security.
Maintain and monitor university log management systems. Upgrade and fine tune systems as necessary. Make recommendations to IT management concerning log management.
Monitor and maintain remote user access. This includes LanToLan tunnel, IP-Sec-VPN and SSL-VPN products for faculty, staff and vendors. This includes adding and removing users in accordance with current policies. Providing up to date reports and keeping access current.
Understand network and security technologies such as Ethernet, VLANs, 802.1q VLAN trunking, firewalls, WAF, IPS/IDS, Wireless, protocol analysis, TCP/IP (IPv4), AAA (Authentication, Authorization, Auditing), DHCP, DNS, VPN.
Familiarity with applicable laws and regulations (i.e. FERPA, HIPPA, PCI, DMCA).
Ability to balance project and ticket based tasks.
Ability to work well in a mixed infrastructure environment.
Troubleshooting and Resolution:
This person must work to resolve security issues by working either independently, with other team members, or with the Information Security & Privacy Administrator. The ability to independently isolate variables, identify problems and recommend and fix problems is essential.
Coordinate the management of multiple open issues and interface with vendors, other internal functional areas, and/or end users at all levels.
A Bachelor's degree in Computer Science or related discipline (or equivalent work related experience) and a minimum of 4 years working in information security. CISSP, SANs and/or RedHat certification preferred.
Must have a very solid understanding and thorough knowledge and experience in performance tuning of firewalls, IPS/IDS, SEIM and VPN.
Experience with network security tools such as: Wireshark, Cisco/Sourcefire IPS/IDS, Juniper firewalls, vulnerability scanners, Splunk and Qradar. Must be very proficient with open source tools such as: nmap, nessus, metasploit as well. A very good understanding of Windows, Linux and Apple operating systems as well as working knowledge of mobile OS is needed in troubleshooting client/server or VPN problems.
He/She should be able to show demonstrated project management skills and experience.
Bentley University is an Equal Opportunity Employer, building strength through diversity.