The Institute for CyberScience (ICS) seeks a talented and goal-oriented individual to join our engineering team as a Security Engineer and Research and Development Engineer for Advanced CyberInfrastructure Security Systems. You will be an integral contributor to a dynamic and growing team of specialists supported by an exciting $60 million Penn State investment in advanced research cyberinfrastructure (ICS-ACI).
Penn State’s elite researchers use our high-performance research infrastructure to solve real-world problems by conducting simulations, data mining, and other high-performance computing operations. You will participate as an important member of our engineering team in supporting this work. In this role, you will provide engineering guidance in maintaining and enhancing the security posture of ICS-ACI as well as working with University constituents (Faculty and Researchers) to research, specify, design, develop, implement and operate secure computing and data infrastructure, including domain specific security expertise for networking, High Performance Computing (HPC) clusters, high capacity storage and scientific software applications necessary to support sponsored research. Job duties also include monitoring and analysis of ICS-ACI security systems, including security logs, antivirus agents, and vulnerability management tools. You will also serve as primary liaison to the Office of Information Security (OIS) and will work closely with OIS and ICS technical staff to investigate, respond, and remediate security events.
The security analyst/engineer will also be responsible for updating and enhancing the System Security Plan (SSP) and other relevant security documentation artifacts as well as participating in compliance validation and audit events. Candidates must be able to demonstrate experience in the following areas: Firewalls; Data encryption protocols; Linux; Networking and network-based services such as DNS, DHCP, NTP, LDAP, NFS, SMB; Security tools such as Splunk, Nessus, Cylance, CyberArk, OSSEC.
We encourage applicants with additional qualifications to apply. Training, education and professional development opportunities are available and encouraged.
This job will be filled as a level 1, or level 2, depending upon the successful candidate’s competencies, education, and experience. Typically requires a Bachelor’s degree or higher in an Engineering or Science discipline (Professional Engineer license accepted in lieu of Bachelor’s degree) or higher , or an equivalent combination of education and experience for a level 1. Additional experience and/or education and competencies are required for higher level jobs. Skills in the following areas and technologies are desirable: Linux system hardening; Deploying and maintaining a secure distributed Windows computing infrastructure; Scripting in languages such as Perl, Python, awk, and bash/csh/ksh; Automated configuration management software (e.g. Puppet, Chef, CFEngine, etc.); Virtualization services (VMWare, RHEV, Openstack); Working knowledge of security automation concepts (SOAR) and associated technologies. Candidates must also have impeccable ethics and integrity with a strong work ethic as well as strong interpersonal and written skills and the ability to work well in a team environment. This is a fixed-term appointment funded for one year from date of hire with an excellent possibility of re-funding.