Administrative/Support, Information Technology, Other Staff/Administrative, Staff/Administrative
Employment Status: Full-Time, temporary appointment with the possibility to become permanent.
Work Schedule: To Be Determined
First Review Deadline: This position will remain open until filled. Applications will be reviewed beginning May 25, 2018.
Under the general supervision of the Director of Information Security and Emerging Technologies, the incumbent will be responsible for providing technical support in information security and identity services. Example of possible duties include:
Provide guidance to university information technology initiatives in the areas of information security and identity services
Escalate and handle events indicative of system compromise, improper information exposure, or security misconfiguration
Tracking and resolving issues associated with access to university systems and identity resolution issues
Configure and operate assessment tools, hand-confirm positive alerts, and deliver reports to appropriate management
Interpret syslogs from various services, systems and network devices
Query and interpret network flow records
Assist in development and implementation of information security and identity management standards
Create and follow information security and identity management standards and procedures
Correlate information to produce reports, graphs, and metrics
Coordinate and maintain systems and procedures to provide business continuity services and support disaster recovery,
Develop and maintain code and processes for monitoring the various systems under the responsibility of the information security and identity management department.
Must be self-driven to learn new applications and emerging technologies.
Must possess strong communication and interpersonal skills.
Must be able to work collaboratively with a diverse community of varying technical expertise.
Must possess bachelor's degree in computer science, computer engineering, software engineering, or similar. A Master's degree is preferred.
Must be proficient in at least one systems automation language, such as (but not limited to) Python, Perl, Java, and/or PowerShell. Open-source contribution is desirable.
Must be able to follow and assist in creating standards and procedures related to information technology frameworks.
Professional certifications or vendor certifications in information security and identity management are preferred.
Experience with centralized logging protocols and analysis tools, e.g. Syslog, ElasticSearch/Logstash/Kibana, Splunk, and LogRhythm.
Ability to manipulate common network protocols, such as HTTP, SMTP and DNS using tools such as NetCat, cURL, Dig, OpenSSL, OpenLDAP, Selenium, Web Scarab, Nmap Scripting Engine, Net::Socket, etc. is preferred.
Ability to collect and interpret raw network data using tools such as Snort, Suricata, Bro, Metaflows, tcpdump, Wireshark, NetWitness, etc. is preferred.
Systems administration in Linux preferred. Experience with multiple Linux distributions desirable.
Familiarity with OWASP is desirable.
Familiarity with proxies, reverse-proxies, and load balancers desirable.
Applicants must have knowledge and experience with relational databases.
Applicants must be familiar with the X.500 standard, including LDAP. Incumbent must be familiar with Active Directory structures and practices.
Applicants must be able to follow and assist in creating standards and procedures related to identity protocols and standards such as SAML, and be familiar with solutions that provide federated authentication services such as CAS, Shibboleth, ADFS, OpenAuth, including the integration of multi-factor authentication solutions.
Experience with source control system tools, git is preferred.
A background check (including a criminal records check) must be completed satisfactorily before any candidate can be offered a position with the CSU. Failure to satisfactorily complete the background check may affect the application status of applicants or continued employment of current CSU employees who apply for the position.
The person holding this position is considered a `mandated reporter' under the California Child Abuse and Neglect Reporting Act and is required to comply with the requirements set forth in CSU Executive Order 1083 as a condition of employment.
California State University, San Bernardino is an Affirmative Action/Equal Opportunity Employer. We consider qualified applicants for employment without regard to race, religion, color, national origin, ancestry, age, sex, gender, gender identity, gender expression, sexual orientation, genetic information, medical condition, disability, marital status, or protected veteran status.
This position may be "Designated" under California State University's Conflict of Interest Code. This would require the filing of a Statement of Economic Interest on an annual basis and the completion of training within 6 months of assuming office and every 2 years thereafter. Visit the Human Resources Conflict of Interest webpage link for additional information: http://hrd.csusb.edu/conflictInterest.html
This position adheres to CSU policies against Sex Discrimination, Sexual Harassment, and Sexual Violence, including Domestic Violence, Dating Violence, and Stalking. This requires completion of Sexual Violence Prevention Training within 6 months of assuming employment and on a two-year basis thereafter. (Executive Order 1096)
California State University, San Bernardino offers a challenging and innovative academic environment. The university seeks to provide a supportive and welcoming social and physical setting where students, faculty and staff feel they belong and can excel. The university provides students the opportunity to engage in the life of the campus, interact with others of diverse backgrounds and cultures, as well as participate in activities that encourage growth, curiosity and scholarly fulfillment. Through its branch campus in Palm Desert, the university mission extends to the Coachella Valley.