Information Security Engineer

Job Description:

Information Security Engineer

Office of Information Technology

The Information Security Engineer is a member of the team responsible for implementation, monitoring, and maintenance of cybersecurity tools at Brown University. They work both within Brown's Office of Information Technology (OIT) and with departmental technical contacts to ensure that university data and resources are adequately protected and maintained in accordance with university security policies and standards.

The Information Security Engineer is involved with the evaluation, testing, and validation of the security of new products, solutions, and methodologies.

They are a member of the Information Security Incident Response Team and participate in security incident response and forensic analysis as needed.

This role directly supports services or procedures that may need urgent response at any time, and is required to participate in a 24x7 team on-call rotation schedule. OIT team members are expected to respond to alerts during their on-call times. It is the team member’s responsibility to coordinate alternate on-call coverage in advance if planned time off is scheduled. This role may also be contacted for escalation or backup support outside of on-call time, and is expected to respond to alerts if possible.

Job Qualifications

• Bachelor’s degree preferred
• 3-5 years combined IT and information security experience
• An eagerness to constantly learn
• Hands on experience with security systems and procedures, including technologies such as firewalls, web application firewalls, intrusion detection/protection systems, EDR software, authentication systems, log management, penetration testing, and incident response
• Hands on experience automating security tools for monitoring, response, and testing. Scripting and programming experience (Python, PowerShell, or bash)
• Ability to analyze, understand, and act upon vulnerabilities identified by security tools. Technical background necessary to determine who in the organization can address discovered vulnerabilities and the ability to clearly communicate the findings
• Technical background necessary to identify threats to the environment, ability to propose potential solutions, and guide efforts to reduce or eliminate the threat
• Ability to communicate technical issues to a wide variety of audiences
• Ability to work in a fast-paced environment; ability to multitask, change direction, effectively prioritize, and meet deadlines
• An independent contributor who can work with a variety of cross-functional teams
• Possesses a willingness and ability to support a diverse and inclusive environment

Preferred:

• Familiarity with designing secure networks, systems, and application architectures in on-premise, private cloud, and public cloud environments
• Familiarity with risk assessment tools, technologies, and methods
• Familiarity with disaster recovery, computer forensic tools, technologies, and methods
• Familiarity with endpoint security solutions, including file integrity monitoring and data loss prevention
• Familiarity with compliance frameworks (NIST, ISO, CSF, COBIT) and regulations (FERPA, CJIS, FISMA)
• Familiarity with modern Endpoint, Mobile, and Infrastructure operating systems
• Applicable security certifications desired

Successful completion of a criminal background check and education verification is required.

Benefits of Working at Brown:

Information on the Benefits of Working at Brown can be found here.

Recruiting Start Date:

Job Posting Title:

Department:

Grade:

Worker Type:

Worker Sub-Type:

Time Type:

Scheduled Weekly Hours:

Position Work Location:

Statement on Equity, Diversity and Inclusion:

All positions require demonstrated ability to work collaboratively with faculty, staff, students, and other Brown and community stakeholders with diverse perspectives and demonstrated ability to contribute to an inclusive environment.

Submission Guidelines:

Please note that in order to be considered an applicant for any staff position at Brown University you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application.

Still Have Questions?

If you have any questions you may contact employment@brown.edu.

EEO Statement:

Brown University is an E-Verify Employer.

As an EEO employer, Brown University provides equal opportunity and prohibits discrimination, harassment and retaliation based upon a person’s race, color, religion, sex, age, national or ethnic origin, disability, veteran status, sexual orientation, gender identity, gender expression, or any other characteristic protected under applicable law.