Internals

Lead Information Security Engineer

  • Hourly Rate: 21.25
  • Summer Commitment: Required

Position Overview

The Lead Information Security Engineer (Lead ISE), under the supervision of the Chief Security Officer of Student Affairs - Information Technologies, is responsible for enforcing Residential Computing's Appropriate Use Policy as well as for all security-related activities in Student Affairs. In support of UC Berkeley's mission of teaching, research, and public service, the Lead ISE strives to provide students living in the residence halls with uninterrupted access to network resources on campus and around the world. The Lead ISE is responsible for heading, investigating, and concluding security incidents that have occurred within the residence hall network and Student Affairs systems - for example: identifying vulnerable resident and administrative computers, enforcing bandwidth policy, and investigating intrusion attempts to departmentally managed hosts. The Lead ISE also conducts security audits on Student Affairs servers and gives recommendations to improve the security posture of the department. The Lead ISE is the liaison between network security staff on campus and at other institutions and the students in the residence halls. The Lead ISE communicates regularly with staff of Systems and Network Security (SNS) on campus and updates them on active security cases. Moreover, the Lead ISE is responsible for educating residence hall students and Student Affairs staff about computer and network security.

Qualifications

Required: previous leadership/supervisory experience; effective verbal and written communication skills and the ability to interact professionally with a diverse group of clients and staff; demonstrated success with administrative and organizational skills; ability to manage and supervise teams and projects; ability to work productively in teams; experience teaching or training others; experience prioritizing tasks and delegating responsibility; strong understanding of modern systems security concepts; good understanding of networking concepts; experience in securing Windows computers; working knowledge of *NIX; ability to prioritize tasks and handle emergency situations; ability to work productively in teams; minimum G.P.A. of 2.3.

Preferred: scripting experience (shell, Python, NSIS); knowledge of security tools (nmap, nessus, snort); experience securing a Linux machine from local and remote intrusion attempts; *NIX system administration experience; network & computing forensics; technical knowledge of the residence hall network infrastructure; experience writing documentation; attentive to detail; friendly and approachable.

Terms of Employment

  1. The period of employment for this position commences upon hire and continues through the end of the 2012-2013 academic year.
  2. The Lead ISE is paid a wage of $21.25 per hour. The position's classification title is Assistant IV. The Lead ISE must be a currently enrolled UC Berkeley student with a minimum GPA of 2.3.
  3. The Lead ISE is required to participate in a training program of approximately 4-7 hours per week during the Spring 2012 semester. This includes mandatory attendance at the Spring Lead Staff trainings on February 22nd, March 9th, March 14th-16th, and April 13th.
  4. The Lead ISE is required to work a minimum of 20 hours per week during regular business hours on at least 3 business days a week during the summer of 2012.
  5. Active participation in Senior Staff Training (the week of August 6th, 2012) and Residential Computing Consultant (RCC) training (the week starting August 13th, 2012) is required. The Lead ISE must be available for all day training on Friday, August 17th, 2012.
  6. The Lead ISE is required to work 12-19 hours per week during the academic year. A work schedule will be determined in consultation with the Chief Security Officer of Student Affairs IT.
  7. This position is subject to a criminal background check. Driving is preferred. If driving, a DMV check for valid driver's license and driving record is required (anyone who works at University Village in Albany must drive the departmental vehicle). Position meets the following criteria:
    • Possession of key or card access to computer storage areas.
    • Control over campus-wide or departmental business processes, either through functional roles or systems security access, including responsibility for development or maintenance of critical business systems.
    • Operation of University vehicles as part of assigned job duties.
    • Specific job duties: Requires access to both on and off site computer equipment storage as well as access to business databases. Driving is preferred to get to various units and locations.
  8. It is a requirement that anyone in this position work in a safe and responsible manner while not putting him/herself or others at risk. This includes complying with applicable policies and regulations; using personal safety gear; observing warning signs; learning about potential hazards; and reporting unsafe conditions.
  9. Employment with the Information Technologies unit is subject to the applicant's ability to provide appropriate documentation and sign necessary papers for employment in conformance with state laws and University regulations.
  10. Continued employment is contingent upon satisfactory job performance evaluation by the Technology Support Manager of Residential Computing.

Job Duties

(20%) Lead Responsibilities

  • Schedule and conduct regular meetings with the Information Security team.
  • Maintain close contact with everyone on the Information Security team. The Lead ISE should be aware of all ongoing projects and provide support, guidance and resources as necessary.
  • Delegate tasks and follow up to make sure they are completed.
  • Hold an informal check-in with each member of the Information Security team once per semester and conduct one formal performance evaluation once per year.
  • Build a sense of teamwork and cooperation within the Information Security team and other Student Affairs IT staff. Work closely with other Lead Staff and Senior Staff to accomplish Student Affairs IT goals.
  • In coordination with the Student Leadership and Recruitment Coordinator and the Chief Security Officer, assist in hiring and training new members of the Information Security team. Update job descriptions, develop selection criteria and write interview questions. Assist in hiring for other positions as needed.
  • Work with the Student Leadership and Recruitment Coordinator and the Technology Support Manager to hire and train additional Information Security staff during the academic year as needed.
  • In consultation with the Student Leadership and Recruitment Coordinator and the Technology Support Manager, provide structured training programs for the Information Security team during the spring. Additionally, provide ongoing training and staff development for the Information Security team throughout the year.
  • Monitor progression of Information Security projects
  • Coordinate consistent security coverage throughout the year.
  • Train the incoming Lead ISE as needed in spring and summer. Attend and actively participate in weekly Lead Staff meetings. Contribute agenda items when appropriate.
  • Attend regular meetings with the Chief Security Officer. Keep the Manager informed of major projects in your area.

(20%) Systems and Network Security Enforcement

  • Respond to possible threats reported against Student Affairs servers by following up with appropriate teams and auditing system logs, when necessary.
  • Plan and conduct periodic security and configuration audits on Student Affairs IT managed hosts.
  • Help establish policies regarding restricted data, enforcing security compliance, and implementing best practices to consolidate restricted data in a secure manner.
  • Regularly analyze egress traffic from Student Affairs IT managed hosts using network intrusion detection tools.
  • Work collaboratively with SysAdmins and Programmers to establish and enforce security baselines and expectations.
  • Enforce departmental security policy on Student Affairs IT managed hosts in close conjunction with the Desktop Consultant and Desktop Administrator teams.
  • Regularly scan Student Affairs IT hosts and analyze results to provide administrators steps to secure machines.

(20%) Enforce Residential Network Security Policies

  • Respond promptly to reported security violations received from students and from other campus departments and organizations outside the University.
  • Assist other teams in developing tools and procedures related to network access control and monitoring.
  • Investigate validity of resident reports (check appropriate logs, request further information).
  • Follow up with affected residents regarding the cause of the incident (assess resident's awareness of the situation, clearly communicate Residential Computing security policies regardless of the student's response). Conduct audits and collect evidence on resident's machines when necessary.
  • Document and update security incidents with in-house incident tracking system. Communicate case status and findings to the security mailing list and the organization forwarding the complaint (using discretion to maintain confidentiality).
  • Enforce the Residential Computing bandwidth policy and respond to staff and resident inquiries about it.

(15%) Security Awareness & Education

  • Supervise the creation of the Be Secure package.
  • Aid in educating Student Affairs employees in topics related to computing security.
  • Assist in training and educating residence hall students and Residential Computing staff on computer security issues.
  • Issue Residential Computing security bulletins as necessary.

(10%) Administrative Duties

  • Update online calendar regularly
  • Add appropriate Information Security projects to the project tool and keep project status updated in the tool.
  • Ensure that all Information Security projects and ongoing operations are documented (ongoing status reports and a summary report). Meet with the Technology Support Manager and Chief Security Officer regularly.
  • Generate regular summary reports of security incident statistics.
  • Check email daily.
  • Review staff timesheets and submit timesheets before deadlines.
  • Other duties as assigned.

(10%) Proactive Residential Security

  • Identify and notify residents of vulnerable computers, including pending large-scale vulnerabilities.
  • Investigate suspicious network activity (bandwidth spikes, DHCP problems).
  • Develop and implement regular network scanning procedures.

(5%) Ongoing Training

  • Read security mailing lists and websites (Secunia, Security Focus, unisog@sans.org, ucb-security, micronet) in order to keep up-to-date with the latest security issues.
  • Investigate new security tools and technologies that may be suitable for deployment.

This job is not currently open for hiring