Sr. Info Security Engineer

As a community, the University of Rochester is defined by a deep commitment to Meliora - Ever Better. Embedded in that ideal are the values we share: equity, leadership, integrity, openness, respect, and accountability. Together, we will set the highest standards for how we treat each other to ensure our community is welcoming to all and is a place where all can thrive.

Job Location (Full Address):

Remote Work - New York, Albany, New York, United States of America, 12224

Opening:

Worker Subtype:

Regular

Time Type:

Full time

Scheduled Weekly Hours:

40

Department:

100086 University IT / IS

Work Shift:

UR - Day (United States of America)

Range:

UR URG 114

Compensation Range:

$86,482.00 - $129,723.00

The referenced pay range represents the minimum and maximum compensation for this job. Individual annual salaries/hourly rates will be set within the job's compensation range, and will be determined by considering factors including, but not limited to, market data, education, experience, qualifications, expertise of the individual, and internal equity considerations.

Responsibilities:

GENERAL SUMMARY
Responsible for improving the security configurations for the University of Rochester. Provides technical expertise and task management for specific security area of focus, escalating when appropriate, for workstations and servers. Acts as a resource for lower-level staff. Participates in an on-call rotation as required.

ESSENTIAL FUNCTIONS

• Oversees and participates in operating system imaging build, SCCM application packaging and deployments, antivirus administration, and Active Directory/Group Policy administration.
• Applies service-oriented security architecture principles to meet organization's confidentiality, integrity and availability requirements.
• Implements specific cybersecurity countermeasures for systems and/or applications. Integrates automated capabilities for updating or patching system software where practical and develops processes and procedures for manual updating and patching of system software based on current and projected patch timeline requirements for the operational environment of the system. Uses and configures software-based computer protection tools such as software firewalls, antivirus software, anti-spyware.
• Participates in monthly patching process, including patch testing, deployments, metric tracking and compliance efforts.
• Resolves vulnerabilities centrally as assigned, based on evaluations of monthly vulnerability reports for UR and URMC managed servers and workstations.
• Provides escalation support for IT administrators across various environments and disciplines.
• Works with stakeholders to resolve computer security incidents and vulnerability compliance.
• Troubleshoots hardware/software interface and interoperability problems.
• Conducts system/server planning, management and maintenance.
• Corrects and trains for physical and technical problems that impact system/server performance.
• Participates in ongoing stabilization, support and maintenance.
• Verifies that minimum security requirements are in place for all applications.
• Ensures best practice change and code management is followed and supporting technical documentation is organized and maintained.
• Ensures staff and departments operate within regulatory guidelines and/or standards while ensuring a high level of creativity.
• May mentor and/or coach lower-level staff.

Other duties as assigned.

MINIMUM EDUCATION & EXPERIENCE

• Bachelor's degree and 5 years of related experience required
• Or equivalent combination of education and experience
• 2 years in a supervisory capacity preferred
• Experience in higher education or healthcare IT preferred

KNOWLEDGE, SKILLS AND ABILITIES

• Participation in an on-call rotation required
• Knowledge of the basic operation of computers, server and client operating systems and systems administration concepts required
• Knowledge of operating system command-line tools required
• Skill in diagnosing connectivity problems required
• Skill in conducting research for troubleshooting novel client-level problems and correcting physical and technical problems that impact system/server performance required
• Skill in conducting system/server planning, management, and maintenance required
• Strong analytical mindset, ability to breakdown a problem and determine the root cause required
• Demonstrated ability to re-prioritize projects as unplanned events occur to ensure immediate tasks are completed and larger department goals are ultimately met. required
• Ability to collaborate effectively with others and ensure customer satisfaction and appropriate follow-through in all interactions required
• Excellent verbal and written communication skills required

The University of Rochester is committed to fostering, cultivating, and preserving an inclusive and welcoming culture to advance the University’s Mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion, creed, sex, sexual orientation, citizenship status, or any other characteristic protected by federal, state, or local law (Protected Characteristics). This commitment extends to non-discrimination in the administration of our policies, admissions, employment, access, and recruitment of candidates, for all persons consistent with our values and based on applicable law.