LONI Security Engineer or LONI Senior Security Engineer

0201 Fred C. Frey Computing Services Building

Apply now Apply later

All Job Postings will close at 12:01a.m. CST (1:01a.m. EST) on the specified Closing Date (if designated).

If you close the browser or exit your application prior to submitting, the application progress will be saved as a draft. You will be able to access and complete the application through “My Draft Applications” located on your Candidate Home page.

Job Posting Title:

LONI Security Engineer or LONI Senior Security Engineer

   

Position Type:

Professional / Unclassified

   

Department:

LSUAM FA - ITS - TA - LONI - Engineering (Gary Anthony Mumphrey (00000150))

   

Work Location:

0201 Fred C. Frey Computing Services Building

   

Pay Grade:

   

Job Description:

The LONI Security Engineer and LONI Senior Security Engineer will be part of the team providing for the successful operation of the complex statewide Louisiana Optical Network Infrastructure (LONI), ensuring a highly reliable network. Both the Security Engineer and Senior Security Engineer support LONI’s Security-Operations-Center-as-a-Service (SOCaaS), a state-of-the-art cybersecurity service designed to protect the LONI Network and its members from emerging cyber threats.

The Security Engineer position is responsible for implementing and managing security policy and engineering practices for the protection of LONI systems, networks, services, and information.  The Security Engineer will participate in security compliance efforts, provide security expertise and guidance, and identify security requirements to remediate security vulnerabilities or gaps discovered in the LONI network environment.  This position participates in communications with LONI members to aid and ensure compliance with design practices.  Duties will also include providing next-level on-call support for the LONI NOC. This position will assist in defining internal processes and identifying opportunities for improvement related to information and network security, as well as providing consultation to members regarding network firewalls and other security services and technologies.

The Senior Security Engineer is responsible for developing, implementing, and managing security policy and engineering practices for the protection of LONI systems, networks, services, and information.  The Senior Security Engineer leads security compliance efforts, provides security expertise and guidance, and identifies security requirements to remediate security vulnerabilities or gaps discovered in the LONI network environment.  This position participates in communications with LONI members, negotiates service requirements and timeframes, and aids and ensures compliance with design practices.  Duties will also include providing next-level on-call support for the LONI NOC.  This position will lead in defining internal processes and identifying opportunities for improvement related to information and network security, as well as provide consultation to members regarding network firewalls and other security services and technologies.

Security Engineer Job Responsibilities:

Operations: Participate in the development, enforcement, and monitoring of IT security policies, procedures, guidelines, and compliance standards related to the security posture of the LONI Network. Maintain awareness of current and future cyber threats that could affect LONI services to increase value to the LONI community.  Conduct security risk and vulnerability assessments on network devices to confirm compliance with established security standards, industry best practices, and internal good practices. Participate in the development, monitoring, and execution of the organization's incident response plan.

Participate in the incident response plan and help coordinate response efforts with relevant stakeholders to ensure efficient and effective incident management.  Collaborate with project management to ensure a successful customer experience and align with organizational goals. Serve as a subject matter expert regarding network firewalls and related IT security technologies and services.  Plan, review, and execute information security projects by installing, maintaining, and supporting security appliances, hardware, software, and services according to organizational goals and industry best practices. Participate in incident response efforts on LONI services.  

Monitor risk mitigation measures for the SOCaaS offering and LONI cyberinfrastructure. Ensure adherence to industry standards, best practices, regulations, and other requirements to deliver the SOCaaS offering. Participate in onboarding new members into the LONI SOCaaS offering. Report on appropriate key performance indicators (KPIs) for the LONI SOCaaS offering. Participate in security assessments for members of the LONI SOCaaS offering. Keep LONI staff informed on the security posture of the LONI Network and services.  Promote awareness of applicable security standards, risks, and industry best practices across the LONI community.

Participate with LONI Leadership about IT security services and policies. Work with LONI Leadership to provide timely, consistent, and meaningful communications.  Represent LONI as a member of the LONI Working Groups as needed. Function as liaison with external entities including vendors, contractors, and consultants to maintain and enhance service delivery.   Responsible for documentation and data models for best practices in establishing a long-term, stable perspective on LONI’s operations.  Oversees ordering of materials and equipment required to perform and direct work activities in the information security space which adheres to proper incident, change, and service management.

Follow the acquisition process for the procurement of all goods and services in their various lifecycles to maintain the proper user experience for internal and external members of the LONI Network. Adhere to appropriate specifications and preparation of documentation as required by LSU policies and State law. Participate in an on-call rotation with other LONI staff. (60%)

Support: Monitor performance, capacity, and availability of the LONI cyberinfrastructure. Train and mentor LONI staff on best practices for maintaining an acceptable posture for the LONI cyberinfrastructure and service offerings. (30%)

Other duties as assigned. (10%)

Senior Security Engineer Job Responsibilities:

Operations: Lead the development, enforcement, and monitoring of IT security policies, procedures, guidelines, compliance standards, and frameworks that strive to protect LONI’s cyberinfrastructure and service offerings to ensure high availability and performance.  Align security and network strategies with organizational goals and regulatory requirements, fostering continuous improvement and innovation in security and network management. Research and stay current on security technologies, trends, issues, legislation, threats, and solutions and maintain awareness of current and future cyber threats that could affect LONI services to increase the value of the LONI community.

Conduct and oversee advanced security risk and vulnerability assessments on LONI’s cyberinfrastructure to confirm compliance with established security standards, industry best practices, and internal good practices. Develop, maintain, and execute incident response plan, coordinating with internal and external stakeholders to mitigate risks swiftly and effectively.  Coordinate with project management to oversee projects to ensure a successful customer experience and align with organizational goals.  Supervise and direct staff within LONI security engineering to prioritize SOCaaS and internal projects, ensuring the team efficiently, remains well-coordinated, and maintains the highest security posture of LONI’s cyberinfrastructure. 

Assist leadership in performing employee management activities.  Serve as a subject matter expert regarding network firewalls and other IT security technologies and services.  Research, evaluate, design, recommend, and implement security controls.  Lead information security projects regarding planning, implementation, review, and modifications.  Design, install, maintain, and support security appliances, hardware, software, and services according to industry best practices.

Oversee and lead comprehensive incident response efforts for security services, ensuring rapid resolution and minimal disruption to operations. Monitor and steer risk mitigation measures for the SOCaaS offering and LONI’s cyberinfrastructure. Ensure adherence to industry standards, best practices, regulations, and other requirements to deliver the SOCaaS offering. Lead engagement to onboard new members into the LONI SOCaaS offering. Monitor and give insights on appropriate key performance indicators (KPIs) for the LONI SOCaaS offering. Participate in security assessments for members of the LONI SOCaaS offering. Keep LONI staff informed on the security posture of the LONI Network and services.

 Participate in an on-call rotation with other LONI staff. Promote awareness of applicable security standards, risks, and industry best practices across the LONI community. Function as a liaison and consultant between LONI and the other higher-education institutions and state agencies about IT security services and policy. Work with LONI members throughout the state to provide timely, consistent, and meaningful communications and hands-on assistance as needed.  Collaborate with LONI members on their technical needs and determine how LONI can assist with meeting those needs.  Represent LONI as a member of the LONI Working Groups and other local, state, and national groups as needed.

Function as liaison with external entities including vendors, contractors, and consultants to maintain and enhance service delivery. Function as a liaison and consultant between LONI and its members and other stakeholders regarding LONI’s cyberinfrastructure. Responsible for documentation and data models for best practices in establishing a long-term, stable perspective on LONI’s operations.  Oversees ordering of materials and equipment required to perform and direct work activities in the information security space which adheres to proper incident, change, and service management.  Follow the acquisition process for the procurement of all goods and services in their various lifecycles to align with organizational goals, LSU policies and State law. (60%)

Support: Monitor performance, capacity, and availability of the LONI cyberinfrastructure. Train and mentor LONI staff on best practices for maintaining an acceptable posture for the LONI cyberinfrastructure and service offerings. (30%)

Other duties as assigned. (10%)

Minimum Qualifications:

Security Engineer-

  • Bachelor's Degree
  • Minimum of 6 years of experience in a similar service delivery role.
  • Strong knowledge of cybersecurity principles, technologies, and best practices.
  • Strong familiarity with relevant laws, regulations, and industry standards around cybersecurity.
  • LSU is dedicated to fostering an environment where our employees feel appreciated for their skills and individuality. If a candidate does not meet the minimum qualifications as listed but has substantial experience in the key job responsibilities, we encourage them to apply.

Senior Security Engineer-

  • Bachelor's Degree
  • Minimum of 7 years of experience in a similar service delivery role.
  • Strong knowledge of cybersecurity principles, technologies, and best practices.
  • Strong familiarity with relevant laws, regulations, and industry standards around cybersecurity.
  • LSU is dedicated to fostering an environment where our employees feel appreciated for their skills and individuality. If a candidate does not meet the minimum qualifications as listed but has substantial experience in the key job responsibilities, we encourage them to apply.

Preferred Qualifications:

Security Engineer and Senior Security Engineer-

  • Bachelor's degree in Engineering, Computer Science, Mathematics, or related field.
  • Prior experience in the educational or critical infrastructure sectors.
  • Experience in managing and delivering cybersecurity managed services.

Minimum Certifications:

Security Engineer-

  • Palo Alto Networks Certified Network Security Engineer (PCNSE) *May obtain within 12 months of employment*

Senior Security Engineer-

  • Palo Alto Networks Certified Network Security Engineer (PCNSE) certification (may obtain within 12 months of employment). 
  • Splunk Cloud Certified Admin (SCCA) certification (may obtain within 12 months of employment). 

Preferred Certifications:

Security Engineer and Senior Security Engineer-

  • Industry-recognized cybersecurity certification (e.g., CISSP, CISM, CISA).
  • Splunk Cloud Certified Admin (SCCA) certification.
  • Splunk Enterprise Security Certified Admin (SESCA) certification.
  • Information Technology Infrastructure Library (ITIL) Foundation certification.
     

Additional Information:

This position may be required to report to campus in times of emergency and/or closure per PS-18.

The senior security engineer is expected to be domiciled at LSU to support the SOC. Only the non-senior security engineer can be domiciled in other parts of Louisiana.


 

   

Additional Job Description:

Special Instructions:

A copy of your transcript(s) may be attached to your application (if available). However, original transcripts are required prior to hire.

Please provide three professional references including name, title, phone number and e-mail address.
An offer of employment is contingent on a satisfactory pre-employment background check.

For questions or concerns regarding the status of your application or salary ranges, please contact Mary Bordelon at mbordelon@lsu.edu.

   

Posting Date:

December 5, 2024

   

Closing Date (Open Until Filled if No Date Specified):

  

Additional Position Information:

Background Check - An offer of employment is contingent on a satisfactory pre-employment background check.

Benefits - LSU offers outstanding benefits to eligible employees and their dependents including health, life, dental, and vision insurance; flexible spending accounts; retirement options; various leave options; paid holidays; wellness benefits; tuition exemption for qualified positions; training and development opportunities; employee discounts; and more!

   

Positions approved to work outside the State of Louisiana shall be employed through Louisiana State University’s partner, nextSource Workforce Solutions, for Employer of Record Services including but not limited to employment, benefits, payroll, and tax compliance. Positions employed through Employer of Record Services will be offered benefits and retirement as applicable through their provider and will not be eligible for State of Louisiana benefits and retirement.

   

Essential Position (Y/N):

   

LSU is an Equal Opportunity Employer and SAME Agency:

LSU is designated as a State As a Model Employer (SAME) agency and provides assistance to persons needing accommodations or with the accessibility of materials. For those seeking such accommodations or assistance related to this search, we encourage you to contact the Office of Human Resource Management (hr@lsu.edu).

   

HCM Contact Information:

For questions or concerns related to updating your application with attachments (e.g., resumes, RS:17 documents), date of birth, or reactivating applications, please contact the LSU Human Resources Management Office at 225-578-8200 or email HR@lsu.edu.  For questions or concerns regarding the status of your application or salary ranges, please contact the department using the information provided in the Special Instructions section of this job posting.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0

Tags: C CISA CISM CISSP Cloud Compliance Computer Science Firewalls Incident response ITIL KPIs Mathematics Monitoring Network security Security assessment SOC Splunk Vulnerabilities

Perks/benefits: Career development Flex hours Gear Health care Team events

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.