IT Security Engineer

Duties and Responsibilities

• Identify, define, and document system security requirements and recommend solutions to management.
• Identify weaknesses in current information security solutions.
• With input and consultation with the Chief Information Security Officer, understand University security standards and apply it to systems under area of responsibility.
• Configure, troubleshoot, and maintain security infrastructure software and hardware.
• Install software that monitors systems and networks for security breaches and intrusions.
• Identifying current and emerging technology issues including security trends, vulnerabilities, and threats.
• Monitor systems for irregular behavior and set up preventive measures.
• Plan, develop, implement and update NSU’s information security strategy.
• Educate and train staff on information system security best practices.
• Develop, execute, and track the performance of security measures to protect information and network infrastructure and computer systems.
• Automate security responses where determined reasonable.
•  Develop, execute, and track the performance of security measures to protect information and network infrastructure and computer systems.

Minimum Qualifications:

• Expertise across a variety of security products including firewalls, URL filtering, information security and virus protection.
• Strong understanding of networking concepts and protocols, such as TCP/IP, VLANs, VPNs, and routing/switching.
• General understanding of industry standards and requirements for information security management, state and federal statutes, and third-party security assessments.
• Demonstrated experience in Internet and network security products and platforms, including intrusion detection, intrusion prevention, incident response, vulnerability assessments, and penetration testing.
• Proven ability to work under pressure in emergencies and communicate security-related concepts to technical and non-technical staff.
• Strong analytical, project management, and team-oriented interpersonal skills.

Preferred Qualifications:

• Bachelor’s degree in computer science, Information Technology, or related field.
• Relevant professional certifications, such as CISSP, CISM, CEH, or other security certifications.
• Minimum of 3-5 years of experience in system security engineering, network security, or a related field.
• Knowledge of common authentication technologies including OAuth, SAML, CAs, Radius, OTP/TOTP.
• Excellent analytical, problem-solving, and troubleshooting skills.
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
• Experience with Cloud Application Platforms, Microsoft 365, or other similar platforms.
• Outstanding communication skills that go beyond “tech talk” – the ability to translate complex IT matters to those without an IT background.
• One or more years of experience in higher education.