R&D Info Security Analyst,Sr

Position Title: R&D Info Security Analyst,Sr

Employee Classification: R&D Info Security Analyst,Sr

College/Division: Information Technology

Department: 450471-IT ENT NTWK PLANNING & ENGINEERING

Internal or External Search: External - Open to all applicants

Location: Las Cruces

Offsite Location (if applicable):

Target Hourly/Salary Rate:  To commensurate with qualifications

Appointment Full-time Equivalency:  1.0

Exempt or Non-Exempt:  Exempt

Summary:  Seeking a Network Security & DevOps Specialist to design and manage security countermeasures, architect security practices for on-prem and cloud, and streamline DevOps operations. Responsibilities include automating processes, facilitating development and operations, setting up continuous build environments, guiding teams through technical challenges, monitoring technical operations, staying informed on competitor technology infrastructures, and implementing security best practices. Metric collection and performance verification of networks and systems are essential. Join us to fortify our security and enhance our DevOps processes.

Classification Summary:
Provide advanced technical support for Information Assurance theoretical and technology assessments of Computer Network Operations. Monitors, evaluates, and maintains systems and procedures to protect the data systems and databases from unauthorized users. Identifies potential threats and responds to reported security violations. Determines causes of security violations and recommends corrective actions to ensure data security. Possesses and applies broad knowledge of principles, practices and procedures to the completion of moderately difficult assignments.

Classification Standard Duties:
Conduct information assurance certification and accreditation testing and analysis for systems to determine vulnerabilities. Support penetration testing, threat CNO testing, information assurance protect/detect/react/respond analysis and evaluation. Participates in defining and implementing overall security strategy, policies, and procedures. Provides security advice and guidance to systems engineers and management. Performs security audits, risk analysis, and application-level vulnerability testing and reviews. Collaborates on solutions to mitigate risks and enhance system security. Researches, recommends, and implements changes to procedures and systems to enhance data systems security. Leads security projects including requirements definition, task planning, research, testing, implementation, and management. Usually works with minimum supervision, conferring with superior on unusual matters. Assignments are broad in nature, usually requiring originality and ingenuity. Has appreciable latitude for un-reviewed action or decision. May oversee the supervision of other personnel as needed. Performs miscellaneous job-related duties as assigned.

Required Education, Experience, Certification/License, Equivalency
Required Education:Bachelor's degree in a related field.; Required Experience:Five (5) years of experience directly related to the standard duties as outlined.; Equivalency:None; Required Certification/License:

Knowledge, Skills and Abilities
- Advanced knowledge of information security and computer network access technologies - In-depth technical knowledge of data protection and integrity, operating systems and network security, authentication, and security protocols
- Experience in vulnerability/survivability assessments of information technologies, threat Computer Network Operations experimentation, Information Assurance certification and accreditation, research/development, and vulnerability assessments of systems - Experience in supporting research and development/evolution of tools, techniques and methodologies - Experience in support of customers in conducting information assurance certification and accreditation testing and analysis - Experience in supporting penetration testing, threat CNO testing, IA protect/detect/ react/respond analysis and evaluation
- Ability to support customers by performing security audits, risk analysis, and application-level vulnerability testing and reviews - Ability to analyze and evaluate systems and provide recommendations and solutions - Ability to collaborate on solutions to mitigate risks and enhance system security • Familiarity with DOD Information Assurance Certification and Accreditation Process (DIACAP)

Job Duties and Responsibilities
• Design, implement and manage security countermeasures when network vulnerabilities arise
• Architecting overall, comprehensive, and efficient network security practices for on-prem and cloud
• Analyze, engineer, and execute information security functions
• Analyzing, executing, and streamlining network security DevOps practices
• Automating processes with the right tools while maintaining network security
• Facilitating development process and operations
• Establishing a suitable DevOps channel across the organization
• Setting up a continuous build environment to speed up software and network security development and deployment processes
• Guiding developers and operational teams in case of an issue
• Monitoring, reviewing, and managing technical operations in respects to Network Security
• Stay abreast of how technology infrastructures are currently impacting and driving competitors.
• Determine production direction while implementing information/Network security best practices
• Metric collection to verify performance of networks and computer systems.

Preferred Qualifications

Special Requirements of the Position

Department Contact:  Jasmine Gomez, 575-646-3685, jgomez12@nmsu.edu

Contingent Upon Funding: Not Applicable

Bargaining Unit Eligibility: This is NOT a bargaining unit position with American Federation of State, County & Municipal Employees (AFSCME).

Standard Work Schedule: Standard (M-F, 8-5)

If Not a Standard Work Schedule: 

Working Conditions and Physical Effort

Environment: Work is normally performed in a typical interior/office work environment.

Physical Effort: No or very limited physical effort required.

Lifting Requirements: Requires handling of average-weight objects up to 10 pounds or some standing or walking.

Risk: No or very limited exposure to physical risk.