Technology Security Officer position at San Diego State University

[Felecia Vlahos <fvlahos () COX NET>]

Please share the following job opening at San Diego State University with  
everyone who might be qualified or interested in applying.

Job #2145, Technology Security Officer (Administrator II), Information  
Technology Security Office.  This position will remain open until filled  
and will be open to both internal and external candidates.    Announcement  
listed at:

 https://cmsweb.cms.sdsu.edu/psp/HSDPRDF/EMPLOYEE/HRMS/c/HRS_HRAM.HRS_CE.GBL?Page=HRS_CE_HM_PRE&Action=A&SiteId=1

Job Announcement

 Job Title:  Technology Security Officer (Administrator II), Information  
Technology Security Office

 Job ID:  2145

 Location:  San Diego Main Campus

 Full/Part Time:  Full-Time

 Regular/Temporary:  Regular

 Position Information

 This position is in the Management Personnel Plan (Administrator II) and  
earns management benefits.  The benefits include medical, dental, vision,  
$100,000 life insurance plan, and the CalPERS pension plan.  For more  
information on benefits included for this position please copy and paste  
this link into your browser  
https://www.calstate.edu/Benefits/Summaries/2007_MPP.pdf

 Reporting to the campus CIO, the Technology Security Officer provides a  
central point of contact for the coordinated security effort on campus and  
provides technical support and network design for firewalls, intrusion  
detection systems, VPN solutions, security auditing and vulnerability  
services.  Information Technology at SDSU is highly distributed and it is  
essential that this position provides security consultation and education  
services for the campus community.  The position also oversees and manages  
essential campus infrastructure systems critical to campus security such  
as DNS, authentication systems, and network security management and  
monitoring systems.   This position works with the data network management  
to develop router, switch, firewall and other equipment configurations  
that maximize security. To that end, the incumbent will work closely with  
all divisions on campus, with management and staff from those divisions.

 The incumbent will work closely with the Information Security Officer  
(ISO) and together with the ISO shall comprise the Information Technology  
Security Office. While the Technology Security Officer has more tactical,  
technical responsibilities, the incumbent and the ISO will be jointly  
charged with development of the security policy and plans.

 Salary Range

 The competitive salary offered to the selected candidate is determined by  
the education, experience, and qualifications the candidate brings to the  
position, internal equity, and the hiring department's fiscal resources.

 Responsibilities

 The Technology Security Officer is responsible for, but not limited to,  
the following: working with the Information Security Officer and other IT  
campus staff, reviewing and assisting in revising the campus Information  
Security Plan and IT Risk Management Plan; consulting with campus users  
and departments to determine security goals and objectives and design and  
implement a security solution, including firewall and network design,  
security policies and procedures; designing, configuring and maintaining  
campus networking security infrastructure including firewalls, intrusion  
detection systems, and VPN solutions; performing security audits of campus  
systems including campus security scanning, intrusion detection probes,  
system log files, and system applications, configurations and procedures;  
collaborating on campus network security events; providing security  
consultation and education for the campus community including IT Security  
meetings and system administration and security mailing lists; enforcing  
CSU and campus security policies and procedures; performing system  
administration duties on the following security systems: DNS, firewalls  
(border and internal), authentication systems (e.g. VPN), network security  
management, vulnerability scanners, and maintaining system security;  
installing and customize software as needed; cross-training ITSO and  
campus staff in security procedures and system administration functions;  
documenting all policies, procedures, and configurations on ITSO systems;  
providing campus user support as needed; supervising Security Analyst; and  
performing other duties as assigned.

 Knowledge, Skills & Abilities

 The ideal candidate will possess the ability to write clear and complete  
documentation, including policies and procedures for highly complex  
systems and information security; provide technical security education to  
campus technical staff; and to develop emergency procedures in response to  
campus network security incidents and experience with recovering and  
protecting computer systems from such attacks.  Knowledge and experience  
with the networking and security aspects of Unix/Linux, and Microsoft  
Windows operating systems; techniques used to penetrate and bypass  
computer network security; techniques used to identify security problems  
in computer and network systems; security aspects of all major operating  
systems including UNIX, Microsoft Windows, Apple MacOS, Cisco IOS, Juniper  
OS; network systems including routers, switches, firewalls, VPN devices;  
Cisco, and Juniper networking and firewall products; networking protocols,  
network topologies, and the direction of standards-based technologies  
currently in use; encryption technologies, including VPN solutions, SSH,  
SSL, TLS, IPSec; authentication systems including Kerberos, RADIUS,  
TACACS; current security attacks and countermeasures, network monitoring  
and auditing procedures; with network and system auditing and analysis  
tools; in building, configuring, installing, maintaining and  
troubleshooting critical enterprise systems and services including DNS,  
DHCP, NTP, HTTP, software; and of UNIX security procedures, both in system  
administration and programming.  Excellent system administration and  
troubleshooting skills, specifically in Sun Solaris and Linux  
environments.  Excellent troubleshooting skills.

 Experience and Education

 Bachelor's degree in a related field, such as computer science, business  
administration, or information science and security and minimum of five  
years of professional experience in information security, information  
technology or related field, or equivalent. Experience in developing and  
administering an information security program, including but not limited  
to the following: Extensive experience designing, and implementing, secure  
network architectures, firewalls and computer systems in an enterprise  
environment; working with end users; developing, and implementing, audit  
procedures to help prevent future intrusions; and with IT disaster  
recovery planning.

 Specialized Requirements

 Excellent project management, written and oral communication skills.   
Ability to work collaboratively with a broad range of constituencies.   
Excellent system programming skills in a UNIX environment using languages  
such as  Perl, C, operating system shell scripting.  Strong database  
skills.  Valid California Driver's License.

 Preferred Qualifications

 Master's degree in related field such as business administration with a  
specialization in information security management.  Security and network  
certifications, for example: Global Information Assurance Certification  
(GIAC), International Information Systems Security Certification  
Consortium (ISC2), Cisco Certified Network Architect (CCNA) /CCIE/CCSP.   
Experience working with a Governance, Risk and Compliance tools.   
Experience managing IT security in a higher education environment.