| Advertised Summary Job Description: Columbia University Information Technology (CUIT), supports mission critical technology for over 40,000 faculty, staff and students. Our Core Values: Innovation; Trust; Performance; Respect; One Team (ITPRO), are the cornerstones of our organization. These values underlie our work, how we interact with each other and which strategies we employ to fulfill our mission. Come join our team!|
In addition to generous annual leave, holiday paid time off and flexible work arrangements, Columbia offers a rich benefits package that allows our employees to choose the features that best fit their individual or family needs. Benefit options include retirement plans, health insurance with dental and vision plans, and tuition benefits for yourself and dependent children.
Reporting to the Director, Network Security Operations the Network Security Operations Manager is responsible for day-to-day CU-wide network security operations, which includes but not exclusive to oversight of all enterprise network security operations functions such as: incident response, detection and monitoring of network traffic anomalies, CU Data Loss Prevention (DLP) program, creation and monitoring of dashboards, network security architecture implementation, and liaise with University constituents on network security scanning and remediation. The incumbent will manage the Network Security Operations team, comprising of Network Security Analyst and DLP Administrator.
CHARACTERISTIC DUTIES AND ESSENTIAL RESPONSIBILITIES:
-Ensures successful execution of the core functions of the Network Security Operations team, including: threat detection and prevention, incident response, systems and network security monitoring, forensics, vulnerability management, and data loss prevention at enterprise scale.
-Assigns staff to various tasks, supervises and directs their activities, reviews and evaluates their work performance.
-Evaluates and hires new staff members as required.
-Compiles information and prepares computer security incident reports.
-Investigates anomalous activity of network and systems logs.
-Creates and maintains dashboards that monitor network security and DLP KPIs.
-Maintains ongoing awareness of shifts in threat landscape and attacker methodologies; recommends appropriate strategic and operational changes to the security program to address new threats.
-Serves as an internal information security consultant on information security projects/initiatives, automation of security testing in new projects as assigned by the Network Security Operations Director.
-Participates in the University's major new systems implementation projects, as assigned by the Network Security Operations Director, to ensure that appropriate security controls are built into system prior to production cutover.
-Liaises with other information technology groups in investigation and resolution of security incidents.
-Performs ongoing system and network health checks on identified high risk network segments, systems, and applications and follows up on remediation.
-Manages the monitoring of intrusion detection and security information management systems to discover and mitigate malicious activity on networks.
-Reviews and correlates logs and messages to identify instances of possible security infractions or vulnerabilities.
-All other duties as assigned.
General Minimum Qualifications: -Bachelor's degree or equivalent required. Advanced degree desirable.
-5-7 years related work experience
Additional Specific Minimum Qualifications: -Operational and managerial experience with core security operations functions, including some or all of: incident response, vulnerability management, network and security monitoring, network access control, and data loss prevention.
-Understanding of net flow, packet analysis, DNS, system log file analysis, forensics tools, and other alerts to conduct incident response activities.
-Understanding of networking concepts, network security architecture and common modern operating systems, including Windows, Mac OSX, Linux, Unix, and mobile device platforms including Android and iOS.
-Experience in presentation of information security to diverse group of non-security professionals in IT settings and/or Stakeholders.
-Knowledge of IT security regulations and best practices
-Excellent written and verbal communication skills.
-Demonstrated ability to work in a fast-paced, deadline driven environment.
-Demonstrated excellence in a variety of competencies including teamwork/collaboration, analytical thinking, communication and influencing skills, and technical expertise.
-Ability to work with changing priorities and with multiple projects.
-Ability to be precise and attentive to detail is essential.
-Ability to work with minimal supervision.
-Ability to work weekend and off-hour work as and when needed.
Preferred Qualifications: -3+ years of management experience.
-BS degree in Computer Science is a plus.
-Diverse knowledge of information technologies.
-Previous experience with security/identity projects
As a member of the National Collegiate Athletic Association (NCAA) and the Council of Ivy Group Presidents (Ivy League), it is imperative that members of the Columbia University community, in all matters related to the intercollegiate athletics program, exhibit the highest professional standards and ethical behavior with regard to adherence to NCAA, Conference, University, and Department of Intercollegiate Athletics and Physical Education rules and regulations.
Columbia University is an Equal Opportunity/Affirmative Action employer.