Advertised Summary Job Description: Reporting to the Director, Cybersecurity the Network Security Analyst will be responsible for Columbia University's (CU)-wide Vulnerability Management practice. This will include detection and monitoring of new emerging vulnerabilities and threats. Proactive monitoring of dashboards, reports, network security architecture implementation, and liaising with University constituents on network security risks remediation.
CHARACTERISTIC DUTIES AND ESSENTIAL RESPONSIBILITIES: -Acts as a point person for remediation efforts of vulnerabilities identified through the vulnerability management process. -Works to establish a holistic vulnerability management program to address network and web application vulnerabilities. -Performs vulnerability assessments using a combination of commercial and open source tools as well as hands on reviews. -Liaises with other information technology groups to establish communication for remediation. -Partners with IT departments across campus to review, select, and integrate the vulnerability management process. -Provides technical analysis of vulnerabilities to administrators and assist in formulation of vulnerability mitigation plans. -Supports CUIT's initiative to expand into cloud environments, ensuring configuration and vulnerability management is maintained. -Maintains expert level of cloud computing and security to expand vulnerability management program into the cloud. -Analyzes the results of penetration tests, vulnerability assessments and code reviews, write reports based on that analysis, and advise management of vulnerabilities, risk and mitigation. -Maintains ongoing awareness of shifts in threat landscape and attacker methodologies; recommends appropriate strategic and operational changes to the security program to address new threats. -Works with Investigation team(s) on serious security violations and conducts root cause analysis for operational security issues. -Participates in required "on-call" rotations requiring night and weekend availability as scheduled, provide additional availability 24/7 when necessary. -Designs strategy to implement effective vulnerability management leveraging automated technology. -Responsible for creating, maintaining dashboards that monitor network wide vulnerabilities KPIs. -Reviews alerts and data from systems and responds accordingly, including documentation and escalation. -Recommends and implements mitigating actions to contain incident related activity. -Support response teams during security incidents (phishing, DDOS, malware, etc) through resolution and to lessons learned stage. -Participates in incident response efforts as secondary resource -All other duties as assigned.
General Minimum Qualifications: -Bachelor's degree or equivalent required. -Minimum 3-5 years' related experience.
Additional Specific Minimum Qualifications: -3+ years' experience in Vulnerability Management. -3+ years' experience using OpenVas, Nessus, Qualys, Nexpose, Appspider, Burp Suite etc. -3+ years' experience of building alerts and dashboards to support the Vulnerability Management program. -Knowledge of vulnerabilities in various operating systems, databases and networks in relation to hardening, configuration, deployment and administration. -Experienced in level of exploits (Buffer Overflows and Privilege escalation). -Experienced level of web application exploits (SQLi, Cross-site Scripting and CSRF) -Strong understanding of networking concepts, network security architecture and common modern operating systems, including Windows, Mac OS X, Linux, Unix, and mobile device platforms including Android and iOS. -Excellent written and verbal communication skills. -Demonstrated ability to work in a fast-paced, deadline driven environment. -Demonstrated excellence in a variety of competencies including teamwork/collaboration, analytical thinking, communication and influencing skills, and technical expertise. -Ability to work with changing priorities and with multiple projects. -Ability to be precise and attentive to detail is essential. -Ability to work with minimal supervision. -Ability to work weekend and off-hour work as and when needed.
Preferred Qualifications: -Advanced degree in the Computer Science or technology field. -Network security and penetration testing experience. -Knowledge of various security and risk assessment tools. -Diverse knowledge of information technologies and security products. -Experience with security/identity access management projects. -Experience in presentation of information security to diverse group of non-security professionals in IT settings and/or Stakeholders. -Knowledge of IT security regulations and best practices. - Security certifications preferred. (eg. SANS, ISC2, ISCAC and EC-Council). -Vulnerability Management specific certifications preferred (Nexpose, Nessus, Qualys etc). -Cloud security specific certification preferred (AWS, GCP, Cloud+).
As a member of the National Collegiate Athletic Association (NCAA) and the Council of Ivy Group Presidents (Ivy League), it is imperative that members of the Columbia University community, in all matters related to the intercollegiate athletics program, exhibit the highest professional standards and ethical behavior with regard to adherence to NCAA, Conference, University, and Department of Intercollegiate Athletics and Physical Education rules and regulations.
Columbia University is an Equal Opportunity/Affirmative Action employer.
Internal Number: 126_172719
About Columbia University
Columbia University is one of the world's most important centers of research and at the same time a distinctive and distinguished learning environment for undergraduates and graduate students in many scholarly and professional fields. The University recognizes the importance of its location in New York City and seeks to link its research and teaching to the vast resources of a great metropolis. It seeks to attract a diverse and international faculty and student body, to support research and teaching on global issues, and to create academic relationships with many countries and regions. It expects all areas of the university to advance knowledge and learning at the highest level and to convey the products of its efforts to the world.