Cloud Security Engineer (Information Security Analyst 2)

Apply now Search #: 494465
Work type: Full-time
Location: Hartford Campus
Categories: Information Technology

JOB SUMMARY

The University of Connecticut (UConn), Analytics and Information Management Solutions (AIMS) group (http://aims.uconn.edu) is seeking to hire Cloud Security Engineers to interact and coordinate across technology teams to be a thought leader and sounding board to analyze business drivers/impacts to design, develop, implement and manage a cloud-based security architecture. These positions will design and manage the security infrastructure, security, and workflows for moving, processing, storing, and consuming of large amounts of healthcare data that will be used by data scientists, engineers, or data analysts to design and develop an analytics and information management solution

UConn AIMS, working with the State of CT’s Office of Health Strategy (OHS), is leading the design, development, and implementation of the Core Data Analytics Solution (CDAS), which will leverage leading-edge technologies to curate, process, and enhance large amounts of healthcare data to fuel the analytics to support state-wide healthcare initiatives.

DUTIES AND RESPONSIBILITIES

  1. Design, build, assess, remediate, and operate Identity and Access Management (IAM) and Privilege Access Management (PAM) solutions for cloud hosted environments.
  2. Design and implement security systems, tools, infrastructure and frameworks to protect system users’ identities and data against all types of threat and adversaries.
  3. Assist in development and implementation of security process and procedures. Generate security metrics and reports and provide remediation actions as needed.
  4. Design, Develop, Install, and configure security related software and firmware solutions that meet specific security requirements.
  5. Evaluate and design of IaaS, PaaS, and SaaS cloud infrastructure, along with demonstrating security portfolio of solutions to keep information systems away from threats.
  6. Develop security automation and APIs in the public cloud across the key pillars of security namely IAM, security logging, incident response, data protection, compliance validation, security analytics, vulnerability management, platform and application threat modeling.
  7. Conduct vulnerability assessments and monitor systems, networks, and databases for possible security breaches and recommends improvements. Assist with investigations of security events (e.g., unauthorized access, non-compliance with policies, fraud, service exploitation, etc.) to determine malfunctions, breaches, and remediation steps. Respond to service issues, problems, and critical situations to support resolution and minimize downtime.
  8. Review new and existing cloud hosted products and services for threat-centric vulnerabilities and asses the health and security of cloud network architectures.
  9. Interact daily with the infrastructure team members, systems administrators, data governance, IT management, and business teams.
  10. Work closely with and collaborate with both engineers, architects, business users, and leaders on architecture and security models.

MINIMUM QUALIFICATIONS

  1. Bachelor’s degree in Software Engineering, Computer Science, Information Security, or Science, Technology, Engineering and Mathematics (STEM) discipline and 2 or more years’ experience with domain knowledge in infrastructure security and identity and access management products in a cloud environment (Azure, AWS, etc.) OR 6 years of related experience and  1-3 years of experience working in an information security role or supporting an information security program that demonstrates experience in at least one information security domain including: Security Awareness, Vulnerability Management, Cyber-defense, Incident Response and Forensics, or Security Architecture.
  2. Experience with various IT governance frameworks and standards like ISO-27000, COBIT, SOX, PCI, and/or HIPAA.
  3. Working experience of information security controls, guidelines and standards, e.g. OWASP, CSA CCM, CIS 20 Critical Security Controls, SOC 2, and/or NIST.
  4. Architected and engineered solutions relating to layered security products such as IPS, Proxy, Firewalls, OAuth, OpenID Connect, SAML, Multifactor Authentication (MFA), and/or endpoint security solutions.
  5. Extensive knowledge of architectures including (but not limited to): MS Active Directory, DNS, DHCP, WINS, IP, LDAPS, NAP, PKI, Enterprise Group Policy Management, and/or Security protocols (IPSEC/TLS/EAP).
  6. Experience with Identity Management solutions, Kerberos, SSO, OAuth, SAML, Encryption, and/or PKI management.
  7. Working knowledge with AWS IAM, Azure AD, Microsoft Active Directory Security, Security Assertion Markup Language (SAML), Single Sign-On technologies, authentication technologies, encryption technologies, and/or techniques.
  8. Strong verbal and written communications skills and ability to communicate effectively across diverse teams, collaborating with team members.

PREFERRED QUALIFICATIONS

  1. Master’s degree in Software Engineering, Computer Science, Information Systems, or a related Science, Technology, Engineering and Mathematics (STEM) discipline.
  2. Experience implementing solutions and security frameworks built on AWS, Azure, or Google Cloud.
  3. Experience with Cloud IaaS, PaaS, and SaaS including readiness, provisioning, security, and/or governance.
  4. Experience with the Azure cloud platform.
  5. Experience with various healthcare formats and reference data sets, such as, HL7, claims, eCQMs, drug/pharmacy, clinical notes, and/or lab results.
  6. Demonstrated experience implementing security components, such as data encryption, masking, and/or data use entitlements.
  7. One or more certification: CEH (Certified Ethical Hacker), ZCCA (Zscaler Certified Cloud Administrator), CCNA (Cisco Certified Network Associate), CCSA (Checkpoint Certified Security Associate), or CCSE (Checkpoint Certified Security Expert).

APPOINTMENT TERMS

This is a full-time, grant-funded position that is subject to annual renewal depending on available funding and job performance.  The typical work schedule is Monday – Friday but flexibility, including working occasional evening and weekend hours should be expected.  Salary will be commensurate on the successful candidate’s background and experience. Work location is at the Hartford campus.

TO APPLY

Please apply online at https://hr.uconn.edu/jobs, Staff Positions, Search #494465 to upload a resume, cover letter, and contact information for three (3) professional references.

Employment of the successful candidate is contingent upon the successful completion of a pre-employment criminal background check. 

This job posting is scheduled to be removed at 11:55 p.m. Eastern time on May 22, 2020. 

All employees are subject to adherence to the State Code of Ethics which may be found at http://www.ct.gov/ethics/site/default.asp.

The University of Connecticut is committed to building and supporting a multicultural and diverse community of students, faculty and staff. The diversity of students, faculty and staff continues to increase, as does the number of honors students, valedictorians and salutatorians who consistently make UConn their top choice. More than 100 research centers and institutes serve the University’s teaching, research, diversity, and outreach missions, leading to UConn’s ranking as one of the nation’s top research universities. UConn’s faculty and staff are the critical link to fostering and expanding our vibrant, multicultural and diverse University community. As an Affirmative Action/Equal Employment Opportunity employer, UConn encourages applications from women, veterans, people with disabilities and members of traditionally underrepresented populations.

Advertised: Eastern Daylight Time
Applications close: Eastern Daylight Time

Back to search results Apply now Refer a friend

Share this:

| More