Brown University Computing and Information Services
The Information Security Engineer is a member of the team responsible for implementation, monitoring, and maintenance of security systems, processes, policies, and compliance efforts in support of information security at Brown University. They work within CIS and consult with departmental technical contacts to ensure that university data and resources are adequately protected and maintained in accordance to university security policies and standards. The Information Security Engineer is involved with the evaluation, testing, and validation of the security of new products, solutions, and methodologies. They are a member of the Information Security Incident Response Team and participate in security incident response and forensic analysis as needed.
3-5 years combined IT and information security experience
An eagerness to constantly learn
Hands on experience with security systems, including technologies such as firewalls, web application firewalls, intrusion detection/protection systems, anti-virus software, authentication systems, log management, content filtering, penetration testing, and incident response
Ability to analyze, understand, and act upon vulnerabilities identified by security tools. Technical background necessary to determine who in the organization can address discovered vulnerabilities and the ability to clearly communicate the findings
Technical background necessary to identify threats to the environment, ability to propose potential solutions, and guide efforts to reduce or eliminate the threat
Ability to communicate technical issues to a wide variety of audiences
Ability to work in a fast-paced environment; ability to multi-task, change direction, effectively prioritize, and meet deadlines
Must be a strong independent contributor who can work with a variety of cross-functional teams
Familiarity with designing secure networks, systems, and application architectures in on-premise, private cloud, and public cloud environments
Familiarity with risk assessment tools, technologies, and methods
Familiarity with disaster recovery, computer forensic tools, technologies, and methods
Familiarity with endpoint security solutions, including file integrity monitoring and data loss prevention
Familiarity with compliance frameworks (NIST, ISO, CSF, COBIT) and regulations (FERPA, CJIS, FISMA)
Familiarity working with multiple operating systems (Windows, Mac OS, Linux, OneFS, IOS, iOS, Android)
Applicable security certifications desired
All offers of employment are contingent upon a criminal background check and education verification satisfactory to Brown in addition to CJIS requirements.
Recruiting Start Date:
Job Posting Title:
Information Security Engineer
Scheduled Weekly Hours:
Please note that in order to be considered an applicant for any staff position at Brown University you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application.
Brown University is committed to fostering a diverse and inclusive academic global community; as an EEO/AA employer, Brown considers applicants for employment without regard to, and does not discriminate on the basis of, gender, sex, sexual orientation, gender identity, national origin, age, race, protected veteran status, disability, or any other legally protected status.
Internal Number: REQ155030
About Brown University
Located in historic Providence, Rhode Island and founded in 1764, Brown University is the seventh-oldest college in the United States. Brown is an independent, coeducational Ivy League institution comprising undergraduate and graduate programs, plus the Alpert Medical School, School of Engineering, Executive Master of Healthcare Leadership and the IE Brown Executive MBA.