View Full Version : Network Security Architect Opening - University of Kansas - Lawrence, KS

2010-11-09, 16:10
Direct Link: https://jobs.ku.edu/applicants/Central?quickFind=94681

Application Deadline: 11-30-2010

Position Overview

Position works with limited supervision to provide technical and project team leadership for multiple complex Network Projects involving new technologies and/or network architectures in support of strategic plans.

The Network Security Engineer is primarily responsible for the University of Kansas network security Infrastructure throughout the entire Enterprise. This position acts as a liaison between Network Architecture group and Information Security groups within the organization.

As a primary focus, the network security engineer is responsible for design, maintenance, and administration of network security devices and providing top tier support for firewall and IDS/IPS infrastructure. In this focus area, the Network Security Engineer will support the IT Security Office and other key University stakeholders.

The position involves leadership for researching, developing, testing, implementing, and staff training for centrally managed network security infrastructure.
Position requires critical analysis of complex equipment, data, and situations, often-involving teams with diverse views and priorities.

Position requires well-developed communication skills and the ability to establish personal, positive working relationships with peers, customers, and University Departments.

Supervisory Responsibilities: Student Assistants (1-2)

Position requires participation in a rotating on-call.

Required Qualifications

1. Bachelor's degree from an accredited four year college or university OR a minimum of 6 years of relevant experience in Computer Science, Engineering, Information Technology, or a related discipline.
2. Two (2) years experience with Enterprise grade firewall infrastructure.
3. One (1) year experience with Unix/Linux based operating systems.
4. Two (2) years experience with principles and techniques of communication network design, development, installation, configuration, and problem diagnosis in at least 6 of the following areas:
* LAN (layer 2) equipment, trunking, VLANs and VTP domains
* WAN (layers 3) equipment and routing protocols.
* Security devices, Firewalls, Intrusion Detection and Prevention equipment, Virtual Private Network, etc.
* Data Network transport technologies, including Ethernet, 10BaseT, 100BaseT, 1000BaseT, 1000BaseTX, T1, etc.
* Use of complex electronic diagnostic/test equipment, protocol analyzers, management systems, and network monitoring tools used to identify, characterize, and analyze networking problems and resolve problems in a complex network
* IP addressing, subnets, and Classless Inter-Domain Routing (CIDR)
* The OSI model, IEEE 802.X protocols, TCP/IP, multicast (IGMP, PIM, MBGP, MSDP), SNMP, OSPF, BGP, BGP4+
* Network transport security issues, including Denial Of Service attacks, IP spoofing, port scanning, etc

Preferred Qualifications

1. A degree in Computer Science, Engineering, Information Technology, or a related discipline
2. Experience with the following:
* Checkpoint technologies including NGX R70, Power-1 Appliances, and Provider-1
* Cisco ASA appliance firewall
* Enterprise IDS/IPS
* network monitoring tools such as Zenoss, Solarwinds Orion, and Cacti
* developing and maintaining data network documentation and diagrams
* IPv6, H.323, VoIP, SNMP, Windows system administration, IPTables
* securing Wireless and VoIP
CheckPoint CCMA, CCSE, or CCSA Certification
Professional certifications, e.g. (CISSP, CISA, CCNA, CCDP, CCSP, etc.)
Hands on implementation of security controls for industry regulations such as PCI, HIPAA, FERPA
Strong Linux system administration skills
Incident response in relation to network security

To apply or for more information please visit: https://jobs.ku.edu/applicants/Central?quickFind=94681