DevSecOps Engineer
University of Minnesota-Twin Cities
Twin Cities, MN
ID: 7287769
Posted: 1 month ago
Application Deadline: Open Until Filled
Job Description
Systems Security Operations (60%)
As a leading member of the ASO Security team, and with consultation from the RI Security Assurance Team, analyze security and policy requirements for infrastructure platforms, linux systems, storage platforms, network devices, and other related systems.
Design, test, and implement appropriate security technologies and controls, in collaboration with operations staff, via systems orchestration or other appropriate tools.
Coordinate response to issues raised by monitoring operations, both internally and from the RI Security Assurance Team.
Ensure controls meet both research usability and security requirements.
Systems Operations (20%)
Identify and remediate system operational and performance issues; in particular those related to or resulting from implemented security and policy controls.
Participate in operations project teams based on current needs for security and policy expertise.
Support and Planning (10%)
Act as a security-related subject matter expert to assist with related end user issues escalated from MSI's helpdesk.
Prioritize, plan, and scope tasks, assignments, and projects with minimal supervision.
Manage tickets, tasks, and projects in MSI's relevant tracking systems.
General activities (10%)
Explore the use of new technologies to solve unique problems and keep MSI on the cutting edge.
Provide internal and external user support for escalated issues relating to MSI resources.
Participate in tracking of security vulnerabilities, devise mitigation strategies, and monitor their implementation.
Pursue professional development though relevant training, workshops, conferences and independent studies.
Publish papers or presentations to share findings and help further the field of Research Computing.
Participate in a lightweight 24x7 on-call rotation.
The Research Innovation Office (RIO) and Minnesota Supercomputing Institute (MSI) endorse a “work with flexibility” approach that offers a welcoming and flexible work environment where everyone is inspired to do their best. This position has been designated as Work Profile 2. Profile 2 is expected to work on-site more than 50% of the time and your office will be located in Walter Library on the Twin Cities campus. MSI's management retains the right to modify flexible work arrangement agreements on a temporary or permanent basis for any reason at any time. MSI has a strong commitment to the University’s goal of creating a positive and inclusive campus climate by advancing equity and diversity. We aim to hire high-potential individuals with varying identities and backgrounds.
Qualifications
Required Qualifications
BA/BS degree and at least 4 years of work experience in Linux Systems Administration and Security (or a closely related field), or Masters degree and at least 2 years of experience.
Linux systems and infrastructure operations experience.
Excellent oral and written communication and leadership skills.
Able to work independently with periodic guidance.
Preferred Qualifications
These are areas we consider of particular interest, but are not requirements:
Linux HPC or research computing environment(s).
Experience deploying SIEM tools in a linux environment (eg Wazuh, CIS-CAT, Security Onion), and their application to compliance benchmarks, file integrity monitoring, etc.
Familiarity with systems configuration management environments (eg Puppet, Salt, Ansible, etc.).
Experience implementing security and policy controls while balancing systems usability and performance.
Experience with software integrity validation tools using SBOMs or similar technologies.
Experience with implementation of HIPAA, HITRUST, FISMA, or NIST security policies and related systems configuration.
As a leading member of the ASO Security team, and with consultation from the RI Security Assurance Team, analyze security and policy requirements for infrastructure platforms, linux systems, storage platforms, network devices, and other related systems.
Design, test, and implement appropriate security technologies and controls, in collaboration with operations staff, via systems orchestration or other appropriate tools.
Coordinate response to issues raised by monitoring operations, both internally and from the RI Security Assurance Team.
Ensure controls meet both research usability and security requirements.
Systems Operations (20%)
Identify and remediate system operational and performance issues; in particular those related to or resulting from implemented security and policy controls.
Participate in operations project teams based on current needs for security and policy expertise.
Support and Planning (10%)
Act as a security-related subject matter expert to assist with related end user issues escalated from MSI's helpdesk.
Prioritize, plan, and scope tasks, assignments, and projects with minimal supervision.
Manage tickets, tasks, and projects in MSI's relevant tracking systems.
General activities (10%)
Explore the use of new technologies to solve unique problems and keep MSI on the cutting edge.
Provide internal and external user support for escalated issues relating to MSI resources.
Participate in tracking of security vulnerabilities, devise mitigation strategies, and monitor their implementation.
Pursue professional development though relevant training, workshops, conferences and independent studies.
Publish papers or presentations to share findings and help further the field of Research Computing.
Participate in a lightweight 24x7 on-call rotation.
The Research Innovation Office (RIO) and Minnesota Supercomputing Institute (MSI) endorse a “work with flexibility” approach that offers a welcoming and flexible work environment where everyone is inspired to do their best. This position has been designated as Work Profile 2. Profile 2 is expected to work on-site more than 50% of the time and your office will be located in Walter Library on the Twin Cities campus. MSI's management retains the right to modify flexible work arrangement agreements on a temporary or permanent basis for any reason at any time. MSI has a strong commitment to the University’s goal of creating a positive and inclusive campus climate by advancing equity and diversity. We aim to hire high-potential individuals with varying identities and backgrounds.
Qualifications
Required Qualifications
BA/BS degree and at least 4 years of work experience in Linux Systems Administration and Security (or a closely related field), or Masters degree and at least 2 years of experience.
Linux systems and infrastructure operations experience.
Excellent oral and written communication and leadership skills.
Able to work independently with periodic guidance.
Preferred Qualifications
These are areas we consider of particular interest, but are not requirements:
Linux HPC or research computing environment(s).
Experience deploying SIEM tools in a linux environment (eg Wazuh, CIS-CAT, Security Onion), and their application to compliance benchmarks, file integrity monitoring, etc.
Familiarity with systems configuration management environments (eg Puppet, Salt, Ansible, etc.).
Experience implementing security and policy controls while balancing systems usability and performance.
Experience with software integrity validation tools using SBOMs or similar technologies.
Experience with implementation of HIPAA, HITRUST, FISMA, or NIST security policies and related systems configuration.