Advertised Summary Job Description: Columbia University Information Technology (CUIT), supports mission critical technology for over 40,000 faculty, staff and students. Our Core Values: Innovation; Trust; Performance; Respect; One Team (ITPRO), are the cornerstones of our organization. These values underlie our work, how we interact with each other and which strategies we employ to fulfill our mission. Come join our team!
In addition to generous annual leave, holiday paid time off and flexible work arrangements, Columbia offers a rich benefits package that allows our employees to choose the features that best fit their individual or family needs. Benefit options include retirement plans, health insurance with dental and vision plans, and tuition benefits for yourself and dependent children.
Reporting to the CISO & AVP, Security & Identity Access Management, the Network Security Operations Director will be responsible for leading and managing Columbia University (CU)-wide network security operations, which includes but is not exclusive to oversight of all enterprise network security operations functions such as: incident response, detection and monitoring of network traffic anomalies, CU Data Loss Prevention (DLP) program, creation and monitoring of dashboards, network security architecture implementation, and liaising with University constituents on network security risks remediation.
CHARACTERISTIC DUTIES AND ESSENTIAL RESPONSIBILITIES: -Oversees CU network security operations. -Executes and improves the core functions of the Network Security Operations, including: threat detection and prevention, incident response, systems and network security monitoring, forensics, vulnerability management, and data loss prevention at enterprise scale. -Partners with IT departments across campus to review, select, and integrate the best technologies and tools for CU network security. -Assigns staff to various tasks, supervising and directing their activities, reviewing and evaluating their work performance. -Evaluates and hires new staff members as required. -Reviews computer security incident reports and anomalous activity of network and ensures ongoing proactive measures to mitigate risks. -Responsible for creating, maintaining dashboards that monitor network security and DLP KPIs. -Maintains ongoing awareness of shifts in threat landscape and attacker methodologies; recommends appropriate strategic and operational changes to the security program to address new threats. -Serves as an internal information security consultant on information security projects/initiatives, automation of security testing in new projects as assigned by the CISO. -Participates in the University's major new system implementations projects, as assigned by the CISO, to ensure that appropriate security controls are built into system prior to production cutover. -Works closely with the CUIT Architecture team to design and implement automated security controls in DevOps methodology along with the associated tools and processes. -Liaises with other information technology groups in investigation and resolution of security incidents. -Ensures ongoing system and network health checks on identified high risk network segments, systems, and applications and follow up remediation. -Ensures the monitoring of intrusion detection and security information management systems to discover and mitigate malicious activity on networks. -Works with Investigation team(s) on serious security violations. -Conducts root cause analysis for operational security issues. -Acts as a catalyst for change to improve security processes that benefit the IT organization and the University. -Participates in occasionally required "on-call" rotations requiring after-hours and weekend work. -All other duties as assigned.
General Minimum Qualifications: -Bachelor's degree or equivalent required. Advanced degree desirable. -Minimum 7-9 years' related experience.
Additional Specific Minimum Qualifications: -3+ years of management experience. -Extensive operational and managerial experience with core security operations functions, including some or all of: incident response, vulnerability management, network and security monitoring, network access control, and data loss prevention. -Extensive experience using net flow, packet analysis, DNS, system log file analysis, forensics tools, and other alerts to conduct incident response activities. -Extensive understanding of networking concepts, network security architecture and common modern operating systems, including Windows, Mac OSX, Linux, Unix, and mobile device platforms including Android and iOS. -Experience in presentation of information security to diverse group of non-security professionals in IT settings and/or Stakeholders. -Knowledge of IT security regulations and best practices. -Excellent written and verbal communication skills. -Demonstrated ability to work in a fast-paced, deadline driven environment. -Demonstrated excellence in a variety of competencies including teamwork/collaboration, analytical thinking, communication and influencing skills, and technical expertise. -Ability to work with changing priorities and with multiple projects. -Ability to be precise and attentive to detail is essential. -Ability to work with minimal supervision. -Ability to work weekend and off-hour work as and when needed.
Preferred Qualifications: -BS degree in Computer Science is a plus. -Network security and penetration testing experience is preferred. -Knowledge of various security and risk assessment tools is preferred. -Diverse knowledge of information technologies and security products is preferred. -Experience with security/identity access management projects is desirable. -Security certifications (e.g. CISSP, CISA, CRISC, or others) preferred.
As a member of the National Collegiate Athletic Association (NCAA) and the Council of Ivy Group Presidents (Ivy League), it is imperative that members of the Columbia University community, in all matters related to the intercollegiate athletics program, exhibit the highest professional standards and ethical behavior with regard to adherence to NCAA, Conference, University, and Department of Intercollegiate Athletics and Physical Education rules and regulations.
Columbia University is an Equal Opportunity/Affirmative Action employer.
Columbia University is one of the world's most important centers of research and at the same time a distinctive and distinguished learning environment for undergraduates and graduate students in many scholarly and professional fields. The University recognizes the importance of its location in New York City and seeks to link its research and teaching to the vast resources of a great metropolis. It... seeks to attract a diverse and international faculty and student body, to support research and teaching on global issues, and to create academic relationships with many countries and regions. It expects all areas of the university to advance knowledge and learning at the highest level and to convey the products of its efforts to the world.