Security Operations Engineer

   

This position is located on the Cornell University Campus in Ithaca, New York. This is a hybrid position where you will be permitted to perform a large portion of your work remotely and be occasionally expected to work on the Ithaca Campus.

No Visa sponsorship available for this position.

What is Cornell University and what is Information Technology @ Cornell?
Cornell University, unique among peers, is the federal land-grant institution of New York State, a private endowed university, and a member of the Ivy League. Information technologies (IT) is a strategic enabler for many functions at Cornell. Staff working in IT are found in most colleges and units across Cornell. We are comprised of many organizations, but we work as one. By being where Cornell faculty, staff, and students are, we are better able to offer support—whether needed at your desktop or to solve a major business, academic or research objective—to everyone at Cornell. Check out this link to find out more about IT@Cornell .

Cornell Information Technologies’ IT Security Office helps Cornell’s constituents protect the confidentiality, integrity, and availability of university information resources. As stewards of the institution's information security program, the ITSO helps safeguard Cornell's reputation and data by providing identity, security, and risk management services in support of the institution’s mission of learning, discovery, and engagement.

What you will do:

As a member of the Security Operations team, under the general direction of the Associate CISO, the Security Operations Engineer assumes daily operational responsibility for the university’s system and network security infrastructure and its response to security incidents.

Your primary responsibilities include but are not limited to:

• Triage and response to ITSM queues and SIEM dashboard.
• Assisting in the evaluation, development, and implementation of technologies for safeguarding the campus computing environment, including hardening systems, network vulnerability scanning, intrusion detection systems, firewalls.
• Collaborating with the ServiceDesk and other Cornell Information Technologies (CIT) units in the on-going use of incident response tools, security services, and processes.
• Along with guidance from the Senior Security Engineers, triaging initial incident response services, including general threat assessment, preventive and corrective action, system remediation, investigations, and analysis.
• Partnering with staff throughout the university in all aspects of IT security awareness and outreach.
• Serving as point of contact for the office including after-hours and weekends on a rotational basis.

While position responsibilities vary, every member of our community is expected to foster a culture of belonging and a psychologically healthy work environment by communicating across differences; being cooperative, collaborative, open, and welcoming; showing respect, compassion, and empathy; engaging and supporting others regardless of background or perspective; speaking up when others are being excluded or treated inappropriately; and supporting work/life integration of oneself and others.

What you will be:

You possess a strong service orientation and are someone who has an ability to prioritize multiple high-level tasks and to make sound judgment calls about security situations where the organization's reputation is at stake. You also have excellent written and oral skills including communicating technical material to non-technical audiences and the ability to present technical security topics to the campus IT community.

Additionally, you will have:

Bachelor's degree with 3-5 years of experience OR, equivalent combination of experience and/or education in a technical role in a IT environment, with an emphasis on IT security.

• Strong familiarity with contemporary approaches to system and network security.

• A thorough and practical understanding of both the technical and the social issues in development and delivery of security solutions.

Preferably it would be beneficial if you had an industry recognized certification in Security+, GIAC, CISSP etc. had experience with the following:

• Security Information Event Management solutions. (Splunk, ELK).
• Experience with Endpoint Detection and Response tools (Crowdstrike, MS Defender).
• Experience with Phishing response across diverse solutions (Office365, Google, Proofpoint).
• IT security in enterprise computing environments, particularly heterogeneous environments composed of Windows, OSX, UNIX/Linux servers and desktops providing a variety of database, Web server, and other application environments.
• Change management and configuration management practices in enterprise IT environments.
• Understanding of database security, access control, and monitoring required on at least one of: Oracle, MSSQL, or MySQL.
• At least two operating systems and an in-depth knowledge of: Windows, OSX, or Linux.
• Electronic Discovery including digital forensics, network traffic analysis, log analysis, and proper acquisition and handling of digital evidence.
• Developing tools, software, and services in one or more of: Python, Perl, PHP, .NET, Java.
• Secure programming practices.
• Performing security assessments of both in-house and outsourced applications.
• Industry recognized certification in Security+, GIAC, CISSP etc.

What we offer:

Great benefits that include educational benefits, access to a plethora of wellness programs, employee discounts, health care, paid vacation, health/personal time, 12 university paid holidays (including end of year winter break through New Year’s Day) and employer retirement contributions.

An active and diverse community to work and thrive in! Cornell is situated in picturesque Ithaca, New York, the heart of the Finger Lakes. Ithaca is home to two academic institutions, state parks, waterfalls, gorges, and a wide range of art galleries, theaters, eateries, wineries, and breweries. Ithaca has something to suit all ages and interests!

   

Familiarize yourself with Cornell's COVID-19 workplace guidance as well as the university's COVID-19 services and information .

  

University Job Title:

IT Security Engineer III

Job Family:

Information Technology

Level:

F

Pay Rate Type:

Salary

Pay Range:

$81,303.00 - $94,487.00

Remote Option Availability:

Hybrid Remote

Company:

Endowed

Contact Name:

Susie Jackson

Job Titles and Pay Ranges:

Non-Union Positions

Noted pay ranges reflect the potential pay opportunity for each job profile. The hiring rate of pay for the successful candidate will be determined considering the following criteria:

• Prior relevant work or industry experience

• Education level to the extent education is relevant to the position

• Unique applicable skills

• Academic Discipline (faculty pay ranges reflects 9-month annual salary)

To learn more about Cornell’s non-union staff job titles and pay ranges, see Career Navigator .

Union Positions

The hiring rate of pay for the successful candidate will be determined in accordance with the rates in the respective collective bargaining agreement. To learn more about Cornell’s union wages, see Union Pay Rates .

Current Employees:

If you currently work at Cornell University, please exit this website and log in to Workday using your Net ID and password. Select the Career icon on your Home dashboard to view jobs at Cornell.

Online Submission Guidelines:

Most positions at Cornell will require you to apply online and submit both a resume/CV and cover letter.  You can upload documents either by “dragging and dropping” them into the dropbox or by using the “upload” icon on the application page. For more detailed instructions on how to apply to a job at Cornell, visit How We Hire on the HR website.

Employment Assistance:

For general questions about the position or the application process, please contact the Recruiter listed in the job posting or email [email protected] .

If you require an accommodation for a disability in order to complete an employment application or to participate in the recruiting process, you are encouraged to contact Cornell University's Office of Institutional Equity and Title IX at voice (607) 255-2242, or email at [email protected] .

Applicants that do not have internet access are encouraged to visit your local library, or local Department of Labor. You may also request an appointment to use a dedicated workstation in the Office of Talent Attraction and Recruitment, at the Ithaca campus, by emailing [email protected] .

Notice to Applicants:

Please read the required Notice to Applicants statement by clicking here . This notice contains important information about applying for a position at Cornell as well as some of your rights and responsibilities as an applicant.

EEO Statement:

Diversity and Inclusion are a part of Cornell University’s heritage. We are a recognized employer and educator valuing AA/EEO, and we do not tolerate discrimination based on any protected characteristic, including race, ethnic or national origin, citizenship and immigration status, color, sex/gender, pregnancy or pregnancy-related conditions, age, creed, religion, actual or perceived disability (including persons associated with such a person), arrest and/or conviction record, military or veteran status, sexual orientation, gender expression and/or identity, an individual’s genetic information, domestic violence victim status, familial status, marital status, or any other characteristic protected by applicable federal, state, or local law. We also recognize a lawful preference in employment practices for Native Americans living on or near Indian reservations in accordance with applicable law. 

Cornell University embraces diversity and seeks candidates who will contribute to a climate that supports students, faculty, and staff to all identities and backgrounds. We encourage individuals from underrepresented and/or marginalized identities to apply.

2024-04-03