Cybersecurity Specialist II

The Organization

As an independent research organization, the Morgridge Institute for Research explores uncharted scientific territory to discover tomorrow’s cures. In affiliation with the University of Wisconsin-Madison, we support researchers who take a fearless approach to advancing human health in emerging fields such as regenerative biology, metabolism, virology and biomedical imaging. Through public programming, we work to inspire scientific curiosity in everyday life.

Description

The Cybersecurity Specialist II is responsible for the operational and network security of the Morgridge Institute for Research in the Discovery Building which is a multi-platform facility consisting of web, data, software and computational servers. The Cybersecurity Specialist II will work closely with software, systems and network personnel to ensure the security, availability and continuous operation of the facility.

Primary Responsibilities

  • Provision, configure and operate security management and monitoring systems including a network identity management and access system
  • Ensure systems are configured as securely as possible without compromising usability and are kept up to date with the latest software releases and security patches
  • Highlight current security principals and best practices for management and support staff as needed
  • Work with networking personnel to implement and manage network-based security tools, including firewalls, intrusion detection systems and routing and access policies
  • Perform periodic internal security audits and participate in and assist with periodic external security audits
  • Automate repetitive administrative security tasks
  • Monitor infrastructure efforts periodically and provide assessment reports to management on status and recommendations for security improvements
  • Draft and implement security policies
  • Provide documentation of all security systems and processes
  • Maintain records, logs and reports of security audits and issues
  • Advise technical, research, and administrative staff on security best practices
  • Recognize security problem areas and develop pro-active solutions
  • Test new security hardware and software systems and recommend purchases where required
  • Provide second and third tier support for customer facing systems and assist staff with technical questions as needed
  • Miscellaneous duties as required

Requirements

To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.  The requirements listed below are representative of the knowledge, skill, and/or ability required.  Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.

Education and Experience

  • A Bachelor’s degree in information technology security, computer engineering or computer science or equivalent work experience
  • Computer security experience of 5+ years
  • Project management experience preferred
  • Advanced cybersecurity certifications or degree preferred
  • Advanced degree or cybersecurity certifications preferred: CISSP, CSX-P, CRISC, CISM

Knowledge, Skills and Abilities Required

  • Excellent customer service, verbal, and written communication skills
  • Real world experience and demonstrable skills in the primary domains of cybersecurity: Security and Risk Management, Asset Security, Security Architecture and Engineering, Communications and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations, Software Development Security
  • Knowledge of security processes and solutions for computing environments including networks, UNIX, Linux, Windows, Apple/Mac systems, virtual servers; storage, database and web servers
  • Knowledge of security systems such as Bro, Alienvault, OpenVAS, Qualys, Nessus and other related systems
  • Knowledge of industry standard identity management and access control systems such as LDAP, Active Directory, Shibboleth, Grouper, and X.509.
  • Ability to secure LAMP-based (Linux, Apache, MySQL, PhP) web server environments and software development environments including Git, CVS and Subversion systems
  • Knowledge and proficiency in one or more scripting languages like shell, Perl and Python
  • Ability to organize, prioritize and meet deadlines
  • Ability to effectively communicate with all levels of the organization, ideally proven within a research-style setting
  • Ability to maintain confidentiality

In order to ensure the safety of our workplace, proof of COVID-19 vaccination is required unless an exemption is granted for medical, disability or religious reasons.

To apply:

Interested candidates should submit a cover letter and resume via the link below.

Apply Now >