We will consider candidates with strong sysadmin, db developer and perl skills with only a strong interest in security. The position will allow such a person many opportunities to cross-train on network IDS, vulnerability scanning, application scanners, log correlation products, and other core security operation tools. We utilize postgresql as the main data hub for our operations. Location: Berkeley, California, USA Telecommute: Some (0-3 days/week), but must be available in Berkeley several days each week Position type: Career (full time) position To apply: Find the below job posting on jobs.berkeley.edu and apply via that portal Official job posting: Security Analyst IV Departmental Overview System and Network Security (SNS) is responsible for leading IT security for the UC Berkeley campus. Responsibilities include evaluating, designing, implementing and maintaining security programs and systems to enable departments to comply with campus policy, standards and best practices. SNS coordinates with IT Policy, providing input on the development of campus policy, security exceptions, and incident response. SNS provides campus leadership on IT security issues, including training and outreach initiatives. SNS coordinates with peers across higher education institutions to share information and approaches to solve IT security challenges. Responsibilities The primary focus for this career appointment is system integration. Security operations generates or receives a vast quantity of data about systems, networks, and activities on these networked systems. Bringing this data together to identify actionable security events and generate relevant security metrics is an interesting challenge we face. This position will be one of the lead data wranglers to design and implement new and better ways to integrate this security data. A strong combination of system analysis, system integration, and programming skills are required. The successful candidate must be able to implement well-designed, modular systems using all usual best practices of software development. In addition, the position will be able to provide backup on operational areas such as vulnerability scanning, vulnerability assessment, intrusion detection, and log correlation. As a member of System and Network Security you will be part of growing team of campus security professionals that operate and implement security services for the University of California, Berkeley. - Analyze all data sources, internal and external to the group - Design efficient and cost-effective methods for normalizing and combining data - Design, test and promote to production monitors to automatically alert on high-confidence alerts - Design and implement tools to present to other security analysts all relevant data in order to make judgment calls for grey-area alerts - Cross train on one or more security functions (IDS, vulnerability assessment, log correlation, application security, etc) - Develop and implement tools and procedures for deploying and maintaining secure configurations on SNS internal systems - Work with other SNS staff to maintain integrity and functionality of SNS systems and services - Perform additional incidental IT security and operational support duties as assigned Required Qualifications - Exceptional system design and system integration experience and ability, including dealing with large volumes of structured and semi-structured data - Very strong programming skills in a high-level language (perl preferred) and database development experience (PostgreSQL preferred) - Experience with system administration on linux (RHEL-derived distros preferred) and strong knowledge of security best practices for linux system administration - Basic to intermediate networking knowledge and experience (core IPv4, IPv6 concepts: IP protocols, firewalls, packet capture techniques) - Basic knowledge of encryption theory and practice - Passion for IT security - Clear, concise writing ability Preferred Qualifications - Intrusion detection (Snort, Bro, Intrushield) - Vulnerability detection (nmap, Nessus, OpenVAS, Foundstone) - Application vulnerability assessment (AppScan, Burp, OWASP testing frameworks, threat assessments) - Logging, log correlation technologies, and SIEMs (rsyslog, syslog-ng, Splunk, ArcSight) Salary & Benefits The salary range for the position of Security Analyst IV is $95580 - $116820 annually, depending on qualifications and experience. For information on the comprehensive benefits package offered by the University visit: http://atyourservice.ucop.edu/forms_pubs/misc/benefits_of_belonging.pdf How to Apply Please visit jobs.berkeley.edu and look for this posting. Submit your cover letter and resume as a single attachment when applying. Applications must include a cover letter to be considered. Candidates who are invited to the later stages of the interview process will be requested to do hands-on programming exercises in perl, as well as work through several design challenges. Submitting code samples or descriptions of previous data wrangling design successes is encouraged. Criminal Background Check This position has been designated as sensitive and may require a Criminal Background Check. We reserve the right to make employment contingent upon successful completion of a Criminal Background Check. Other Information This posting is for a career appointment. The work location is downtown Berkeley within an easy walk to BART. Equal Employment Opportunity The University of California, Berkeley is an Equal Opportunity/Affirmative Action Employer -- Sent via pgsql-jobs mailing list (pgsql-jobs@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-jobs
