IT Security Engineer - Cyber Offensive

The University of Chicago - Chicago, IL (30+ days ago)4.2


Job Information

Job Summary:
Under supervision, implement and operate security controls to minimize risk to physical and logical assets of the Biological Sciences Division (BSD) at the University of Chicago and continue to improve efficiencies for the management of all the BSD Information Security program elements in a consistent manner to ensure the confidentiality and integrity of BSD sensitive information. The Cyber Offensive Security Administrator conducts security penetration testing of mission critical technologies and cyber security controls.

Responsibilities:
Conduct exploitation testing using off-the-shelf or self-developed exploitation tools.
Develop security test strategy, test cases, remediation plans, and security test reports
Develop new post-exploitation tools and techniques
Facilitate strategy discussions and user review sessions
Facilitate Red Team and Blue Team tabletop exercises
Develop, implement and operationalization organization-wide security initiative

Competencies:
Ability to respond to changing priorities, and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness.
Ability to weigh business needs against security concern
Ability to conceptualize a course of action and to organize for the successful completion of that action critical, often under tight deadlines
Ability to present information in a consistent and concise manner
Ability to communicate in a personally effective and socially appropriate manner
Additional Requirements

Education:
Bachelor of Science in a related field such as Computer Science, Information Science and Security OR four (4) years of substantial related professional experience
Certified Information Systems Auditor (CISA), Certified Information System Security Professional (CISSP) or CompTIA Advanced Security Practitioner (CASP) preferred

Experience:
Basic knowledge in Information Technology with a focus on cyber security
Basic knowledge of Governance Risk and Compliance technology
Basic knowledge in Information Technology with a focus on cyber security
Basic knowledge in performing reconnaissance, exploitation and lateral/vertical privilege escalation aimed at compromising networks/applications/individuals
Basic knowledge in scripting languages such as Bash, Python, Perl, PHP etc as well as programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET
Basic knowledge with data communication concepts and network/software configuration management preferred
Direct experience providing customer service preferred

Required Documents:
Cover Letter
Resume
Benefit Eligibility
Yes
Pay Frequency
Pay Range
Depends on Qualification
Scheduled Weekly Hours
37.5
Union
Non-Union
Job is Exempt?
Yes
Drug Test Required?
No
Does this position require incumbent to operate a vehicle on the job?
No
Health Screen Required?
No
Background Check Required?
Yes

Posting Date
2018-02-12-08:00
Remove from Posting On or Before
2018-08-12-07:00