Cybersecurity Engineer, Operational Technology - ...
Georgetown University - washington, DC
Apply NowJob Description
Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world. Requirements Cybersecurity Engineer, Operational Technology - University Information Services - Georgetown University Job Overview The Cybersecurity Engineer, Operational Technology is focused on securing existing and new business processes supporting the institution's technology modernization and expansion strategies; and is responsible for designing security solutions that protect the business and customers, but also allow the business to execute and innovate. With an in-depth understanding of new trends and technologies related to IT security and compliance, and contribute to the company IT security strategy and roadmap. They understand traditional telephony systems and their applications, but with a security focus and understanding of the threat landscape. As well, they have the expertise to address the issues of today, as well as the foresight to see where the industry is headed and proactively deliver secure solutions. Additionally, they think like an adversary to identify how solutions may be abused to an attacker's advantage; and in a multifaceted role, they apply strong communication and organizational skills. Work Interactions Reporting to the Director of Operational Technology Security, the Cybersecurity Engineer is an involved member of the Cybersecurity Operational Technology (COT) team. They coordinate as directed with UIS divisions and stakeholders on matters related to cyber threats, risks, remediations, and preventive measures. As well, they are involved in day-to-day cybersecurity operations, and coordinate work with various University technical staff, including cyber risk analysts, project managers and system owners. They maintain close contact with various customer-facing business units, such as power plant, Facilities Management, telecommunications, Medical Center, GUPD, EH&S, and external partners; and have frequent interaction with the network operations and academic departments. Candidate Qualifications Capable of working with diverse teams and promoting an enterprise-wide positive security culture. Self-starter requiring minimal supervision. Excellence in communicating business risk from a cybersecurity perspective. Highly organized and efficient, with strong project management, multitasking and organizational skills. Ability to preserve credibility with the team and external constituents through sustained industry knowledge. Ability to motivate teammates to achieve excellence and willingly shares knowledge. Ability to maintain a high level of integrity, trustworthiness and confidence, with the highest level of professionalism Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively. Position Requirements Experienced with IoT systems and providers Proven deployment of security controls to reduce fraud, authentication bypass and social engineering attacks. Highly technical and analytical, with a proven, deep cybersecurity background in technology design, implementation and delivery. Proficient with leading AI, communications, and smart vendors Experienced with Amazon Web Services (AWS), Google Cloud Platform (GCP), Microsoft Azure. General knowledge of Python, JavaScript, PowerShell, PHP or Ruby scripting. Experienced with one or more of the following: ISO 27001, NIST, PCI, HIPAA/HITECH, FERPA, GDPR, CIS or SOC2. Working knowledge of Windows, Linux and Unix. Experience Requirements At least 4 to 6+ years of experience in cybersecurity, including compliance and risk management with system and network security engineering focus Demonstrated understanding of legacy, IoT, voice-over-IP (VoIP), and next-generation communications systems and applications, as well as ability to secure applications and systems Threat-modeling experience, with a proven track record of identifying objectives and vulnerabilities, and deploying countermeasures that prevent or substantially reduce risk to systems and applications Demonstrated ability to secure middleware applications and work with internal and external engineers Experience in cloud computing technologies, including software as a service (SaaS), infrastructure as a service (IaaS) and platform as a service (PaaS), within public, private and hybrid environments. Extensive knowledge of traditional security controls and technologies, such as security information and event management (SIEM) systems, intrusion detection/prevention systems IDS/IPS), public key infrastructure (PKI), identity and access management (IDAM), antivirus (AV) and firewalls - as well as newer offerings such as endpoint detection and response (EDR), threat intelligence, threat intelligence platforms, security automation and orchestration, deception technologies and application controls Education and Certification Requirements Bachelor's degree in information assurance, computer science, engineering or related technical field or equivalent CISSP - preference for Cisco and/or SANS certifications Work Mode: Telework. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University. Such review may necessitate a change to a position's mode of work designation. Complete details about Georgetown University's mode of work designations for staff positions can be found on the Department of Human Resources Mode of Work Designation . Pay Range: The projected salary or hourly pay range for this position which represents the full range of anticipated compensation is: $54,616.00 - $100,493.33 Compensation is determined by a number of factors including, but not limited to, the candidate's individual qualifications, experience, education, skills, and certifications, as well as the University's business needs and external factors. Current Georgetown Employees: If you currently work at Georgetown University, please exit this website and login to GMS (gms.georgetown.edu) using your Net ID and password. Then select the Career worklet on your GMS Home dashboard to view Jobs at Georgetown. Submission Guidelines: Please note that in order to be considered an applicant for any position at Georgetown University you must submit a resume for each position of interest for which you believe you are qualified. Documents are not kept on file for future positions. Need Assistance: If you are a qualified individual with a disability and need a reasonable accommodation for any part of the application and hiring process, please click here for more information, or contact the Office of Institutional Diversity, Equity, and Affirmative Action (IDEAA) at or . Need some assistance with the application process? Please call . For more information about the suite of benefits, professional development and community involvement opportunities that make up Georgetown's commitment to its employees, please visit the Georgetown Works website. EEO Statement: Georgetown University is an Equal Opportunity/Affirmative Action Employer fully dedicated to achieving a diverse faculty and staff. All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, national origin, age, sex (including pregnancy, gender identity and expression, and sexual orientation), disability status, protected veteran status, or any other characteristic protected by law. Benefits: Georgetown University offers a comprehensive and competitive benefit package that includes medical, dental, vision, disability and life insurance, retirement savings, tuition assistance, work-life balance benefits, employee discounts and an array of voluntary insurance options. You can learn more about benefits and eligibility on the Department of Human Resources website.
Created: 2024-11-05