Monitor UGA network for unauthorized traffic and/or vulnerabilities using a variety of network-based and server-based tools. Work with UGA clients to remedy network vulnerabilities and to secure network segments. Write and maintain scripts in PHP or Python to automate portions of these functions. Respond to UGA IT security incidents. Contain any such incidents, be able to identify the scope of an incident, and work with UGA clients to solve any security problems and secure their network. Install, configure, and maintain security tools on Linux systems and Windows systems. Knowledge, Skills, Abilities and/or Competencies Experience with security equipment (firewall, IPS, IDS, SIEM) Networking Linux PHP, Python, or equivalent Customer service skills Physical Demands Occasional moving of computers. Is driving a responsibility of this position? No Is this a Position of Trust? Yes Does this position have operation, access, or control of financial resources? No Does this position require a P-Card? No Is having a P-Card an essential function of this position? No Does this position have direct interaction or care of children under the age of 18 or direct patient care? No Does this position have Security Access (e.g., public safety, IT security, personnel records, patient records, or access to chemicals and medications) Yes Credit and P-Card policy Be advised a credit check will be required for all positions with financial responsibilities. For additional information about the credit check criteria, visit the UGA Credit Background Check website. Background Investigation Policy Offers of employment are contingent upon completion of a background investigation including, a criminal background check demonstrating your eligibility for employment with the University of Georgia; confirmation of the credentials and employment history reflected in your application materials (including reference checks) as they relate to the job-based requirements of the position applied for; and, if applicable, a satisfactory credit check. You may also be subject to a pre-employment drug test for positions with high-risk responsibilities, if applicable. Please visit the UGA Background Check website. Duties/ Responsibilities Duties/ Responsibilities IT Security Configuration and Monitoring Monitor UGA network for unauthorized traffic, vulnerabilities, and sensitive data stores and transmissions. Work with UGA clients to remedy network vulnerabilities, secure network segments, and remove sensitive data. Consult with victim departments IT support staff to assess scope of incident and extent of vulnerability then advises on future steps to take to reduce security risk. Participate in data collection and forensic examination of compromised machines. Write and maintain scripts in PHP or Python to automate portions of these functions. Provide emergency response for critical systems and applications (including firewalls and IP - Ses). Monitor security alarms in SIEM. Percentage of time 45 Duties/ Responsibilities Incident Response Respond and assess incidents involving security compromises, possible violations of state and federal laws and leaks that threaten the University system. Contain any such incidents, be able to identify the scope of an incident, and work with UGA clients to solve any security problems and secure their network. Verify, research, and coordinate responses to email received through abuse@uga.edu or directly through Remedy system. Respond to DMCA claims, Open Records requests, and other security-related requests. Monitor abuse queue. Percentage of time 30 Duties/ Responsibilities Maintain Security Tools Install, configure, and maintain security tools on Linux systems and Windows systems. Modify policies in firewalls and other network-based security tools. Manage provisioning of DNS addresses. Percentage of time 20 Duties/ Responsibilities Security Awareness Training and Education - Provide security training to faculty, staff, and students of UGA. - Assist in organizing lectures, Q&A sessions and other campus outreach training. - Use security tools to help conduct vulnerability assessments for clients. Percentage of time 5 Contact Information Recruitment Contact Contact Details For questions concerning this position or recruitment progression, please refer to the Recruitment Contact listed below. Recruitment Contact Name Chris Workman Recruitment Contact Email cworkman@uga.edu Recruitment Contact Phone Posting Specific Questions Required fields are indicated with an asterisk ( - ). Applicant Documents Required Documents Resume/ CV Cover Letter List of References with Contact Information Optional Documents