What are the responsibilities and job description for the Systems Security Engineer II position at Harrisburg University of Science and Technology?
The Systems Security Engineer plays a critical role in maintaining and enhancing the security of IT systems within a higher education environment, with a strong focus on Microsoft Security products. This position combines elements of system administration and security engineering, ensuring the confidentiality, integrity, and availability of institutional data. Operating independently under the direction of the Senior Systems Engineer, the Systems Security Engineer is responsible for implementing security measures, enforcing compliance policies, mitigating threats, and integrating secure technologies to protect the organization's IT infrastructure.
ESSENTIAL DUTIES AND RESPONSIBILITIES (Duties may vary, and other duties may be assigned.)
- Security Implementation and Management : Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation . Leverage the Microsoft Security Stack , including Defender, Microsoft Sentinel, Purview, and Intune , to monitor, detect, and respond to security threats.
- Azure Security and Management : Manage and secure Azure Services such as Recovery Services Vault, Log Analytics, Policy, and Network Security Groups , implementing best practices for cloud security and governance.
- Network Security : Maintain and enforce network security policies, including NAC (Network Access Control), firewalls, VLAN management, and SNMP monitoring , to ensure a secure and reliable network infrastructure.
- Identity and Access Management (IAM) : Administer and manage user accounts throughout the identity management lifecycle via Entra ID , ensuring proper security configurations and role-based access control.
- Web Security : Secure and manage web assets using cPanel and Cloudflare , implementing security measures such as DDoS protection and DNS security.
- Compliance and Risk Management : Apply and analyze data integrity, compliance, and security policies to safeguard institutional data and infrastructure. Provide cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
- Technology Research and Implementation : Assist in the research, planning, and implementation of new technologies and services to enhance security and operational efficiency.
- System Administration : Plan, coordinate, implement, and document hardware and software installations, upgrades, and migrations to maintain a secure and optimized IT environment.
- Security Awareness and Training : Develop and implement information security awareness campaigns to educate employees and stakeholders on security best practices.
- Process Improvement and Stakeholder Collaboration : Work with application managers to enhance administrative and academic processes throughout the campus. Develop and distribute technical specifications to ensure compliance and usability.
- Communication and Reporting : Develop and deliver presentations to both internal and external stakeholders , communicating security initiatives, risks, and best practices effectively.
POSITION REQUIREMENTS
Strong experience with Microsoft Security Stac k (Defender, Microsoft Sentinel, Purview, Intune).
