CAREER OPPORTUNITY
Security / Network Engineer [INTE-15]
AMERICAN CIVIL LIBERTIES UNION
Information Technology Department, NY

OVERVIEW:
The American Civil Liberties Union (ACLU), a national public interest organization devoted to the defense of the Bill of Rights, invites candidates to apply for the full-time position of Security / Network Engineer in the Information Technology (IT) Department.

Reporting to the Network Manager, the Network/Security Engineer will be responsible for deploying and ensuring security best practices for all data and voice networks at the ACLU National Office. We are looking for a high energy, dedicated, resilient team player who adds synergy and can integrate well in a diverse group. This is a detailed hands-on technical position.

ROLES AND RESPONSIBILITIES:

• Provide expertise, testing and analysis of existing systems for security compliance and security industry best practices including operating systems, databases, messaging systems and all network devices.
• Review, assess and update perimeter security as necessary in a changing environment.
• Provide strategic direction on the enterprise security.
• Drive enterprise security program framework strategy and implementation initiatives.
• Provide tight coordination and collaboration with IT staff to ensure a balance between security and access on clients and servers.
• Troubleshoot and remediate network or system security breaches. Perform follow up incident reports as necessary.
• Perform, understand, quantify and remediate network audits.
• Collaborate with network staff to trial, test, implement and tune various security systems, including but not limited to: intrusion detection systems, security patch deployment, desktop lockdown, encryption technologies, multi-factor authentication, remote access, firewalls, encryption, vulnerability management and more.
• Develop and document security policies, standards, guidelines, and procedures for internal IT department ongoing operations.
• Interface with application vendors and network staff to understand, test, coordinate and deploy necessary server side security updates and patches while not breaking critical user access.
• Assess the security impact on the complete OSI network stack.
• Interact with the Help Desk as necessary to troubleshoot and solve network security issues or access vulnerabilities.
• Provide troubleshooting, maintenance and implementation of messaging systems, firewalls, file servers, databases, VPNs, IIS, IP telephony, wireless, ftp servers, switching/routing, printers, scanners and more.
• Provide in-depth administration and design of Active Directory.
• Act as a seamless backup for other Network and Systems staff as necessary to provide coverage.
• Work in a team rotation providing on-call and after-hours support as required.

EXPERIENCE AND QUALIFICATIONS:

• Bachelor’s Degree in Computer Science, Computer Engineering, or related field preferred (relevant experience may be considered in lieu of a degree).
• 4+ years overall Information Systems technology experience.
• 2+ years experience performing Information Security work (enterprise environment preferred).
• Possess good verbal, written and presentation skills.
• Ability to work with both business operations and technical staff.
• Experience conducting enterprise risk assessments, gap analysis efforts, and managing the maturation of a security program.
• Hands-on technical experience in the implementation of security controls in a technical environment.
• Solid time and project management skills; the ability to work as part of a team as well as independently, the ability to juggle multiple projects with competing priorities, and the ability to take the initiative.
• Strong understanding of typical security technologies commonly leveraged to support a large-scale enterprise environment; (system and/or security support for Windows, MSSQL databases; Cisco network security services; Firewalls, VoIP infrastructure, BES and more.
• Have knowledge and demonstrable practice using open source security tools and techniques, such as Nmap, Nessus, Wireshark/Ethereal, etc.
• CISSP, SANS GIAC, SSCP or other certification preferred.
• Familiarity with web security and privacy standards and analysis a plus.
• Knowledge of current web security issues and vulnerabilities a plus.

COMPENSATION:
The ACLU offers a generous and comprehensive compensation and benefits package, commensurate with experience and within parameters of the ACLU compensation scale.

HOW TO APPLY:
If you are a proactive and resourceful team player with a passion for public interest issues, please send a cover letter (with salary requirements) and resume by email to hrjobs@aclu.org. Reference [INTE-15/WACLU] in subject line – or by mail to:

Human Resources
RE: [INTE-15/WACLU]
American Civil Liberties Union
125 Broad Street, 18^th Floor
New York, NY 10004

Applications will be accepted until the position is filled, which will not be before March 28, 2008. Please indicate where you learned of this job posting.

The ACLU is an equal opportunity/affirmative action employer and encourages applications from women, people of color, persons with disabilities, and lesbian, gay, bisexual, and transgender individuals.