University of Rochester System Programmer - 223847 in Rochester, New York
Full Time 40 hours Grade 055 University IT / IS
8 AM-5 PM
The University of Rochester is one of the country’s top-tier research universities. Our campuses are home to 200 academic majors, more than 2,000 faculty and instructional staff, and some 10,000 students from all over the United States and around the world. The University of Rochester Medical Center (URMC) is one of the nation’s leading academic medical centers, which forms the centerpiece of the University of Rochester’s health research, teaching and patient care missions.
University IT and the Center of Integrated Research Computing (CIRC) provide University-wide leadership for the extensive and diverse technology initiatives required by a leading research university. As the primary hub for IT programs and initiatives, this organization engages constituents University-wide to provide:
Advanced computational and data analytics support to departments and centers across the University.
Enterprise-wide academic and administrative applications.
An institution-wide information security program to protect the University’s data and ensure compliance with regulatory requirements
Robust IT infrastructure including a 24x7 150-mile optical network and 12,000 square foot primary and secondary Data Center facilities.
And, a collaborative and diverse team that creates integrated, secure and dependable IT systems and practices that support efficient and cost-effective distribution of information in support of University missions.
Summary of Role:
- The Systems Management team requires an experienced Lead Security and Systems Engineer to drive multiple concurrent projects aimed at improving the security configurations for the University, Medical Center and affiliates. This person provides technical expertise and project management for security and systems administration of 40,000+ workstations and 4,000+ servers including a growing virtual desktop (VDI) implementation.
Under general guidance and with latitude for considerable judgment and initiative:
IoT Endpoint Identification and Administration – Deploy, manage and support medical device / IoT device identification tool; configure API integrations with asset management and security systems (ServiceNow, Palo, Tenable, Network Access Control); use flow data to inform network segmentation practices as related to medical devices and IoTs. Requires knowledge of information technology (IT) security principles and methods (e.g., firewalls; demilitarized zones; encryption).
Windows Patching Administration and Vulnerability Remediation – Participate in monthly patching process which includes patch testing, deployments, metric tracking and compliance efforts; evaluate monthly vulnerability reports for UR and URMC managed servers and translate into actionable items for large scale deployments;
Advanced Systems Administration – Oversee and participate in operating system imaging build, SCCM application packaging and deployments, antivirus administration, Active Directory / Group Policy administration. Apply service-oriented security architecture principles to meet organization's confidentiality, integrity, and availability requirements; Implement specific cybersecurity countermeasures for systems and/or applications; Integrate automated capabilities for updating or patching system software where practical and develop processes and procedures for manual updating and patching of system software based on current and projected patch timeline requirements for the operational environment of the system; Use and configure software-based computer protection tools (e.g., software firewalls, antivirus software, anti-spyware).
Participate in an on-call support rotation as required
Security / Systems Management project management - Properly document all systems security implementation, operations, and maintenance activities and update as necessary;
Third level support for University IT, ISD and Departmental IT admins; Work with stakeholders to resolve computer security incidents and vulnerability compliance; Troubleshoot hardware/software interface and interoperability problems; Conduct system/server planning, management, and maintenance; Correct and train for physical and technical problems that impact system/server performance.
Participate in ongoing stabilization, support, and maintenance; Verify minimum security requirements are in place for all applications;
Assure best practice change and code management is followed, and supporting technical documentation is organized and maintained;Ensure that staff and department operates within regulatory guidelines and/or standards while ensuring a high level of creativity.
Perform other duties as assigned
- Bachelor's degree in related discipline such as Computer Science, Business, or Information Technology, and 4-5 years of related experience, preferably 2-3 years in a supervisory capacity required; or an equivalent combination of education and experience. Experience in higher education or Healthcare IT field strongly preferred.
Required Business Skills:
Advanced analytical skills for problem solving and troubleshooting.
Ability to collaborate effectively with others and ensure customer satisfaction and appropriate follow-through in all interactions.
Excellent verbal and written communication skills.
Understands and models organizational mission, vision and values and foster a team-centric working environment.
Demonstrates an ability to re-prioritize projects for self and others as unplanned events occur to ensure immediate tasks and larger department goals are ultimately met.
Ability to function effectively in a dynamic, fast-paced environment.
Required Technical Skills:
Knowledge of server and client operating systems as well as systems administration concepts.
Knowledge of system administration, network, and operating system hardening techniques.
Knowledge of operating system command-line tools.
Skill in diagnosing connectivity problems and the demonstrated ability to operate common network tools (e.g., ping, traceroute, nslookup).
Skill in maintaining directory services. (e.g., Microsoft Active Directory, LDAP, etc.).
Use of virtual machines. (e.g., Microsoft Hyper-V, VMWare vSphere, Citrix XenDesktop/Server, Amazon Elastic Compute Cloud, etc.).
How To Apply
All applicants must apply online.
EOE Minorities/Females/Protected Veterans/Disabled