Linux Security Administrator
As part of Yale ITS Systems Administration, the Linux Security Administrator will provide Linux Systems Engineering support for mission-critical services in a 24/7/365 production data center environment. Help to ensure the reliability, security, and recoverability of 700+ Red Hat Enterprise Linux servers. Work closely with application owners and developers to plan, deploy, and troubleshoot new or upgraded services. Provide guidance in capacity planning, disaster recovery planning, performance tuning, security, and automation for services the team manages. Participate in cross-functional technical projects that require the Linux server platform as a component of the solution. Contribute to departmental planning, and long range technical development. Prepare documentation to support Systems Engineering. Perform occasional off-shift work, and participate in the team's rotating on-call schedule.
This position has an additional focus on Linux systems security, including software patching methodologies, local firewall management, secure configurations, and more.
This position is responsible for:
- Providing technical expertise for Linux servers and services, focusing on the reliability, security, and recoverability of the platform.
- Investigating security incidents both to resolve the immediate vulnerabilities, and to proactively address future security concerns.
- Advising clients/peers on Linux systems security, and institute security policies across our systems.
- Monitoring system health, and participate in timely incident and recovery operations when required.
- Managing changes to the systems and environment according to Yale ITS procedures and best practices.
- Writing documentation for the benefit of the team (design, engineering, procedural) and for the community (help documents, best practices, etc.)
- Working directly with clients to identify their requirements and design reliable, secure solutions that comply with Yale ITS best practices.
- Occasional off-shift work and on-call response.
- May perform other duties as assigned.
- The following Principal Responsibilities are generic in nature; the information contained in this Position Focus are most relevant to this position.
- Provides technical expertise in resolving user system deficiencies and determines appropriate action.
- Provides system services and analyze system performance for stakeholders and intended end users. Performs all activities necessary to activate a new operating system or new release of an existing system, including analysis, design, implementation, and related documentation. Analyzes systems performance and modifies programs to increase the efficiency of the operation. Reinstates integrity of system as quickly as possible following an outage in order to minimize item and data loss.
- Recommends and authorizes system upgrades and software installations.
- Designs, develops and implements new system tools.
- Analyzes execution time of commonly used instruction to identify and replaces those that are inefficient or slow to operation.
- Analyzes, evaluates and takes steps to circumvent problems and restores systems to operating condition.
- Contributes in the determination of specifications and determines the combination of options needed to tailor an operating system to meet the business needs.
- Conducts training and user education.
- Researches new technologies, processes, and methodologies.
- May perform other duties as assigned.
Required Education and Experience
Bachelor's Degree in a related field and a minimum of two years of related work experience or an equivalent combination of education and experience.
Required Skill/Ability 1:
Proven experience as a systems administrator or engineer, working with Red Hat Enterprise Linux.
Required Skill/Ability 2:
Proven experience with one or more scripting languages, such as bash, Perl, and/or python.
Required Skill/Ability 3:
Proven experience configuring local firewalls such as firewall and iptables.
Required Skill/Ability 4:
Ability to plan, coordinate, and execute work in a large, complex organization.
Required Skill/Ability 5:
Excellent written and verbal communication skills.
Preferred Education, Experience and Skills:
Bach degree & 3 years related technical experience. Configuration management and automation tools, preferably Chef. Managing SELinux, load balancing and proxy services, preferably F5. ITIL, AWS and/or Microsoft Azure. Thorough understanding of development ecosystem - source code management (e.g. svn, git,) continuous build/deployment (e.g. Jenkins.)
Preferred Licenses or Certifications:
- ISC2 Systems Security Certified Practitioner (SSCP)
- Red Hat Certified Systems Administrator (RHCSA)
- Red Hat Certified Engineer (RHCE)
- Linux Prof Institute Certified (LPIC-1)
- Linux Processional Institute Certified Engineer (LPIC-2)
Weekend Hours Required? Occasional
Evening Hours Required? Occasional
Drug Screen No
Health Screening No
Background Check Requirements
All candidates for employment will be subject to pre-employment background screening for this position, which may include motor vehicle, DOT certification, drug testing and credit checks based on the position description and job requirements. All offers are contingent upon the successful completion of the background check. Please visit www.yale.edu/hronline/careers/screening/faqs.html for additional information on the background check requirements and process.
The intent of this job description is to provide a representative summary of the essential functions that will be required of the position and should not be construed as a declaration of specific duties and responsibilities of the particular position. Employees will be assigned specific job-related duties through their hiring departments.
Affirmative Action Statement:
Yale University considers applicants for employment without regard to, and does not discriminate on the basis of, an individual’s sex, race, color, religion, age, disability, status as a veteran, or national or ethnic origin; nor does Yale discriminate on the basis of sexual orientation or gender identity or expression. Title IX of the Education Amendments of 1972 protects people from sex discrimination in educational programs and activities at institutions that receive federal financial assistance. Questions regarding Title IX may be referred to the University’s Title IX Coordinator, at TitleIX@yale.edu, or to the U.S. Department of Education, Office for Civil Rights, 8th Floor, Five Post Office Square, Boston MA 02109-3921. Telephone: 617.289.0111, Fax: 617.289.0150, TDD: 800.877.8339, or Email: firstname.lastname@example.org.
Note Yale University is a tobacco-free campus