Deploy and maintain a secure JupyterHub environment.
Manage SSL certificates via InCommon Certificate Manager.
Administer RBAC and user accounts to uphold security compliance.
Design and manage cluster network architecture.
Configure inbound and outbound firewall rules based on specific protocols, ports, and IP addresses.
Investigate advanced firewall solutions using Palo Alto Next-Generation Firewall on Panorama Management Console.
Deploy containerized Python research applications using LXD.
Transfer sensitive research data to AWS S3.
Conduct in-depth network troubleshooting with Wireshark, TCPdump, and firewall log analysis.
Investigate real-time incidents using Cloud Security Posture Management (CSPM) CrowdStrike Falcon MDR, EDR and Splunk SIEM, IDS/IPS, WAF, and DLP.
Manage operations with reporting.
Conduct internal security audits using AlertLogic CIS compliance benchmarking to identify potential vulnerabilities.
Map logical, physical, and administrative controls for FedRAMP compliance.
Coordinate with cross-functional teams using GitHub, GitPod, Jira, and ServiceNow for version control, change management, and sprint planning in Agile workflows.
Design and automate hybrid cloud infrastructure using Terraform, AWS CloudFormation, and Azure DevOps Pipelines.
Requirements
Bachelor’s degree in Engineering, Computer Science, Information Technology, Cybersecurity, or related field plus 2 years of related experience.
Deployed and maintained a secure JupyterHub environment on the lab’s cluster, managed SSL certificates via InCommon Certificate Manager, and administered RBAC and user accounts to uphold security compliance.
Designed and managed cluster network architecture, configured inbound and outbound firewall rules based on specific protocols, ports, and IP addresses, and investigated advanced firewall solutions using Palo Alto Next-Generation Firewall on Panorama Management Console.
Deployed containerized Python research applications using LXD, transferred sensitive research data to AWS S3, and conducted in-depth network troubleshooting with Wireshark, TCPdump, and firewall log analysis.
Investigated real-time incidents using Cloud Security Posture Management (CSPM) CrowdStrike Falcon MDR, EDR and Splunk SIEM, IDS/IPS, WAF, and DLP, and managed operations with reporting.
Conducted internal security audits using AlertLogic CIS compliance benchmarking to identify potential vulnerabilities.
Mapped logical, physical, and administrative controls for FedRAMP compliance.
Coordinated with cross-functional teams using GitHub, GitPod, Jira, and ServiceNow for version control, change management, and sprint planning in Agile workflows.
Designed and automated hybrid cloud infrastructure using Terraform, AWS CloudFormation, and Azure DevOps Pipelines, enabling consistent, error-free deployments across multi-account environments.