DevSecOps Engineer
$79,652 - $131,426/Yr
University of Minnesota - Minneapolis, MN
posted about 1 month ago
Full-time - Mid Level
Minneapolis, MN
Educational Services
About the position
The University of Minnesota Twin Cities is seeking a skilled DevSecOps Engineer to join the Minnesota Supercomputing Institute (MSI). This role focuses on leading security analysis and implementation within a large, research-oriented, Linux-based enterprise. The successful candidate will develop security controls that align with operational requirements while collaborating with the operations team and the Research Computing's Security Assurance Team. The position involves a mix of systems security operations, systems operations, support and planning, and general activities to ensure robust security measures are in place.
Responsibilities
- Analyze security and policy requirements for infrastructure platforms, Linux systems, storage platforms, and network devices.
- Design, test, and implement security technologies and controls in collaboration with operations staff.
- Coordinate responses to security issues raised by monitoring operations and the RI Security Assurance Team.
- Identify and remediate system operational and performance issues related to security controls.
- Act as a security-related subject matter expert for escalated end user issues from MSI's helpdesk.
- Manage tickets, tasks, and projects in MSI's tracking systems.
- Explore new technologies to solve unique problems and enhance MSI's capabilities.
- Participate in tracking security vulnerabilities and devise mitigation strategies.
- Engage in professional development through training, workshops, and conferences.
- Participate in a lightweight 24x7 on-call rotation.
Requirements
- BA/BS degree and at least 4 years of work experience in Linux Systems Administration and Security, or a Master's degree and at least 2 years of experience.
- Experience in Linux systems and infrastructure operations.
- Excellent oral and written communication and leadership skills.
- Ability to work independently with periodic guidance.
Nice-to-haves
- Experience in Linux HPC or research computing environments.
- Experience deploying SIEM tools in a Linux environment (e.g., Wazuh, CIS-CAT, Security Onion).
- Familiarity with systems configuration management environments (e.g., Puppet, Salt, Ansible).
- Experience implementing security and policy controls while balancing usability and performance.
- Experience with software integrity validation tools using SBOMs or similar technologies.
- Experience with implementation of HIPAA, HITRUST, FISMA, or NIST security policies.
Benefits
- Flexible work environment with a focus on equity and diversity.
- Professional development opportunities through training and workshops.
