System Engineer, Windows Operations and IT Security (School of Computing)

Job DescriptionJob DescriptionAn IT Professional with advanced technical expertise in the areas of VM/Windows Operations and IT Security is required in the School of Computing to manage, maintain and secure its entire Windows and Virtualization IT infrastructure.Design, implement, manage and maintain the School’s IT infrastructure, especially computers, servers or equipment running on VM/WindowsManage day-to-day operations and ensure adequate capacity planning and high availability of the School’s servers and related services, including VMware, Proxmox, Windows, etcManage storage solutions and backup systems, and implement appropriate backup policies, ensuring data protection, integrity and rapid recoveryDevelop, maintain, and test comprehensive DR and BCP for critical IT servicesTroubleshoot and resolve IT infrastructure issues, faults, incidents, etcProvide 2nd and 3rd level technical support to front-line technical support teamEnsure proper IT security implementation and protection of services with sound IT security policies and principles in hardening, monitoring, detecting and defending the infrastructurePerform regular vulnerability management and end-point security protection: scanning, analyzing, prioritizing, remediating based on threat and vulnerability modelConfigure, implement and manage security tools such as system and security logging, access control configurations, intrusion detection, vulnerability assessment, host-based firewall, SIEM, etcDesign, develop, improve and maintain systems/programs/scripts to implement software asset inventory and security baseline configuration on Windows and Linux platforms.Ensure the IT infrastructure adheres to security policies, eg enforce security baseline configurations in general and implement enhanced and targeted security protections whenever appropriateMonitor, respond and resolve risks and alerts timelySetup and provide technical support for teaching lab operations as well as practical lab sessionsProvide IT-Security leadership and mentorship to SoC users and IT colleaguesDevelop new technical applications and services related to VM/Windows operations and IT security, and maintain existing onesEnsure proper documentation of work.QualificationsTertiary degree holders with Computer Science/Engineering, or relevant specialisation, preferable with Windows Security working experienceMust be adaptive, pro-active, self-motivated with positive work attitude, able to work independently or collaboratively in teams, eg very strong ability to foster collaborative environment with other IT teamsVery good analytical, problem-solving, communication and interpersonal skills, eg able to articulate technical and security risks and solutions to both academic, technical and non-technical stakeholdersHighly organized and capable of managing multiple jobs and projectsAble to act as a subject matter expert, providing technical leadership and mentorship with sound analysis and underlying principles of operationGood understanding of PC and Mac hardware and software application(sFamiliarity with MS Windows, macOS and Linux operating systems, including network operations in the respective OSAdvanced knowledge in Windows Server OS, its administration and network operations (DNS, DHCP, File/Print Services, Domain Controller, etc). Preferably with relevant certificationKnowledge in IT Security, Windows and Linux hardening measures, patch/update management. Preferably with relevant certificationAdvanced knowledge and practical experience in implementing Windows Security controlsKnowledge of network protocols, firewall configurations, and intrusion detection/preventionPreferably with experience in supporting vulnerability scans (eg. NessusPreferably with experience in assisting with security alerts, log collection, triage, and escalationFamiliarity with SIEM tools (Splunk, ELK, Sentinel) for event analysis preferredMust be able to code in a programming or scripting language (eg. Powershell, Bash, Python, etc) for automation of processesMust have understanding of common attack methods (eg. Phishing, malware, ransomware, privilege escalation, etc.)More InformationLocation: Kent Ridge CampusOrganization: School of ComputingDepartment : Department of Computer ScienceEmployee Referral EligibleJob requisition ID : 30782