Systems and Security Administrator

University of Toronto

The University of Toronto is a globally top-ranked public research university in Toronto, Ontario, Canada.

Date Posted: 10/28/2024
Req ID: 40353
Faculty/Division: Faculty of Arts & Science
Department: Citizen Lab
Campus: St. George (Downtown Toronto)
Position Number: 00035221

Description:

About us:

The Faculty of Arts & Science is the heart of Canada’s leading university and one of the most comprehensive and diverse academic divisions in the world. The strength of Arts & Science derives from our combined teaching and research excellence in the humanities, sciences and social sciences across 29 departments, seven colleges and 46 interdisciplinary centres, institutes and programs.

We can only realize our mission with the dedication and excellence of engaged staff and faculty. The diversity of opportunities and perspectives within the Faculty reflect the local and global landscape and the need for curiosity, innovative thinking and collaboration. At Arts & Science, we take pride in our legacy of innovation and discovery that has changed the way we think about the world.

Your opportunity:

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs & Public Policy, University of Toronto, focusing on research, development, and high-level strategic policy and legal engagement at the intersection of information and communication technologies, human rights, and global security.

We use a “mixed methods” approach to research combining practices from political science, law, computer science, and area studies. Our research includes: investigating digital espionage against civil society, documenting Internet filtering and other technologies and practices that impact freedom of expression online, analyzing privacy, security, and information controls of popular applications, and examining transparency and accountability mechanisms relevant to the relationship between corporations and state agencies regarding personal data and other surveillance activities.

Under the general direction of The Citizen Lab Director and the Administrative Director, Citizen Lab, and reporting to the Systems and Security Technical Lead, the System and Security Administrator manages the security support needs of The Citizen Lab, carrying out a range of information technology-related responsibilities.

The System and Security Administrator is the primary network administrator for The Citizen Lab. The incumbent will manage and oversee the use of all information technology in The Citizen Lab; design UNIX and Linux network infrastructure; develop, maintain, and monitor network security policies; ensure all workstations and related components are kept operationally effective and secure; oversee administration and security of on-site and off-site servers, websites and web servers; provide training in computer security tools and practices to staff; and collaborate on IT purchases by providing recommendations, cost estimates and tracking expenses.

The incumbent enumerates and classifies all digital assets in The Citizen Lab to identify those with internal information confidentiality, or availability requirements as per processes and procedures from the unit and department. Participates in the planning component of projects. The incumbent must monitor and enforce information security policies to ensure all research data is properly secured as per research ethics protocol requirements as determined by the University of Toronto Research Ethics Board. The incumbent stays up to date with knowledge of developments with complex software, hardware, and technical tradecraft in a rapidly changing technical and research environment. The incumbent will monitor all network infrastructure and devices for security issues, and provide monthly security reports. The incumbent acts as a resource to others on technology related issues, problems and information.

The incumbent advocates for and recommends changes to technical and information policy with senior management as needed, and exercises duties with utmost ethical considerations and professional confidence.

Your responsibilities will include:

• Overseeing the daily operations of networks and systems administration; overseeing security and administration of all information technology in the Citizen Lab
• Monitoring the performance and integrity of servers, executing security measures for network devices and introducing variations as required
• Analyzing and monitoring vendor service and performance
• Researching, analyzing and recommending solutions to project challenges
• Keeping well-informed with knowledge of developments with complex systems, network and security tradecraft in a rapidly changing technical and research environment
• Training staff on new system features, computer security tools and practices
• Collaborating on cost estimates; obtaining quotations and issuing purchase orders within established limits
• Serving as a resource to a group or on a function; Directing the activities of casual staff

Qualifications:

Essential Qualifications:

• Bachelor’s Degree in computer science or engineering, or an acceptable equivalent combination of education and experience
• Minimum of 4 years experience in administration and troubleshooting of network and system security. This includes demonstrated knowledge of network intrusion detection systems, end-point security monitoring, and firewall systems (e.g., Cisco ASM, iptables, pfilter, or similar)
• Experience planning project components such as Cisco ASM, iptables, pfilter, or similar, and with managing DNS nameservers, specifically BIND
• Demonstrated experience in incident response and mitigation. Advanced experience and understanding with UNIX and Linux systems (e.g., Debian, Ubuntu, OpenBSD).
• Demonstrated experience related to scripting languages (e.g., Perl, Shell scripting, Python, or Ruby). Specifically for system administration purposes (e.g., automating encrypted backup, auditing systems, and testing performance to predict hardware failure).
• Demonstrated experience collaborating on IT purchases by providing recommendations, cost estimates and tracking expenses
• Experience and knowledge working with database servers (e.g., MySQL, Mariadb, PostgreSQL) especially installation, configuration and monitoring.
• Demonstrated experience in interpreting, implementing, and enforcing information security policies. Experience working with version and source control systems (e.g., git, subversion)
• Experience and knowledge related to automating common systems tasks, configuration management, or staging software using automation software (e.g, Ansible, Chef, Puppet, etc.)
• Experience in website administration (e.g. Apache, Nginx). Specifically troubleshooting TLS issues, rotating TLS certificates, and reviewing weblogs for security.
• Excellent communication skills with the ability to communicate and document computer security best practices, and effective interpersonal skills to develop good working relationships among staff, clients, and peers
• Familiarity in at least one switch operating system (e.g., Juniper, Cisco IOS, HPE Comware, etc)
• Familiarity and comfort with all major client operating systems (e.g., MacOS, Windows, Ubuntu) and mobile systems (e.g., Android, iOS)
• Familiarity with mobile device management systems (e.g, Miradore, JAMF, VMWare Workspace ONE, etc)
• Demonstrated knowledge and experience working in virtualized environments (e.g., VMWare vCentre, Xen, or VirtualBox)
• Highly engaged and aware of information security developments and best practices
• Highly knowledgeable about SSH and its advanced use cases such as reverse SSH tunneling, key agent troubleshooting, X Forwarding, and related security considerations.

To be successful in this role you will be:

• Accountable
• Communicator
• Meticulous
• Motivated self-learner
• Multi-tasker
• Tactful
• Team player

Closing Date: 11/15/2024, 11:59PM ET
Employee Group: USW
Appointment Type: Grant - Continuing
Schedule: Full-Time
Pay Scale Group & Hiring Zone:
USW Pay Band 12 -- $79,874. with an annual step progression to a maximum of $102,147. Pay scale and job class assignment is subject to determination pursuant to the Job Evaluation/Pay Equity Maintenance Protocol.
Job Category: Information Technology (IT)
Recruiter: Ann Yang

Lived Experience Statement
Candidates who are members of Indigenous, Black, racialized and 2SLGBTQ+ communities, persons with disabilities, and other equity deserving groups are encouraged to apply, and their lived experience shall be taken into consideration as applicable to the posted position.