The Aspen Institute, founded in 1950, is an international nonprofit organization dedicated to fostering enlightened leadership and open-minded dialogue.  Through seminars, policy programs, conferences, and leadership development initiatives, the Institute and its international partners seek to promote nonpartisan inquiry and an appreciation for timeless values.  The Institute is headquartered in Washington, D.C., supports a regional program office in NYC, and has conference, program, hotel facilities in Aspen, Colorado, and on the Wye River on Maryland’s Eastern Shore.  Its international network includes partner Aspen Institutes in Paris, New Delhi, Berlin, Rome, Kiev, Mexico City, Bucharest, Madrid, and Tokyo, and leadership programs in Africa.

Basic Function: 

Under general supervision, but following established policies and procedures, this person will ensure the secure operation of the Institute’s information security systems, servers, applications, and all devices connected to the Institute’s networks. The Security Engineer will conduct both network and user activity audits at regular intervals and will have primary responsibility for ongoing execution of the IT Patch Management program. This position will support the identification and resolution of potential security breaches and vulnerability issues in a timely and accurate fashion. Ability to conduct preliminary research and analysis on emergent information security and threat topics, prepare and maintain comprehensive device and system documentation, develop reports, and effectively communicate with others, are all key elements required for success in the position. 

Performs other duties as needed for smooth operation of Institute Information Technology under the guidance of the Director of Information Technology and Services.

Essential Duties and Responsibilities:

• Ensure the integrity and confidentiality of Aspen Institute information residing in all Institute databases, workstations, servers, and other systems.
• Ensure the security of data transferred internally.
• Maintain and keep current all security systems and their corresponding or associated software, including firewalls, VPNs, intrusion detection systems, cryptographic systems, biometrics, anti-spam, and anti-virus software, and all updates published by their respective vendors or manufacturers.
• Ensure that the appropriate patches, hotfixes, and service packs are tested then installed on all company-owned or licensed software in a timely manner and in accordance with established Institute processes and procedures.
• Manage IT security monitoring solutions
• Investigate and analyze security alerts
• Work with system owners to remedy problems. Document findings and resolution
• Support Incident Response investigations as required and occasionally after normal business hours.
• Oversee continuous update and enforcement of security-related policies and procedures for system security administration and user system access, based on industry-standard best practices and Institute Information Security Policy.
• Recommend and deploy additional security products and tools, or enhancements to existing tools, to detect violations of network security measures.
• Governor user logon procedures and password management practices.
• Propagate security awareness among employees.
• Assist in designing and implementing disaster recovery plans for operating systems, databases, network connections and protocols, servers, and software applications.
• Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
• Availability to participate in the on-call rotation and respond to after-hours on-call as backup support in the Operations Team.
• Performs other Information Technology duties as assigned by ITS leadership

Knowledge, Education and Experience:

Education & Experience

• Four-year college degree in Information Security field or equivalent combination of education and working information security experience required.
• Minimum 3-5 years information security or 5-8 years in information technology.
• Broad hands-on knowledge of network and information security components, including firewalls, intrusion detection systems, network devices and protocols, anti-virus solutions, data encryption, and other industry-standard techniques and practices.
• CompTIA Security+, CCNA Security, or C|EH or higher information security certification preferred.
• Strong knowledge of IP, TCP/IP, and other network administration protocols, including their vulnerabilities and solutions.
• Knowledge of applicable laws and practices relating to data privacy and protection.
• Knowledge of vulnerability assessment and penetration testing methodologies and platforms.
• Working technical knowledge of current systems software, operating systems, and networking protocols and standards, including Microsoft Windows, VMWare and Cisco IOS.
• Hands-on experience with devices such as firewalls, hubs, switches, and routers.
• Proficient technical writing, documentation, and communication skills.

Other qualifications

• Highly self-motivated and directed. Ability to conduct research into emergent security threat, actors and products as required.
• Excellent analytical and problem-solving skills in relation to computers, network systems and software; proven verbal communications skills within all organizational levels required; Strong organizational skills and excellent attention to detail.
• Ability to prioritize and execute tasks in a high-pressure environment.
• Experience working in a team-oriented, collaborative environment.
• Ability to function in a financial institution branch environment and utilize standard office equipment including but not limited to:  PC, fax, copier, telephone, etc. 
• Ability to lift 25 lbs. or more and relocate computer equipment.  

Schedule and Travel

• Evening and weekend work will be necessary to fulfill the duties of this position. Willingness to work a flexible schedule is a must.   
• Extended overnight travel to other Institute offices will be expected.

Physical Requirements & Work Conditions

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 

While performing the duties of this Job, the employee is regularly required to use hands to finger, handle, or feel. The employee is frequently required to stand, walk, sit, reach with hands and arms and talk or hear. The employee is occasionally required to climb or balance and stoop, kneel, crouch, or crawl. The employee must frequently lift and/or move 10 – 25 pounds and occasionally lift and/or move up to 75 pounds (with assistance as required). Specific vision abilities required by this job include Close vision, Distance vision, Peripheral vision, Depth perception and Ability to adjust focus.

While performing the duties of this job, the employee is occasionally exposed to work near moving mechanical parts; outdoor weather conditions and risk of electrical shock. The noise level in the work environment is usually moderate.

The Aspen Institute is an Equal Opportunity Employer and complies with all District and federal laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, or protected veteran or disabled status and will not be discriminated against.