Cloud / Systems Administrator

This position will work closely with the University Export Control Program, the University Information Security Office, the University HIPAA Privacy Program, and the University research faculty to ensure a collaborative and common approach to security information issues within the Controlled and Regulated Research Program. Responsibilities include configuring both Cloud and physical computation and storage systems, responding to incidents, creating and reviewing process and procedure documentation, and promoting a secure posture in IT environments for University research projects. The incumbent will contribute to the UITS Research Technologies (UITS RT) architecture planning process to ensure information security is a core principle for all UITS RT services.

This position requires that the incumbent be a U.S. citizen to comply with federal contractual requirements. This position requires the ability to work on the Tucson campus as needed; relocation funds are not available.

Outstanding UA benefits include health, dental, and vision insurance plans; life insurance and disability programs; paid vacation, sick leave, and holidays; UA/ASU/NAU tuition reduction for the employee and qualified family members; retirement plans; access to UA recreation and cultural activities; and more!

The University of Arizona has been recognized for our innovative work-life programs. For more information about working at the University of Arizona and relocation services, please click here.

• Configure and maintain IT system compliance with various regulatory requirements, including but not limited to CMMC, ITAR, NIST, and HIPAA.
• Participates in planning, designing and implementing enterprise-level infrastructure as code and platforms related to cloud computing technologies and infrastructure to improve the security, operational stability, and maturity of the secure research program.
• Use automated and manual testing, examination, scanning, and discovery techniques to identify, validate, and assess IT security vulnerabilities.
• Coordinate with information security analyst to ensure that controls are properly implemented, and to actively identify any gaps that may result in non-compliance with regulatory requirements. Gathers evidence to support the implementation.
• Monitors system performance, identifies constraints, and implements optimizations to improve performance and assesses future resource needs.
• Support
  the development, documentation and management of IT systems, tasks,
  procedures, and practices.
• Participate
  in initiatives to automate repetitive tasks and improve system scalability,
  reliability, and security, leveraging scripting languages and automation tools
• Configuration
  of network settings, ingress and egress through firewalls, NAT usage, and
  DNS.
• Coordinate
  across teams to establish and maintain network connectivity,
  authentication, and software licensing.
• Participate
  in institution-wide efforts to ensure compliant technical solutions are in
  place and readily accessible for researchers.
• Build
  and maintain positive working relationships with research faculty and
  technology staff.
• Work
  directly with faculty, staff, and students to provide expert guidance on
  federal regulations, UA policy and procedures, and IT security protocols
  implemented to achieve compliance.
• Respond
  to relevant service requests received from end-users conducting activities
  subject to IT security requirements, both remotely and in-person.
• Additional duties as assigned.

Knowledge, Skills and Abilities

• In-depth knowledge of administering and securing IT systems, networks, and data, including expertise in at least one of the following areas: system administration, endpoint management and protection, or cloud administration.
• In-depth knowledge of Microsoft Server Administration (Active Directory, Group Policy, DNS).
• Ability to learn new technology and procedures in a constantly evolving technical and regulatory environment.
• In-depth knowledge of writing scripts (Powershell, Bash, Python, etc.).
• Knowledge of complex government (federal and/or state) security regulations.
• Knowledge of cloud computing techniques and technology.
• Knowledge of version control development practices.
• Strong verbal and written communication and interpersonal skills.
• Ability to collaborate with a multi-functional, cross-department team.
• Ability to practice discretion around sensitive issues.

This job posting reflects the general nature and level of work expected of the selected candidate(s). It is not intended to be an exhaustive list of all duties and responsibilities. The institution reserves the right to amend or update this description as organizational priorities and institutional needs evolve.

• Bachelor's degree or equivalent advanced learning attained through professional level experience required.
• Minimum of three (3) years of relevant work experience, or equivalent combination of education and work experience.

• Bachelor's degree in computer science, information systems or a related area.
• Experience in one or more of the following areas: systems administration, network administration, application design/development, middleware, identity and access management or other specific technical expertise.
• Experience in IT security, information technology, information assurance or related experience, with preferred service in a Federal Government, DoD Industrial Security environment, or Health Care Organization.
• Experience administering Linux and Windows servers in AWS GovCloud.
• Experience with Infrastructure-as-code (IaC), containerization and serverless technologies.
• Experience in automation-first development practices.
• Experience with cybersecurity policies based on NIST 800-53, NIST 800-171, or ISO 27001.
• Experience with complex government regulations (HIPAA, CMMC / CUI).
• Experience in a Higher Education environment.
• Experience in a collaborative environment.
• Experience problem-solving in secure IT environments.