Careers at MassHousing

Information Security Engineer

Organization: MassHousing

Location: One Beacon Street, Boston, MA 02108

Posting Closes: Close of Business on March 16, 2025

Website: www.masshousing.com

All positions at MassHousing require a customer service mindset, in accordance with our values: Respect, Service, Empathy, Accountability, Collaboration, and Inclusion.

The Organization

MassHousing will confront the housing challenges facing the Commonwealth to improve the lives of its people. A bold mission for an innovative agency. Since its inception in 1966, MassHousing has provided more than $29 billion for more than 125,000 apartments and more than 105,000 home mortgage loans. Beyond lending, we also work to promote economic growth and empowerment for families, individuals, and businesses; help communities increase their housing stock; provide hope and homes for vulnerable populations, and look for new, cost-effective ways to provide equitable housing opportunities. We have a relentless determination to confront the Commonwealth's housing challenges and improve lives.

We know that we cannot meet our mission without a workforce that is committed to standing with us in our efforts. We achieve this by making investments in staff development and prioritizing individuals who align with our values including an unwavering dedication to diversity, equity, and inclusion.

As an employee of MassHousing you are offered a great career opportunity which is more than a paycheck. MassHousing’ s total compensation package features an outstanding set of employee benefits which you should consider towards your overall compensation, including but not limited to:

• Tuition reimbursement up to $10,000 per calendar year
• A 35-hour work week and a hybrid work schedule
• Back up Child/Elder Care
• Retirement Savings including a pension and a deferred compensation plan (with a match)
• Comprehensive health, dental and vision plans
• 12 paid Holidays per year and generous sick, vacation, and personal time
• Short-Term Disability
• Central Boston office location, convenient to public transportation and amenities on site

If you're ready to join our dynamic team of mission driven professionals, this might be the job for you! Interested candidates should send a letter of interest and a resume to MassHousing by logging in to https://prd01-hcm01.prd.mykronos.com/ta/6003873.careers?CareersSearch

Position Summary

The Information Security Engineer (ISA) in IT Operations (ITOps) is responsible for technology supporting network and security infrastructure (NetSec Infrastructure). The ISA maintains and administers existing NetSec infrastructure systems, ensuring optimal operation, availability, current versioning, security compliance, problem resolution, complete and accurate documentation, and other systems administration duties as required. As the senior technical role in the Information Security section, the ISA interprets analyst, system-generated, and third-party security recommendations and findings to design and implement associated technical solutions and maintain the security of NetSec and core infrastructure systems accordingly. In line with modernization goals, the ISA works closely with IT management to identify and implement new NetSec infrastructure systems to maintain and continuously improve the security of business applications, services, and data. As a member of the Information Security section of ITOps, the ISA works closely with the other ITOps sections (Network Services, IT Support Services) to support and secure all aspects of IT operations.

Specific Duties and Responsibilities

• Develop, implement, and follow system administration plans and procedures, ensuring a strong foundation is in place to maintain and secure NetSec infrastructure systems efficiently and effectively.
• Review and evaluate existing NetSec infrastructure technology to identify opportunities to modernize, optimize, and enhance security, and implement solutions to accomplish these goals.
• Collaborate with Information Security Manager, Analysts, and third-party security partners to evaluate security findings and recommendations and plan and coordinate with relevant ITOps teams to remediate/implement.
• Collaborate with Information Security Manager, Analysts, and third-party security partners to identify and implement configurations to proactively improve and enhance NetSec and core infrastructure security.
• Design, implement, and maintain NetSec infrastructure redundancy solutions, ensuring infrastructure security is maintained and LAN/WAN connectivity is highly available and resilient to potential outages.
• Identify and review new NetSec infrastructure technology solutions, evaluate their benefits, and document and present recommendations to the Information Security team and IT management.
• Assist in the procurement process for new NetSec technology solutions by evaluating options and cost, drafting justifications, and working with management to finalize and procure.
• Design, architect, and implement new NetSec infrastructure technology solutions.
• Participate in the development of security incident response plans, collaborating with all IT departments and sections to ensure roles are understood and procedures are clear, concise, and actionable.
• Support all IT departments and sections by acting as the technical lead and escalation point for security events and incidents.
• Actively participate in knowledge transfer and mentoring with other Engineers, ensuring a security mindset is developed and adequate coverage is in place for all NetSec infrastructure systems.
• Perform scheduled and unscheduled system and hardware upgrades, patches, and other system needs, requiring occasional availability outside of standard business hours, including nights (7pm-7am), weekends (Fri-Sun), and during emergencies; average is eight times per year and will vary based on business needs
• Provide rotating on-call coverage for unforeseen security issues that may arise; shifts are weeklong, 24/7, and occur approximately once every three weeks

Knowledge, Skills and Abilities Required

• High-level knowledge, expertise, and experience related to:
• Network architecture, virtual infrastructure, system administration, and cyber security concepts.
  • LAN/WAN and wireless infrastructure architecture and design, utilizing Fortinet firewalls, switching, and WAPs.
  • LAN/WAN and wireless security architecture and design, utilizing Fortinet networking, VPN, ZTNA, and NAC.
  • E-mail security architecture and design, utilizing ProofPoint Email Protection, TAP, TRAP, and DMARC.
  • Endpoint and cloud security architecture and design, utilizing Microsoft Defender suite.
  • Microsoft cloud concepts, security, and administration, with a focus on Azure networking, IaaS, PaaS, SSO, MFA, and conditional access.
  • Microsoft system administration and security, including Active Directory, DNS, DHCP, and Windows Server.
  • System protection and resiliency, including concepts related to disaster recovery, high availability, and system backup and restoration.
  • Troubleshooting and resolving complex technical problems.
• Exceptional critical thinking and troubleshooting skills.
• Exceptional customer service skills.
• Strong verbal and written communication skills (technical and non-technical).
• Strong work ethic and the ability to work independently and as a member of a team.
• Effective time management skills.

Minimum Education and Training

• Bachelor’s degree in information technology field or equivalent work experience.
• 10+ years of work experience with Fortinet-based networking, perimeter security, and remote access.
• 10+ years of work experience with Microsoft-based system administration and security, including Windows Server, Active Directory, DNS, DHCP, and Group Policy.
• 10+ years of work experience with Microsoft-based cloud infrastructure, including Azure networking, IaaS, PaaS, and identity. 
• 10+ years of work experience with e-mail security. 

Salary Range: $103,312.74 - $134,306.46

MassHousing has a hybrid work policy. Employees will be required to report to the office at One Beacon on a schedule to be determined with their supervisor depending on the needs of the position. However, during the first 90 days, the employee may be expected in the office more frequently for training and onboarding.

MassHousing is an Equal Opportunity Employer