As an information security analyst, you will monitor and advise on information security issues across systems and workflows to ensure the university's internal security controls are appropriate and functioning as intended. You will manage and maintain security appliances, including firewalls, intrusion prevention systems (IPS), endpoint security, mobile device management, wireless network solutions, and more. Responsibilities include coordination and completion of information technology (IT) security projects and the development of responses to information security incidents (IR/IM). You will create and publish information security policies, procedures, standards, and guidelines based on best practices and compliance requirements.
In this role, you will conduct university-wide data classification assessments and security audits, and manage remediation plans. You will collaborate with IT management, the legal department, safety and security, and law enforcement agencies to address security incidents and vulnerabilities. Among other duties, you will develop, manage, and maintain user security awareness, and prepare documentation, including department policies and procedures, campus notifications, web content, and alerts. Additionally, you will conduct security research to stay current on the latest security issues and lead training sessions on information security practices.
The ideal candidate demonstrates excellent communication, interpersonal, and consultative skills. They have knowledge of incident and/or malware response, including chain-of-evidence practices and analysis with proprietary and open-source tools. They also have basic knowledge of network security tools, including data loss prevention, network intrusion prevention systems, host intrusion prevention systems, and related technologies.
Minimum qualifications:
- Bachelor’s degree in computer science, information technology, or a related field
- At least three years of experience in information security
- Experience working with endpoint protection solutions including Palo Alto, Trend, Carbon Black, FireEye, CrowdStrike, and more
Preferred qualifications:
- Experience using Splunk to perform security information and event management (SIEM)
- One or more certificates (CISSP, CISM, CISA, GSEC, CEH, GIAC) or solution-specific technical certifications
Certificates, licenses, and registrations:
Travel required:
Work hours: The university work week is Sunday through Saturday. Most offices are open Monday through Friday from 8:30 a.m. to 5:30 p.m. To accommodate business needs, employees may be assigned to other workdays and/or hours, including weekends and evenings.
ADA tag: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements and minimum qualifications listed represent the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions and/or meet the minimum qualifications.