The Information Security Analyst (ISA) will work collaboratively with the campus community in the planning, development, and implementation of an information security program. The ISA will manage security improvement projects; maintain knowledge of changing information security threats and technologies; and provide recommendations for adaptation of new technologies, procedures, or policies.

The ISA will advise and assist at all levels on intrusion prevention, the use of security-related technologies, recommended action in the event of a compromise, current threats, and best practices for securing applications, data, and systems. The successful candidate will work across multiple information security specialties, including but not limited to: incident analysis and response, data security, digital forensics, network security, application security and vulnerability management both for on-premise and public cloud-based systems.

Description of Duties
  • Independently research and make technical recommendations regarding information security policies, practices, system development, and architecture for both on-premise and public cloud infrastructure.
  • Work both autonomously and collaboratively with team members to design, architect, develop, and continuously enhance information security tools and resources.
  • Work collaboratively with resource owners to determine and establish appropriate security requirements, policies, and practices; interpret and ensure compliance with existing policies and procedures.
  • Investigate and respond appropriately to internal and/or external complaints (e.g., scanning, hacking, spamming, harassment, abuse, DMCA notices, and any other incidents that include a cyber element).
  • Develop methodologies and perform forensic and other in-depth analysis of critical central systems for signs of unauthorized activity or abuse.
  • Exercise discretion and independent judgment to determine possible threats, assess potential severity, and to develop appropriate action plans for addressing issues identified.
  • Stay current on security techniques, tools, and evolving threats; contribute to periodic security briefings and updates for members of the campus community.
  • Other duties as assigned.
Minimum Requirements
  • Bachelor’s degree and three to five years of combined IT and IT security experience or an equivalent combination of experience, training, and education.
  • Excellent written and verbal communication skills and the ability to relate information security requirements to appropriate technical controls.
  • Strong working knowledge of computer security principles and practices, including their application to operating system configuration, host and network monitoring, vulnerability scanning, application development, and host and network forensic analysis.
  • Working knowledge of foundational networking principles, including TCP/IP, DNS, DHCP, and HTTPS.
  • Excellent troubleshooting skills and the ability to research and learn new technology.
Preferred Experience
  • Experience analyzing and correlating system/access logs using Splunk or similar SIEM (or other log analysis) tool and developing reports for a variety of audiences.
  • Experience managing firewall policies and using common security-related tools.
  • Experience operating and securing AWS or other public cloud infrastructure systems.
  • Experience with threat intelligence feeds and border protection strategies including email security, DNS protection, and IDS/IPS.
  • Demonstrated experience with Palo Alto firewalls.
  • CISSP or other advanced security-related certifications.

If this environment sounds like a strong match or even an exciting challenge, we encourage you to apply and use your cover letter to explain why you would be a good fit for the role. Please include resume, cover letter, and names and contact information for three references through the online link: http://apply.interfolio.com/72930