Security Analyst

Position: SECURITY ANALYST #00051082
Hiring Department

Information Technology
- Security

The Information Technology Department supports administrative systems, academic technologies, and research computing. System reliability and campus operations are strengthened through IT initiatives. IT roles involve system support, infrastructure maintenance, and technical collaboration with campus units.

Job Description

Are you seeking to make a difference in the lives of students? Are you desirous of enabling research that is changing our world? Would you like to have a strong influence in setting direction for a technology organization whose mission focuses on education, research, and application of knowledge to solve some of the world's great challenges? If so, we would like to talk to you.

If you are a potential member of the S&T information technology team and possess humility, coachability, approachability, introspection, and a passion for building relationships, then we would like to speak with you.

Developing cybersecurity professional capable of independently handling operational security responsibilities, incident response activities, and administration of core security technologies.

This role requires the ability to independently manage operational responsibilities, contribute to technical projects, collaborate across organizational teams, and support institutional compliance and security objectives. The ability to work on export-controlled projects and with law enforcement is required. The ability to obtain and maintain a security clearance is required.

Core Competencies

Behavioral Competencies

* Professional Presence:
Models professionalism, integrity, and respect; enhances IT's reputation across campus and with external partners.

* Responsiveness:
Demonstrates reliability and timeliness in communication and service delivery.

* Calm Demeanor:
Maintains composure in high-pressure situations and contributes to a positive, solutions-oriented environment.

* Collaborative:
Builds effective working relationships across departments and technical teams.

Leadership Competencies

* Positively Influences Others:
Encourages teamwork, accountability, and continuous improvement.

* Professionally Advocates for Change:
Supports organizational and technical improvements with professionalism and transparency.

* Effectively Communicates:
Clearly communicates technical and operational information to technical and non-technical audiences.

* Supports Team Development:
Assists with mentoring, training, and knowledge sharing when appropriate.

Management Competencies

* Plans and Documents Work:
Maintains accurate technical documentation and follows established operational processes.

* Prioritizes Work Appropriately:
Balances operational responsibilities, incidents, and project assignments effectively.

* Successfully Executes:
Completes assigned responsibilities and projects with consistency and reliability.

* Contributes to Continual Improvement:
Identifies opportunities to improve operational efficiency and security effectiveness.

Technical Competencies

* Self-driven Learner:
Maintains awareness of emerging cybersecurity threats, technologies, and higher education IT trends.

* Delivers on Functional Responsibilities:
Independently performs operational security duties and technical support activities.

* Compliance:
Supports adherence to institutional policies and security frameworks including FERPA, GLBA, NIST-CSF, CUI, EAR, and ITAR requirements.

* Contributes to Security Operations:
Supports monitoring, remediation, and operational security activities across the institution.

Key Responsibilities

Firewall and Network Security:

* Assist with the configuration, monitoring, and maintenance of enterprise firewalls and related security infrastructure

* Support firewall policy implementation and network segmentation initiatives

* Troubleshoot firewall-related incidents and operational issues

* Collaborate with networking and infrastructure teams on secure service delivery and connectivity changes

Identity and Access Management:

* Administer and support Azure Active Directory (Entra), Active Directory, and related identity management systems

* Support user account provisioning, de-provisioning, and access reviews

* Assist with role-based access control (RBAC) and least-privilege implementation efforts

* Maintain appropriate access documentation and audit records

Incident Response and Security Operations:

* Participate in security incident response activities including investigation, containment, remediation, and documentation

* Investigate phishing campaigns and support email security operations

* Monitor security systems, alerts, and logs for suspicious or malicious activity

* Escalate complex incidents appropriately and collaborate with internal and external stakeholders

Vulnerability Management:

* Assist with vulnerability scanning, tracking, remediation coordination, and reporting

* Support administration of Microsoft security technologies including Defender, Entra, and Sentinel

* Contribute to operational…