×
Register Here to Apply for Jobs or Post Jobs. X

Information Security Analysts

Job in Salt Lake City, Salt Lake County, Utah, 84193, USA
Listing for: University of Utah
Full Time position
Listed on 2026-07-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Security Manager
Salary/Wage Range or Industry Benchmark: 100000 - 130000 USD Yearly USD 100000.00 130000.00 YEAR
Job Description & How to Apply Below

Job Summary

Information Security Analysts (Cybersecurity Analyst Tier 3, Security Operations Center) support the University’s Information Security and Compliance goals. The Tier 3 SOC analyst is the senior escalation point, leading complex investigations while driving detection engineering, automation, and continuous improvement initiatives. The role blends investigative expertise with technical capabilities to improve detection fidelity, reduce response times, and strengthen organizational security.

The University Information Technology (UIT) is the central IT service provider for the University of Utah. It reports to the Chief Information Officer and manages IT services including security.

Responsibilities Incident Response
  • Lead the end‑to‑end incident response lifecycle, including triage, investigation, containment, eradication, and post‑incident analysis across endpoint, network, cloud, and identity domains.
  • Serve as the senior escalation point for Tier 2 analysts, providing technical direction and oversight for complex investigations.
  • Perform digital forensics to support root‑cause analysis, adjust security detections to address identified gaps, and develop post‑incident plans of action.
Detection Engineering
  • Own detection strategy and coverage across key threat domains.
  • Define telemetry requirements in partnership with security engineering and platform owners.
  • Lead development of detection standards and quality metrics.
  • Design and maintain detection logic across SIEM, EDR, and cloud platforms, ensuring high‑fidelity alerting through tuning, enrichment, and correlation of multi‑source telemetry.
  • Identify detection gaps based on threat intelligence and incident‑response needs.
  • Design, build, and maintain automation (SOAR) to improve triage, data enrichment, and response efficiency.
  • Operationalize threat hunting and incident findings into scalable detection use cases and playbooks.
Threat Analysis
  • Lead hypothesis‑driven threat hunting campaigns informed by threat intelligence, transforming findings into durable detections and response playbooks.
  • Conduct proactive threat hunting to detect advanced adversarial activity not detected by existing controls.
  • Analyze attacker behavior and map to known tactics, techniques, and procedures (TTP).
  • Continuously evaluate detection coverage, proactively reducing false positives while increasing detection quality.
Leadership
  • Assist in mentoring and developing Tier 1/2 SOC analysts; conduct periodic investigation reviews to ensure quality.
  • Drive improvement in SOC processes, workflows, and incident‑response playbooks.
  • Produce clear, actionable after‑action reports and executive‑ready summaries for findings.
  • Partner with internal IT teams to improve logging, telemetry, and observability across the environment.
Minimum Qualifications

EQUIVALENCY STATEMENT: One year of higher education can be substituted for one year of directly related work experience (e.g., bachelor’s degree equals four years of directly related work experience).

Information Security Analyst, IV: Requires a bachelor’s (or equivalency) and 8 years, or a master’s (or equivalency) and 6 years of directly related work experience.

Information Security Analyst, V: Requires a bachelor’s (or equivalency) and 10 years, or a master’s (or equivalency) and 8 years of directly related work experience.

Information Security Analyst, VI: Requires a bachelor’s (or equivalency) and 12 years, or a master’s (or equivalency) and 10 years of directly related work experience.

Information Security Analyst, VII: Requires a bachelor’s (or equivalency) and 14 years, or a master’s (or equivalency) and 12 years of directly related work experience.

Preferences
  • Strong operational security background.
  • Experience conducting hands‑on analysis of large volumes of logs, network data, and other attack artifacts during incident investigations.
  • Extensive experience leveraging SIEM and SOAR platforms to analyze diverse log types and events across multiple data sources, applying behavioral, statistical, and machine learning techniques to detect and respond to advanced threats.
  • Strong understanding of the network threat lifecycle, attack vectors, and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary