Information Security Analyst at Indiana University in Indianapolis, Indiana
Posted in Other 7 days ago.
Job Description:
Department
UITS OMNISOC (UA-DOMN-IUINA)
Department Information
The Omni Security Operations Center (OmniSOC) is a security operations center hosted at Indiana University that provides monitoring and security operations services to US-based higher education institutions, research and education networks, and NSF-funded research facilities. OmniSOC is primarily made up of four teams:
- A business development team that drives OmniSOC growth and revenue by engaging prospective and current members, both directly and through outreach and engagement activities.
- A platform engineering team responsible for running the OmniSOC SIEM and other IT infrastructure.
- A security services team specializing in the comprehensive assessment and growth of OmniSOC members security programs by providing expertise, coaching, and security operations services to members.
- The security analyst and engineering team (this role) focuses on the analysis of OmniSOC member log data from networks and endpoints for indications of potential malicious activity or compromise.
OmniSOC key values:
- Member focus
- Analysts engage deeply with members to understand their goals, strengths, needs, and challenges.
- We are committed to raising the cybersecurity level of our community for the betterment of all.
- Impact
- Each analyst at OmniSOC bears responsibility for the success of OmniSOC and our community. We are committed to enabling the missions of education and research members through safer technology.
- We are focused on impact over volume.
Individual mastery and collective improvement - We value an exploring mindset and actively encourage curiosity while pursuing ways to learn more, make the world better, and expand our expertise.
- We view mistakes not as failures but learning opportunities and try to learn from each failure.
- Communication
- We are open and direct with each other when discussing problems.
- We default to openly sharing information with each other, our members, and the community.
- Courage
- We make tough decisions without agonizing and learn through doing and through one another to collectively improve our decision making.
- We act according to our principles even when no one is looking, we are unafraid to speak our minds or question actions that don't align with our professed values.
Job Summary
Department Specific Responsibilities
- Supports incident response activities within OmniSOC's domain of customers.
- Maintains consistent communication and feedback with the OmniSOC support staff.
- Serves as a resource to other OmniSOC security analysts and student interns.
- Analyzes detected security incident alerts for indications of computer security breaches and other incidents involving the use of technology.
- Reports likely compromises to appropriate OmniSOC members to include all analysis details and data sources used as part of the investigation and follows up with member security staff teams until an incident has been resolved.
- Acts as a liaison between OmniSOC and OmniSOC members for reported incidents, providing continued analysis as requested by the member security staff teams.
- Recommends and implements new SIEM visualizations and dashboards to assist with incident analysis workflow's.
- Evaluates existing workflow's and dashboards developed by OmniSOC Security Engineers to analyze advanced attacker techniques.
- Searches OmniSOC member logs for any occurrences of threat indicators and if any is discovered, analyzes all available log data to determine if an incident may have occurred.
- Acts as a technical resource for other OmniSOC analysts and student interns by providing training to teammates, attending training, seminar, and conferences.
- Performs ongoing analysis and monitoring of technology environments to identify security exposures and potential threats.
- Assesses and determines level of risk in order to provide threat information to information security leadership and/or department decision-makers; collaborates with information security staff to recommend protections and solutions.
- Documents information security analysis and monitoring efforts.
- Researches and stays abreast of current higher education security environment and trends; stays up-to-date on information security analysis and monitoring best practices, tools, and approaches.
- Assists with communication, awareness and training efforts for faculty, staff and student population through the creation of informational bulletins, best practices.
- Escalates complex exposures or threats to experienced security analysts and/or security engineers to ensure risks are avoided and/or addressed.
- Assists with incident response investigations and may assist with disaster recovery and business continuity efforts.
Qualifications
Combinations of related education and experience may be considered. Education beyond the minimum required may be substituted for work experience. Work experience beyond the minimum required may be substituted for education.
EDUCATION
Required
- Bachelor's degree preferably in Computer Science or related field
Required
- 2 years of information security or related experience
Preferred
- Professional level certifications in computer science, information technology, and/or information security
Preferred
- Experience in log analysis and computer security incident response experience preferred
- Experience in computer/database programming experience preferred
- Experience providing excellent customer service in a computing and web-based applications environment preferred
Required
- Proficient in written and verbal communication skills
- Maintains a high degree of professionalism
- Demonstrates time management and priority setting skills
- Demonstrates a high commitment to quality
- Possesses flexibility to work in a fast paced, dynamic environment
- Seeks to acquire knowledge in area of specialty
- Demonstrates in-depth knowledge of Microsoft Windows or Unix-like operating systems
- Attention to detail in communicating technical issues and implementing solutions
Preferred
- Extensive working knowledge of the IP protocol suite, specifically relating to TCP and UDP protocol behavior and interdependencies with the applications suite (DNS, SMTP, HTTP, SSL/SSH, etc.) is preferred
- Knowledge of computing environments and authentication mechanisms
- Knowledge of central authentication systems and expertise with tools used to identify users of devices connected to a network
- Understanding of databases and query structures
- Knowledge of University policies and U.S. Laws as they relate to copyright
- Ability to expeditiously review and analyze detailed information
- Ability to work independently and as a member of a team
- Ability to handle and safeguard confidential information
Working Conditions / Demands
This role requires the ability to effectively communicate and to operate a computer and other standard office productivity equipment. The position involves sedentary work as well as periods of time moving around an office environment and the campus. The person in this role must be able to perform the essential functions with or without an accommodation.
Additional Information
Federal background checks and/or non-disclosure agreements on behalf of the OmniSOC's customer base may be required to fulfill employment requirements.
Work Location
Indianapolis, Indiana and/or Bloomington, Indiana
This position is eligible for remote work or to work a hybrid schedule (mix between remote and in-person work), subject to change in the future based on university policy and business needs.
Benefits Overview
For full-time staff employees, Indiana University offers a wide array of benefits including:
- Comprehensive medical and dental insurance
- Health savings account with generous IU contributions
- Healthcare and dependent care flexible spending accounts
- Basic group life insurance paid by IU
- Voluntary supplemental life, long-term disability, critical illness, and supplemental accidental death & dismemberment insurance
- Base retirement plan with generous IU contributions, subject to vesting
- Voluntary supplemental retirement plan options
- Tuition subsidy for employees and family members taking IU courses
- 10 paid holidays plus a paid winter break each year
- Generous paid time off plans
- Paid leave for new parents and IU-sponsored volunteer events
- Employee assistance program (EAP)
Job Classification
Career Level: Core
FLSA: Exempt
Job Function: Information Technology
Job Family: IT Security & Privacy
Click here to learn more about Indiana University's Job Framework.
Posting Disclaimer
This posting is scheduled to close at 11:59 pm EST on the advertised Close Date. This posting may be closed at any time at the discretion of the University, but will remain open for a minimum of 5 business days. To guarantee full consideration, please submit your application within 5 business days of the Posted Date.
If you wish to include a cover letter, you may include it with your resume when uploading attachments.
Equal Employment Opportunity
Indiana University is an equal opportunity employer and provider of ADA services and prohibits discrimination in hiring. See Indiana University Notice of Non-Discrimination here which includes contact information.
Campus Safety and Security
The Annual Security and Fire Safety Report, containing policy statements, crime and fire statistics for all Indiana University campuses, is available online. You may also request a physical copy by emailing IU Public Safety at iups@iu.edu or by visiting IUPD.
Contact Us
Request Support
Telephone: 812-856-1234
More jobs in Indianapolis, Indiana
|
Kroger |
|
CyberCoders |
|
Vi-Tel Inc. |