IT Security Analyst II
Seeking IT Security Analyst II
Position Summary
As a member of the Information Security Office’s (ISO) Security Operations Team, the IT Security Analyst II is an experienced professional, responsible for using advanced tools to monitor and respond to security events, incidents, and threats to ensure the protection of the university’s information systems and data. This position is responsible for supporting daily activities and escalations of the security operations team and requires a deep understanding of cybersecurity, including intrusion detection and prevention, incident response, vulnerability management, and digital forensics.
The ideal candidate has excellent time management and communication skills, is proactive and critical thinking, and has experience using and supporting highly technical security tools.
Work Location: This position is local to Houston, TX, and requires occasional time worked in the office, but offers a flexible work location and schedule from Harris and surrounding counties.
Requirements
Bachelor’s Degree
In lieu of the education requirement, additional related experience, above and beyond what is required, on an equivalent year-for-year basis may be substituted
3 years of work-related experience in information security operations and SIEM architecture/engineering
In lieu of the experience requirement, additional related education, above and beyond what is required, on an equivalent year-for-year basis may be substituted
Ability to work with technical personnel, senior university staff and the general campus community
Excellent oral and written communications, excellent interpersonal, communications, collaborative and negotiating skills
Strong technical background in Information Security methodologies, Internet (TCP/IP) protocols and network architecture / hardware
Essential Functions
Hands-on with day-to-day monitoring and forensic analysis of incident alerts and reports through the internal ticketing system, email, phone, and enterprise security technologies in a timely and accurate manner in order to resolve a multitude of information security-related situations
Analyzing data and reports from security systems like firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) solutions to identify anomalous activity that could indicate potential breaches or attacks
Execute the incident response plan and assist in investigation efforts of detected security events from everyday security events to advanced persistent threats (APTs)
Contribute to documenting detailed incident response playbooks, aid in critical security incident response investigations, and work with asset owners, stakeholders, the ISO team, and relevant senior leadership to develop and execute remediation plans
Maintain operational readiness, patch management, and appropriate configurations of all ISO-managed tools and technologies
Contribute to implementing and maintaining event correlation rules, dashboards, and scripts to automate security tasks
Assists with regular reports on outcome-based metrics and trending around information security risks and operations to demonstrate the effectiveness of security operations
Contribute to improvements to security monitoring, incident management, intelligence, vulnerability management, and information security awareness processes
Research and leverage cybersecurity intelligence sources to improve incident detection and response capabilities
Participate in an after-hours on-call rotation for monitoring and responding to security events
Performs all other duties as assigned
Additional Functions
Support the vulnerability management program by providing insights on security incidents that may have arisen from known vulnerabilities
Ability to work with a diverse group of stakeholders including technical staff, senior university personnel, and the general campus
Develop and build strong relationships at all levels and across all business units and organizations understanding various business imperatives
Participate in collaborating with other departments on campus to socialize Information Security Office initiatives and to ensure that security is integrated into all aspects of their operations
Preferences
Bachelor’s degree in computer science, information technology, or related field
Has obtained security certifications, such as CISSP, Security+, GCIH, and CEH
Experience working in an institution of higher education
Experience with incident detection and responses processes and technologies and their business impact
Deep knowledge of NIST standards and MITRE attack framework
Hands-on experience using security technologies like SIEM, firewalls, IDS/IPS, endpoint security protection, etc.
Experience with programming and scripting languages, such as PERL and Python
Job Order ID#: 5442
Location: Houston, TX
Job Type: Direct Hire
Apply For This Position
