Open Date: 02/22/2018
Date Initial Screening Begins:
Minimum Education/Experience: Bachelor's degree or an equivalent combination of education and experience.
Special Instructions to Applicant: East Carolina University requires applicants to submit a candidate profile online in order to be considered for the position. Candidates must also submit a cover letter/resume, and a list of three references, including contact information, online.
Job Duties: The main responsibilities of this position are to manage and support the Security Information and Event Monitoring Program (SIEM). The position will work closely with ITCS staff members, campus constituents and vendors to develop, implement, maintain, enhance, automate and provide overall general technical support of administrative technological solutions that support the mission of the university. The SIEM Coordinator will be responsible for providing IT security services to customers within the university. This includes the development and use of inter-operational processes and procedures. Working with more senior analysts and vendors to deliver high quality technical solutions in response to security requirements. Perform multiple assigned technical tasks including monitoring, research, and analysis of the security solutions. This individual will utilize network security products, technology, threat, vulnerability and specialized skills that monitor security systems and events to detect and investigate threats and work regularly with internal and external departments to enhance current solutions to improve security posture. Serve as the main vendor contact for the SIEM solution, monitoring ticket queues and addressing requests appropriately through ticket resolution. This individual is expected to possess professional, operational and inter-personal skills to function effectively in collaboration with internal and external customers. The SIEM Coordinator should possess skills that include networking, security technologies experience, understanding of security best practices, written and oral communications, must be detail oriented and customer focused. The employee will demonstrate the ability to quickly assess faults and take corrective action in a mission critical environment. This individual will work with ITCS staff and vendors to configure, fine-tune, monitor the SIEM application. Monitor ticketing queues, remediate tickets through research/investigating issues and coordinating resources as needed for, and close tickets. This position will assist other support teams and university users with resolving challenging network and application problems and will also be responsible for attending provisioning meetings to gather customer requirements, installing configurations into test and production environments, and obtaining final customer acceptance. Work may include onboarding/off boarding of IT systems, role assignment, log container setup, managing data analysis volume, monitoring and prioritizing for contract cost and compliance, correlation search development, alert actions, reporting, creating Pivot tables, data visualizations and reports, data modeling, data normalization, data classification, and data enrichment. The employee in this position is a skilled technical resource for other team members in the core areas of responsibility providing assistance with problems from low to medium complexity through analysis and problem resolution. This includes participating as a project team member as well as managing projects that have a medium impact and complexity utilizing state of the art technologies. This position will develop, oversee, manage and coordinate the new SIEM Student Internship Program. This position will be responsible for ensuring the planning and coordination of the SIEM student internship program and its activities, ensuring implementation of policies and practices are followed, student scheduling, and establishing learning objectives for the student interns to aid in supporting the SIEM solution for security analysis and alerting for applications and network devices. This position provides support for the Cyber Security Threat Management and Remediation program. This includes managing Cyber Security Threats as they are identified, analyzed, threat level determined, and remediated. These types of threats include but not limited to phishing, ransomware, malware, etc. This position will be responsible for managing IT Security Incidents during their scheduled "on-call" rotation. This includes incident level determination, incident activation, initiating the Security Incident Response Team, notification to appropriate personnel, maintaining communication levels throughout the incident, coordinating remediation efforts when multiple groups are involved, and documenting the incident. Other duties as assigned. The employee in this position is responsible for forming and maintaining strategic technology contacts and partnerships with university departments, key technology suppliers, vendors and contractors. This position is responsible for the assisting with planning, cost containment, configuration, optimization, maintenance, security, and implementation of current and emerging technologies. Employees are required to adjust their standard work schedule to meet the requirements of their position, which includes and not limited to evening and weekend hours to perform scheduled and unscheduled workload requirements to maintain University operations. Duties include On-Call responsibilities.