Information Security Analyst

Job description

Search #: 495215
Work type: Full-time
Location: Storrs Campus
Categories: Information Technology

JOB SUMMARY

The Information Security Analyst is responsible for investigating a diverse range of technical issues across multiple platforms, working with a wide range of clients who have minimal to a broad range of technical skills. The Analyst works among a team of skilled technicians to address problems within a complex network environment and develops solutions that fit into that environment.

The Analyst is responsible for processes and procedures to ensure the continuous improvement to monitoring, detection and mitigation capabilities specifically around software and databases. The Analyst plans, organizes and establishes priorities related to an assignment; works independently with minimal outside support; and handles sensitive information in a confidential manner.

The University of Connecticut has been named the top public university in New England for over a decade and is ranked among the top public universities in the nation. The University of Connecticut is also a Carnegie Foundation Research University, a prestigious honor shared by only the nation's top higher education institutions.

DUTIES AND RESPONSIBILITIES

Duties performed at Information Security Analyst 1 include:

  • Capture security controls used during the requirements phase to integrate security within the software development/deployment process
  • Identify security implications and apply methodologies within centralized and decentralized environments across the University’s computer systems
  • Identify security issues around steady state operation and management of software and incorporate security measures that must be taken over the lifecycle of systems/software and when a product reaches end of life
  • Consult with peers across the institution about software system design, maintenance and risk assessments
  • Perform penetration testing as required for new or updated applications and systems
  • Monitor security incident and event management (SIEM) and logging environments for security events and alerts to potential (or active) threats, intrusions and/or compromises
  • Assist with triage of service requests from customers and internal teams
  • Integrate data for use between various applications
  • Participate in incident response activities as required for cyber security incidents
  • Promote security awareness to improve and ensure system security
  • Other related duties as assigned
  • Additional duties performed at Information Security Analyst 2 include:

  • Apply coding and testing standards and tools including static-analysis code scanning to information systems and advise on improvements/issues regarding security vulnerabilities
  • Develops security metrics to proactively monitor cyber threats and provide trend data
  • Identify security gaps, perform risk assessments, and recommend solutions to ensure best practices and security measures are being met
  • Plan, implement, upgrade and monitor security measures for the protection of data and information systems ensuring appropriate security controls are in place
  • Document event analysis and write comprehensive reports of incident investigations
  • Perform risk analysis (threat, vulnerability and probability of occurrence) whenever a system undergoes a major change
  • Translate security requirements into application design elements including documenting the elements of the software attack surfaces, conducting threat modeling, and defining any specific security criteria
  • Consult with peers across the institution about software system design, maintenance and risk assessments
  • Develop secure software testing and validation procedures
  • MINIMUM QUALIFICATIONS

  • Associates degree or four years of related experience;
  • Knowledge of secure coding techniques
  • Ability to present complex technical concepts in verbal or written business terms
  • Strong technical, analytical, interpersonal and organizational skills
  • Ability to stay informed in securing evolving technologies such as cloud and mobile
  • Additional minimum qualifications to be considered for the rank of Information Security Analyst 2

    1. Bachelor’s degree and two years of related experience; or six years of related experience
    2. Knowledge of network security architecture concepts including topology, protocols, components, and principles
    3. Experience in security analysis policies, procedures and standards
    PREFERRED QUALIFICATIONS

    1. Knowledge of application security risks (OWASP Top 10)
    2. Experience in protecting structured and unstructured data stores
    3. Knowledge of Information Technology risk management policies, requirements, and procedures
    4. Knowledge of PCI, HIPAA and NIST Cybersecurity Framework
    5. CISSP, CISM, or related information security certification
    APPOINTMENT TERMS

    This is a full time, 12-month, position with outstanding benefits, including employee and dependent tuition waivers at UConn, and a highly desirable work environment. For additional information regarding benefits visit: https://hr.uconn.edu/benefits-beyond-pay/. For additional information about the University visit: http://www.uconn.edu/

    TO APPLY

    Please apply online at https://hr.uconn.edu/jobs, Staff Positions, Search #495215 to upload a resume, cover letter, and contact information for three (3) professional references.

    Employment of the successful candidate is contingent upon the successful completion of a pre-employment criminal background check.

    This job posting is scheduled to be removed at 11:55 p.m. Eastern time on May 14, 2021.

    All employees are subject to adherence to the State Code of Ethics which may be found at http://www.ct.gov/ethics/site/default.asp.

    The University of Connecticut is committed to building and supporting a multicultural and diverse community of students, faculty and staff. The diversity of students, faculty and staff continues to increase, as does the number of honors students, valedictorians and salutatorians who consistently make UConn their top choice. More than 100 research centers and institutes serve the University’s teaching, research, diversity, and outreach missions, leading to UConn’s ranking as one of the nation’s top research universities. UConn’s faculty and staff are the critical link to fostering and expanding our vibrant, multicultural and diverse University community. As an Affirmative Action/Equal Employment Opportunity employer, UConn encourages applications from women, veterans, people with disabilities and members of traditionally underrepresented populations.

    Advertised: Apr 30 2021 Eastern Daylight Time
    Applications close: May 14 2021 Eastern Daylight Time

     

     

     

    Diversity Profile: University

     

    AAUP COMPENSATION SURVEY DATA

    View more

    Learn more on Inside Higher Ed's College Page for University

    Arrow pointing right
    Job No:
    Posted: 5/3/2021
    Application Due: 5/14/2021
    Work Type: Full Time
    Salary: