Security Analyst
- Employer
- University of Oklahoma Health Sciences Center
- Location
- Oklahoma City, OK
View more
- Administrative Jobs
- Institutional & Business Affairs, Safety & Security
- Employment Type
- Full Time
- Institution Type
- Four-Year Institution
You need to sign in or create an account to save a job.
Organization
Title- Security Analyst (Level I)
Team- Security OperationsThe Security Analyst will be working within a team in multiple areas of security operations across all campuses. Collaborate on incident response, vulnerability management, endpoint security and application security. Develop, maintain and document other security operational analysis processes as needed.Duties:
Job Location
Education: Bachelor's degreeExperience: 24 months experience in IT Security Administration or a related fieldEquivalency/Substitution: Will accept 48 months related experience in lieu of the Bachelor's degree for a total of 72 months experience.Skills:
Organization: IT Administration
Job Location: Oklahoma-Oklahoma City-Health Sciences Center
Schedule: Full-time
Job Posting: Aug 10, 2022
Title- Security Analyst (Level I)
Team- Security OperationsThe Security Analyst will be working within a team in multiple areas of security operations across all campuses. Collaborate on incident response, vulnerability management, endpoint security and application security. Develop, maintain and document other security operational analysis processes as needed.Duties:
- Responsible for monitoring the security systems.
- Responsible for securing online and on-premises infrastructures, filtering out suspicious activity, and finding and mitigating security risks before any breaches can occur.
- Leads efforts to counter security breaches and anticipates and reduces the likelihood of future security alerts, incidents, and disasters.
- Defines, plans, implements, maintains, and upgrades security measures, policies, and controls.
- Writes reports and provides insights on the efficacy of the current security policies, incident responses, disaster recovery plans, and other security-related information.
- Assists with the creation of updates and trains programs to secure the network. Trains employees.
- Ensures the security systems are up to date. Installs and uses software such as firewalls and data encryption programs to protect sensitive information.
- Monitors security access and maintains the relevant data.
- Conducts vulnerability testing and risk analyses to assess security. Performs internal and external security audits.
- Conducts penetration testing which test networks, computers, web-based applications and other systems to detect exploitable vulnerabilities.
- Analyzes security breaches to identify the cause and to update incidence responses and disaster recovery plans.
- Verifies and coordinates security plans with outside vendors.
- Creates procedures for IT employees and trains in security awareness.
- Performs various duties as needed to successfully fulfill the function of the position.
Job Location
Education: Bachelor's degreeExperience: 24 months experience in IT Security Administration or a related fieldEquivalency/Substitution: Will accept 48 months related experience in lieu of the Bachelor's degree for a total of 72 months experience.Skills:
- Ability to communicate vulnerability details and remediation steps
- Ability to work in a high-stress environment·
- Excellent verbal and written communication skills, interpersonal, and teaching skills·
- Advanced anticipation, analytical, and problem-solving skills·
- Ability to remain current on the latest technology and best practices in information security·
- Detail oriented for accuracy of data and information.
- Knowledge of ports and services typical in configuration of web servers, file servers, and workstations.
- Demonstrated understanding of Windows/Mac/Linux operating system and infrastructure vulnerability scanning and configuration.
- Assist in conduct internal investigations in accordance with established policies and Incident Response playbooks.
- Leverage legal, compliance, and privacy experts as needed to consult and advise on actions regarding regulatory aspects of incidents.
- Participate in the implementation of a complete set of incident response workflows, including automation and vulnerability response.
- Test procedures regularly with internal teams.
- Mitigate operational risks and bring them to an acceptable level for management.
- Experience with EDR technologies a plus.
- Develop, maintain and document operational analysis processes.
- Experience supporting enterprise vulnerability management a plus.
- Develop, maintain and document operational vulnerability management processes and procedures.
- Understanding of network services, vulnerabilities, and attacks a plus.
- Knowledge of application exploits and vulnerabilities a plus.
- Knowledge of and experience with the CVE program, Common Vulnerability Scoring System (CVSS), and other industry specific vulnerability classification standards, frameworks, and best practices.
- Physical: Sit for prolonged periods. Ability to engage in repetitive motions. Manual dexterity. Communicates effectively and listens. Environmental: Office Work Environment. May be on call outside of normal business hours.
Organization: IT Administration
Job Location: Oklahoma-Oklahoma City-Health Sciences Center
Schedule: Full-time
Job Posting: Aug 10, 2022
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert