University of Texas at Austin
IT Security Analyst
University of Texas at Austin, Austin, Texas, us, 78716
Job Posting Title:IT Security Analyst
----Hiring Department:Applied Research Laboratories
----Position Open To:All Applicants
----Weekly Scheduled Hours:40
----FLSA Status:Exempt
----Earliest Start Date:Immediately
----Position Duration:Expected to Continue
----Location:PICKLE RESEARCH CAMPUS
----Job Details:Purpose
Monitoring, identifying, and flagging cyber security events and risks threatening the organization with the goal of protecting against the loss of sensitive or proprietary data.Responsibilities
Investigating cyber security alert events, perform hunting for security threats and indicators (IOCs), and observe/monitor network traffic to detect, identify and report on suspect events. Work with other analysts and managers on cyber security related issues. Accept assignments from and work with other analysts when suspicious events are flagged.
Conduct research into Information Security (INFOSEC) and cyber-security related issues and events. Work with system-administrators to mitigate or in responding to events. Research and report on suspicious emails or network events as reported.
Assist in the care-and-feeding of the information security team's systems.
Stay current with the state of technology and new and emerging threats to information security. Share information with team members and work collaboratively with other internal and external organizations.
Serve as a subject matter expert (SME) for and provide training to users, and offer proactive recommendations on Information Security (INFOSEC) related topics. Communicate effectively to users, other analysts, and management both verbally and through written documentation.
Other duties may be assigned according to qualifications, capabilities, and desires; and may include compliance, incident investigation, SIEM improvements, security tool evaluations, etc.
Required Qualifications
HS/GED
Three years of experience in an IT Security analysis position or equivalent.
One year of experience in system administration, with in-depth experience with Windows or Linux.
Demonstrated working knowledge of networking protocols and services, and/or deep packet inspection.
Two years of experience in security monitoring, tools, techniques, and related software and security architectures.
Technical knowledge of cyber security threats, vulnerabilities, and controls, as well as security technologies such as firewalls, intrusion detection/prevention systems, and SIEMs.
Demonstrated ability to present technical information in both written and verbal forms, and provide training to end-users.
Knowledge of issues, challenges, and threats surrounding information security.
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
One or more cyber-security industry related certifications.
Relevant education and experience may be substituted as appropriate.
Applicant must have a dynamic skill set, willing to work with new technologies, be highly organized and capable of planning and coordinating multiple tasks and managing their time. The position will require attention to detail, effective problem solving skills and excellent judgment. Ability to work independently with sensitive and confidential information, maintain a professional demeanor, work as a team member without daily supervision and effectively communicate with all groups of clients. Able to work under pressure and accept supervision. Regular and punctual attendance.US Citizen. Selected applicant is subject to government security investigation and must meet eligibility requirements for access to classified information at level appropriate to project requirements of the positionPreferred Qualifications
Bachelor's degree, or higher, in a related field.
In-depth experience with networking protocols and services (deep packet analysis).
In-depth experience in system administration of Linux and Windows.
Experience in troubleshooting complex computer/network problems.
Experience with Federal directives, risk management, and security controls frameworks and standards such as NIST 800-171, NISPOM, DFARS, RMF, etc.
Experience in applying or using information security principles, practices, and solutions such as firewalls, IDS, IPS, malware detection, content inspection, etc.
Admin/support experience with cyber-security related software tools or applications such as Snort/Suricata, Splunk, Fidelis, tcpdump, Wireshark, etc.
Demonstrated experience in presenting complex issues to lay-people (i.e., training end-users or managers).
Understanding of Common Vulnerabilities and Exposures (CVE) and vulnerability scoring CVSS, and IOCs - and how to translate IOCs into actionable signatures.
Industry certifications related to cyber security, at least one being a DoD 8570 IAT level I/II/III approved cert.
General Notes
An agency designated by the federal government handles the investigation as to the requirement for eligibility for access to classified information. Factors considered during this investigation include but are not limited to allegiance to the United States, foreign influence, foreign preference, criminal conduct, security violations, drug involvement, the likelihood of continuation of such conduct, etc.Please mark "yes" on the application question that asks if additional materials are required. Failure to attach all additional materials listed below may result in a delay in application processing.Visit our website (www.arlut.utexas.edu) for additional information about Applied Research Laboratories.UT Austin offers a competitive benefits package that includes:* 100% employer-paid basic medical coverage* Retirement contributions* Paid vacation and sick time* Paid holidaysPlease visit our Human Resources (HR) website to learn more about the total benefits offered.Salary Range
$95,000-$132,000+/negotiable depending on qualificationsWorking Conditions
Standard office conditions
Repetitive use of a mouse and keyboard at a workstation
Use of manual dexterity
Possible interstate/intrastate travel
Required Materials
Resume/CV
3 work references with their contact information; at least one reference should be from a supervisor
Letter of interest
Important
for applicants who are NOT current university employees or contingent workers: You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure thatALLRequired Materials have been uploaded. Once your job application has been submitted, you cannot make changes.Important for Current university employees and contingent workers: As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log-in to Workday, navigate to your Worker Profile, click the Career link in the left hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled in to your application. The application is one page and you will be prompted to upload your resume. In addition, you must respond to the application questionspresented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.----Employment Eligibility:Regular staff who have been employed in their current position for the last six continuous months are eligible for openings being recruited for through University-Wide or Open Recruiting, to include both promotional opportunities and lateral transfers. Staff who are promotion/transfer eligible may apply for positions without supervisor approval.
----Retirement Plan Eligibility:The retirement plan for this position is Teacher Retirement System of Texas (TRS), subject to the position being at least 20 hours per week and at least 135 days in length.
----Background Checks:A criminal history background check will be required for finalist(s) under consideration for this position.----Equal Opportunity Employer:The University of Texas at Austin, as an equal opportunity/affirmative action employer,complies with all applicable federal and state laws regarding nondiscrimination and affirmative action. The University is committed to a policy of equal opportunity for all persons and does not discriminate on the basis of race, color, national origin, age, marital status, sex, sexual orientation, gender identity, gender expression, disability, religion, or veteran status in employment, educational programs and activities, and admissions.----Pay Transparency:The University of Texas at Austin will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.----Employment Eligibility Verification:If hired, you will be required to complete the federal Employment Eligibility Verification I-9 form. You will be required to present acceptable and original documents to prove your identity and authorization to work in the United States. Documents need to be presented no later than the third day of employment. Failure to do so will result in loss of employment at the university.----E-Verify:The University of Texas at Austin use E-Verify to check the work authorization of all new hires effective May 2015. The university's company ID number for purposes of E-Verify is 854197. For more information about E-Verify, please see the following:E-Verify Poster (English) [PDF]E-Verify Poster (Spanish) [PDF]Right To Work Poster (English) [PDF]Right To Work Poster (Spanish) [PDF]----Compliance:Employees may be required to report violations of law under Title IX and the Jeanne Clery Disclosure of Campus Security Policy and Crime Statistics Act (Clery Act). If this position is identified a Campus Security Authority (Clery Act), you will be notified and provided resources for reporting. Responsible employees under Title IX are defined and outlined in HOP-3031.The Clery Act requires all prospective employees be notified of the availability of the Annual Security and Fire Safety report. You may access the most recent report here or obtain a copy at University Compliance Services, 1616 Guadalupe Street, UTA 2.206, Austin, Texas 78701.
----Hiring Department:Applied Research Laboratories
----Position Open To:All Applicants
----Weekly Scheduled Hours:40
----FLSA Status:Exempt
----Earliest Start Date:Immediately
----Position Duration:Expected to Continue
----Location:PICKLE RESEARCH CAMPUS
----Job Details:Purpose
Monitoring, identifying, and flagging cyber security events and risks threatening the organization with the goal of protecting against the loss of sensitive or proprietary data.Responsibilities
Investigating cyber security alert events, perform hunting for security threats and indicators (IOCs), and observe/monitor network traffic to detect, identify and report on suspect events. Work with other analysts and managers on cyber security related issues. Accept assignments from and work with other analysts when suspicious events are flagged.
Conduct research into Information Security (INFOSEC) and cyber-security related issues and events. Work with system-administrators to mitigate or in responding to events. Research and report on suspicious emails or network events as reported.
Assist in the care-and-feeding of the information security team's systems.
Stay current with the state of technology and new and emerging threats to information security. Share information with team members and work collaboratively with other internal and external organizations.
Serve as a subject matter expert (SME) for and provide training to users, and offer proactive recommendations on Information Security (INFOSEC) related topics. Communicate effectively to users, other analysts, and management both verbally and through written documentation.
Other duties may be assigned according to qualifications, capabilities, and desires; and may include compliance, incident investigation, SIEM improvements, security tool evaluations, etc.
Required Qualifications
HS/GED
Three years of experience in an IT Security analysis position or equivalent.
One year of experience in system administration, with in-depth experience with Windows or Linux.
Demonstrated working knowledge of networking protocols and services, and/or deep packet inspection.
Two years of experience in security monitoring, tools, techniques, and related software and security architectures.
Technical knowledge of cyber security threats, vulnerabilities, and controls, as well as security technologies such as firewalls, intrusion detection/prevention systems, and SIEMs.
Demonstrated ability to present technical information in both written and verbal forms, and provide training to end-users.
Knowledge of issues, challenges, and threats surrounding information security.
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
One or more cyber-security industry related certifications.
Relevant education and experience may be substituted as appropriate.
Applicant must have a dynamic skill set, willing to work with new technologies, be highly organized and capable of planning and coordinating multiple tasks and managing their time. The position will require attention to detail, effective problem solving skills and excellent judgment. Ability to work independently with sensitive and confidential information, maintain a professional demeanor, work as a team member without daily supervision and effectively communicate with all groups of clients. Able to work under pressure and accept supervision. Regular and punctual attendance.US Citizen. Selected applicant is subject to government security investigation and must meet eligibility requirements for access to classified information at level appropriate to project requirements of the positionPreferred Qualifications
Bachelor's degree, or higher, in a related field.
In-depth experience with networking protocols and services (deep packet analysis).
In-depth experience in system administration of Linux and Windows.
Experience in troubleshooting complex computer/network problems.
Experience with Federal directives, risk management, and security controls frameworks and standards such as NIST 800-171, NISPOM, DFARS, RMF, etc.
Experience in applying or using information security principles, practices, and solutions such as firewalls, IDS, IPS, malware detection, content inspection, etc.
Admin/support experience with cyber-security related software tools or applications such as Snort/Suricata, Splunk, Fidelis, tcpdump, Wireshark, etc.
Demonstrated experience in presenting complex issues to lay-people (i.e., training end-users or managers).
Understanding of Common Vulnerabilities and Exposures (CVE) and vulnerability scoring CVSS, and IOCs - and how to translate IOCs into actionable signatures.
Industry certifications related to cyber security, at least one being a DoD 8570 IAT level I/II/III approved cert.
General Notes
An agency designated by the federal government handles the investigation as to the requirement for eligibility for access to classified information. Factors considered during this investigation include but are not limited to allegiance to the United States, foreign influence, foreign preference, criminal conduct, security violations, drug involvement, the likelihood of continuation of such conduct, etc.Please mark "yes" on the application question that asks if additional materials are required. Failure to attach all additional materials listed below may result in a delay in application processing.Visit our website (www.arlut.utexas.edu) for additional information about Applied Research Laboratories.UT Austin offers a competitive benefits package that includes:* 100% employer-paid basic medical coverage* Retirement contributions* Paid vacation and sick time* Paid holidaysPlease visit our Human Resources (HR) website to learn more about the total benefits offered.Salary Range
$95,000-$132,000+/negotiable depending on qualificationsWorking Conditions
Standard office conditions
Repetitive use of a mouse and keyboard at a workstation
Use of manual dexterity
Possible interstate/intrastate travel
Required Materials
Resume/CV
3 work references with their contact information; at least one reference should be from a supervisor
Letter of interest
Important
for applicants who are NOT current university employees or contingent workers: You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure thatALLRequired Materials have been uploaded. Once your job application has been submitted, you cannot make changes.Important for Current university employees and contingent workers: As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log-in to Workday, navigate to your Worker Profile, click the Career link in the left hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled in to your application. The application is one page and you will be prompted to upload your resume. In addition, you must respond to the application questionspresented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.----Employment Eligibility:Regular staff who have been employed in their current position for the last six continuous months are eligible for openings being recruited for through University-Wide or Open Recruiting, to include both promotional opportunities and lateral transfers. Staff who are promotion/transfer eligible may apply for positions without supervisor approval.
----Retirement Plan Eligibility:The retirement plan for this position is Teacher Retirement System of Texas (TRS), subject to the position being at least 20 hours per week and at least 135 days in length.
----Background Checks:A criminal history background check will be required for finalist(s) under consideration for this position.----Equal Opportunity Employer:The University of Texas at Austin, as an equal opportunity/affirmative action employer,complies with all applicable federal and state laws regarding nondiscrimination and affirmative action. The University is committed to a policy of equal opportunity for all persons and does not discriminate on the basis of race, color, national origin, age, marital status, sex, sexual orientation, gender identity, gender expression, disability, religion, or veteran status in employment, educational programs and activities, and admissions.----Pay Transparency:The University of Texas at Austin will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.----Employment Eligibility Verification:If hired, you will be required to complete the federal Employment Eligibility Verification I-9 form. You will be required to present acceptable and original documents to prove your identity and authorization to work in the United States. Documents need to be presented no later than the third day of employment. Failure to do so will result in loss of employment at the university.----E-Verify:The University of Texas at Austin use E-Verify to check the work authorization of all new hires effective May 2015. The university's company ID number for purposes of E-Verify is 854197. For more information about E-Verify, please see the following:E-Verify Poster (English) [PDF]E-Verify Poster (Spanish) [PDF]Right To Work Poster (English) [PDF]Right To Work Poster (Spanish) [PDF]----Compliance:Employees may be required to report violations of law under Title IX and the Jeanne Clery Disclosure of Campus Security Policy and Crime Statistics Act (Clery Act). If this position is identified a Campus Security Authority (Clery Act), you will be notified and provided resources for reporting. Responsible employees under Title IX are defined and outlined in HOP-3031.The Clery Act requires all prospective employees be notified of the availability of the Annual Security and Fire Safety report. You may access the most recent report here or obtain a copy at University Compliance Services, 1616 Guadalupe Street, UTA 2.206, Austin, Texas 78701.