Missouri University of Science and Technology
SECURITY ANALYST, MASTER Job at Missouri University of Science and Technology in
Missouri University of Science and Technology, Rolla, MO, US
Apply for Job Job ID 53683 Location Rolla Full/Part Time Full-Time Add to Favorite Jobs Email this Job Hiring Department Infastructure Job Description We are seeking a highly skilled and experienced senior level Security Analyst to join our cybersecurity team. This role requires expertise in managing firewalls, Azure security and Active Directory (AD), account management, and incident response. The ideal candidate will possess a deep understanding of network and security frameworks and a proven ability to mitigate risks, respond to security incidents, and ensure the integrity of critical systems. The ability to work on export-controlled projects and with law enforcement is required. The ability to get a top secret security clearance is required, and an existing security clearance is preferred. Key Responsibilities: Firewall Management: Configure, monitor, and maintain enterprise firewalls to ensure secure network traffic and prevent unauthorized access Develop and implement firewall policies and rules based on industry standards and security best practices Design and manage network segmentation to protect sensitive data and systems from potential threats Troubleshoot and resolve firewall-related incidents and performance issues Collaborate with network teams to ensure firewall and network segmentation changes are aligned with organizational goals Collaborate with Networking and System Infrastructure team on the maintenance of data center firewall rulesets and routing related to service delivery Azure Security and Active Directory Management: Manage Azure Active Directory as part of a systemwide team, ensuring secure and scalable identity and access management Implement and manage security solutions within Microsoft Azure, including configuring security policies, managing resources, and monitoring for vulnerabilities Ensure proper configuration and security of Active Directory services, including group policy management, permissions, and role-based access controls Contribute to the maintenance of local custom web tools for privilege delegation capabilities of AD/Azure/other management functions Account Management: Oversee user account lifecycle management, including the provisioning, de-provisioning, and auditing of user access to systems Ensure adherence to the principle of least privilege across all account management activities Conduct regular reviews of user accounts and permissions to identify and mitigate potential security risks Incident Response: Lead and participate in security incident response activities, including investigating, analyzing, and mitigating security incidents Hunt for and remediate phishing campaigns, ensuring timely detection and neutralization of threats Secure mass email campaigns to prevent misuse and ensure the integrity of organizational communications Perform forensic analysis and root cause investigations to determine the scope and impact of security events Develop and document incident response procedures and runbooks to improve the organization's response capabilities Collaborate with other teams to ensure proper escalation and resolution of security incidents Vulnerability Management: Administer vulnerability management tools, discovery, tracking, and remediation coordination Administer Microsoft security environment including Defender, Entra, and Sentinel Lead technical security operations including security monitoring and reporting Monitor security systems and logs for signs of potential vulnerabilities or breaches Develop and maintain security dashboards and reports for senior management and stakeholders Provide guidance on emerging threats, vulnerabilities, and best practices Provide oversight to other teams for patch management progress/state as well as help to determine when security issues require immediate vs delayed action Risk Management and Compliance: Ensure that security controls comply with industry regulations, such as CUI, NSPM-33, PCI, HIPAA, NIST 800-171, NIST 800-172, ITAR, NERC, and organizational policies Conduct regular security assessments, vulnerability scans, and penetration tests Recommend and implement security enhancements based on risk assessments and security audits Maintain compliance with export-controlled data regulations and work closely with law enforcement on related matters. Minimum Qualifications A bachelor's degree or an equivalent combination of education and experience and 8 years work experience from which comparable knowledge and skills can be acquired is necessary Ability to obtain and maintain a top secret security clearance is required Preferred Qualifications Master's degree in Information Security, Cybersecurity, Computer Science, or related field, or equivalent experience 7 years of experience in security analysis with hands-on experience in firewall management, Azure, Active Directory, account management, and incident response Expertise in incident response, phishing remediation, mass email security, risk mitigation, and security operations Expertise in data security concepts such as security labeling, Controlled Unclassified Information (CUI), Secret, and Top Secret information, and tools such as Microsoft Purview Expertise in Microsoft security and networking tools such as Active Directory, Domain Controllers, Defender, Entra, and Sentinel Expertise in vulnerability scanning tools such as Tenable, Qualys, Nessus, and Nmap Knowledge of access management models such as Identity and Access Management (AIM_ access controls, Access Control List (ACL) access controls, Privileged Access Workstation (PAWs), Role-Base Access Controls (RBAC), Attribute-Based Access Controls (ABAC), Privilege Escalation access control, and Zero Trust Network Access (ZTNA) Ability to work with export-controlled data and collaborate with law enforcement agencies A cyber security certification such as CISSP, CISM, CEH, or equivalent Strong understanding of security frameworks such as NIST, PCI, ITAR, NERC, ISO 27001, and CIS Controls Proficiency in scripting and automation (PowerShell, Python) for security purposes Excellent analytical, problem-solving, and communication skills Anticipated Hiring Range The anticipated hiring range for this position has been established as $78,562.00 to $120,078.00 annually. Salary is determined by a variety of factors, including but not limited to, the individual's particular combination of education, skills, and experience, as well as organizational requirements. Your total compensation goes beyond the number on your paycheck. The University of Missouri provides generous leave, health plans, and retirement contributions that add to your bottom line. Grade: GGS 13 University Title: SECURITY ANALYST-MASTER To review the University of Missouri's Staff Compensation Structure you can view the Job Code detail page. Internal applicants can determine their university title by accessing the Talent Profile tile in myHR. Application Deadline Applications will be accepted until this position is filled. Benefit Eligibility This position is eligible for University benefits. As part of your total compensation, the University offers a comprehensive benefits package, including medical, dental and vision plans, retirement, paid time off, short- and long-term disability, paid parental leave, paid caregiver leave, and educational fee discounts for all four UM System campuses. For additional information on University benefits, please visit the Faculty & Staff Benefits website at https://www.umsystem.edu/totalrewards/benefits. Values Commitment We value the uniqueness of every individual and strive to ensure each person's success. Contributions from individuals with diverse backgrounds, experiences and perspectives promote intellectual pluralism and enable us to achieve the excellence that we seek in learning, research and engagement. This commitment makes our university a better place to work, learn and innovate. In your application materials, please discuss your experiences and expertise that support these values and enrich our missions of teaching, research, and engagement. Equal Employment Opportunity The University of Missouri System is an Equal Opportunity Employer. Equal Opportunity is and shall be provided for all employees and applicants for employment on the basis of their demonstrated ability and competence without unlawful discrimination on the basis of their race, color, national origin, ancestry, religion, sex, pregnancy, sexual orientation, gender identity, gender expression, age, disability, or protected veteran status, or any other status protected by applicable state or federal law. This policy applies to all employment decisions including, but not limited to, recruiting, hiring, training, promotions, pay practices, benefits, disciplinary actions and terminations. For more information, visit https://www.umsystem.edu/ums/hr/eeo or call Human Resources at 573-341-4241. To request ADA accommodations, please call the Office of Equity & Title IX at 573-341-7734.