University of Utah
Please see Special Instructions for more details.
About UIT :
University Information Technology (UIT) , the central IT service provider for the University of Utah, reports to the U’s
Chief Information Officer
and is responsible for many of the U’s shared IT services including the wired and wireless network; Campus Information Services (CIS) portal; UMail, telephone, and online collaboration; digital learning technologies; information security; software licensing; and a host of other IT systems and services.
About the University of Utah : Located in Salt Lake City, the U is the flagship institution of the State of Utah’s system of higher education, home to
arts and museum venues
and a member of the
BIG-12 Conference .
Skiing and snowboarding opportunities
are a short distance from campus, and opportunities to pursue activities from
biking to hiking to fishing abound . Salt Lake City is home to the
Utah Symphony and Opera ,
Ballet West ,
professional sports teams , and a wide range of other cultural and recreational activities.
The University of Utah offers a comprehensive benefits package for eligible employees including:
50% tuition reduction
for employees after completing probationary period, and spouse, and dependent children after three years
Employee discounts on a variety of products and services including cell phones & plans, entertainment, health and fitness, restaurants, retail, and travel
A wellness program to promote health and quality of life
Learn more about the great benefits of working for University of Utah:
benefits.utah.edu
More information about our salary and benefit offerings:
https://www.hr.utah.edu/comp/totalcomp.php
Job Summary Information Security Analysts
The incumbent will play a critical role in safeguarding regulated data across the enterprise by monitoring and analyzing the organization’s data security posture. This position focuses on configuring Data Security Posture Management (DSPM) settings and policies, interpreting results, creating reports, identifying risks, and ensuring compliance. The analyst will take a risk‑based approach to assess and remediate issues related to unauthorized storage or transmission of regulated data across cloud and on‑premise environments.
Responsibilities
Data Security Monitoring : Review and analyze DSPM tool outputs to identify misconfigurations, unauthorized data flows, and storage of regulated data in non‑approved locations.
Monitor the movement of sensitive data across cloud and on‑prem systems, ensuring compliance with internal policies and regulatory requirements.
Risk Assessment & Governance : Apply a risk‑based methodology to prioritize remediation efforts.
Maintain applicable risk register entries and document findings for governance reporting.
Collaboration : Partner with the Enterprise Security team to validate technical controls.
Work closely with the Chief Data Officer and Privacy Office to align DSPM findings with data governance and privacy requirements.
Compliance & Policy Alignment : Ensure adherence to frameworks such as NIST CSF, CIS 18, and other applicable regulations (e.g., HIPAA, FERPA).
Support audits and compliance reviews by providing DSPM‑related evidence.
Reporting & Communication : Prepare dashboards and reports for leadership summarizing DSPM findings, trends, and risk posture.
Communicate actionable insights to stakeholders in clear, business‑focused language.
Minimum Qualifications EQUIVALENCY STATEMENT : 1 year of higher education can be substituted for 1 year of directly related work experience (Example: bachelor’s degree = 4 years of directly related work experience).
Information Security Analyst, III : Requires a bachelor’s (or equivalency) + 6 years or a master’s (or equivalency) + 4 years of directly related work experience.
Information Security Analyst, IV : Requires a bachelor’s (or equivalency) + 8 years or a master’s (or equivalency) + 6 years of directly related work experience.
Information Security Analyst, V : Requires a bachelor’s (or equivalency) + 10 years or a master’s (or equivalency) + 8 years of directly related work experience.
Preferences
Certifications such as CISSP, CRISC, or equivalent.
Master’s degree in information security or another relevant field.
Experience with a DSPM tool.
3+ years specifically tied to GRC experience.
Additional Information The University of Utah values candidates who have experience working in settings with students from diverse backgrounds and possess a strong commitment to improving access to higher education for historically underrepresented students.
Individuals from historically underrepresented groups, such as minorities, women, qualified persons with disabilities and protected veterans are encouraged to apply. Veterans’ preference is extended to qualified applicants, upon request and consistent with University policy and Utah state law. Upon request, reasonable accommodations in the application process will be provided to individuals with disabilities.
The University of Utah is an affirmative action/equal opportunity employer and does not discriminate based upon race, ethnicity, color, religion, national origin, age, disability, sex, sexual orientation, gender, gender identity, gender expression, pregnancy, pregnancy related conditions, genetic information, or protected veteran’s status. The University does not discriminate on the basis of sex in the education program or activity that it operates, as required by Title IX and 34 CFR part 106. The requirement not to discriminate in education programs or activities extends to admission and employment. Inquiries about the application of Title IX and its regulations may be referred to the Title IX Coordinator, to the Department of Education, Office for Civil Rights, or both.
To request a reasonable accommodation for a disability or if you or someone you know has experienced discrimination or sexual misconduct including sexual harassment, you may contact the Director/Title IX Coordinator in the Office of Equal Opportunity and Affective Action.
Additional contact information: Director/Title IX Coordinator, Office of Equal Opportunity and Affitive Action (OEO/AA), 383 University Street, Level 1 OEO Suite, Salt Lake City, UT 84112, 801‑581‑8365, oeo@utah.edu.
Posting Specific Questions
* What is your highest level of completed education?
None
High School Diploma or Equivalent
Associate Degree
Bachelor's Degree
Master's Degree
Doctorate Degree
* How many years of related work experience do you have?
Less than 6 years
6 years or more, but less than 9 years
9 years or more, but less than 12 years
12 years or more, but less than 15 years
15 years or more
Required Documents
Resume
Cover Letter
List of References
Optional Documents University Human Resource Management 250 East 200 South, Suite 125 Salt Lake City, UT 84111 Contact us: (801) 581-2169 By Email: employment@utah.edu
#J-18808-Ljbffr
University Information Technology (UIT) , the central IT service provider for the University of Utah, reports to the U’s
Chief Information Officer
and is responsible for many of the U’s shared IT services including the wired and wireless network; Campus Information Services (CIS) portal; UMail, telephone, and online collaboration; digital learning technologies; information security; software licensing; and a host of other IT systems and services.
About the University of Utah : Located in Salt Lake City, the U is the flagship institution of the State of Utah’s system of higher education, home to
arts and museum venues
and a member of the
BIG-12 Conference .
Skiing and snowboarding opportunities
are a short distance from campus, and opportunities to pursue activities from
biking to hiking to fishing abound . Salt Lake City is home to the
Utah Symphony and Opera ,
Ballet West ,
professional sports teams , and a wide range of other cultural and recreational activities.
The University of Utah offers a comprehensive benefits package for eligible employees including:
50% tuition reduction
for employees after completing probationary period, and spouse, and dependent children after three years
Employee discounts on a variety of products and services including cell phones & plans, entertainment, health and fitness, restaurants, retail, and travel
A wellness program to promote health and quality of life
Learn more about the great benefits of working for University of Utah:
benefits.utah.edu
More information about our salary and benefit offerings:
https://www.hr.utah.edu/comp/totalcomp.php
Job Summary Information Security Analysts
The incumbent will play a critical role in safeguarding regulated data across the enterprise by monitoring and analyzing the organization’s data security posture. This position focuses on configuring Data Security Posture Management (DSPM) settings and policies, interpreting results, creating reports, identifying risks, and ensuring compliance. The analyst will take a risk‑based approach to assess and remediate issues related to unauthorized storage or transmission of regulated data across cloud and on‑premise environments.
Responsibilities
Data Security Monitoring : Review and analyze DSPM tool outputs to identify misconfigurations, unauthorized data flows, and storage of regulated data in non‑approved locations.
Monitor the movement of sensitive data across cloud and on‑prem systems, ensuring compliance with internal policies and regulatory requirements.
Risk Assessment & Governance : Apply a risk‑based methodology to prioritize remediation efforts.
Maintain applicable risk register entries and document findings for governance reporting.
Collaboration : Partner with the Enterprise Security team to validate technical controls.
Work closely with the Chief Data Officer and Privacy Office to align DSPM findings with data governance and privacy requirements.
Compliance & Policy Alignment : Ensure adherence to frameworks such as NIST CSF, CIS 18, and other applicable regulations (e.g., HIPAA, FERPA).
Support audits and compliance reviews by providing DSPM‑related evidence.
Reporting & Communication : Prepare dashboards and reports for leadership summarizing DSPM findings, trends, and risk posture.
Communicate actionable insights to stakeholders in clear, business‑focused language.
Minimum Qualifications EQUIVALENCY STATEMENT : 1 year of higher education can be substituted for 1 year of directly related work experience (Example: bachelor’s degree = 4 years of directly related work experience).
Information Security Analyst, III : Requires a bachelor’s (or equivalency) + 6 years or a master’s (or equivalency) + 4 years of directly related work experience.
Information Security Analyst, IV : Requires a bachelor’s (or equivalency) + 8 years or a master’s (or equivalency) + 6 years of directly related work experience.
Information Security Analyst, V : Requires a bachelor’s (or equivalency) + 10 years or a master’s (or equivalency) + 8 years of directly related work experience.
Preferences
Certifications such as CISSP, CRISC, or equivalent.
Master’s degree in information security or another relevant field.
Experience with a DSPM tool.
3+ years specifically tied to GRC experience.
Additional Information The University of Utah values candidates who have experience working in settings with students from diverse backgrounds and possess a strong commitment to improving access to higher education for historically underrepresented students.
Individuals from historically underrepresented groups, such as minorities, women, qualified persons with disabilities and protected veterans are encouraged to apply. Veterans’ preference is extended to qualified applicants, upon request and consistent with University policy and Utah state law. Upon request, reasonable accommodations in the application process will be provided to individuals with disabilities.
The University of Utah is an affirmative action/equal opportunity employer and does not discriminate based upon race, ethnicity, color, religion, national origin, age, disability, sex, sexual orientation, gender, gender identity, gender expression, pregnancy, pregnancy related conditions, genetic information, or protected veteran’s status. The University does not discriminate on the basis of sex in the education program or activity that it operates, as required by Title IX and 34 CFR part 106. The requirement not to discriminate in education programs or activities extends to admission and employment. Inquiries about the application of Title IX and its regulations may be referred to the Title IX Coordinator, to the Department of Education, Office for Civil Rights, or both.
To request a reasonable accommodation for a disability or if you or someone you know has experienced discrimination or sexual misconduct including sexual harassment, you may contact the Director/Title IX Coordinator in the Office of Equal Opportunity and Affective Action.
Additional contact information: Director/Title IX Coordinator, Office of Equal Opportunity and Affitive Action (OEO/AA), 383 University Street, Level 1 OEO Suite, Salt Lake City, UT 84112, 801‑581‑8365, oeo@utah.edu.
Posting Specific Questions
* What is your highest level of completed education?
None
High School Diploma or Equivalent
Associate Degree
Bachelor's Degree
Master's Degree
Doctorate Degree
* How many years of related work experience do you have?
Less than 6 years
6 years or more, but less than 9 years
9 years or more, but less than 12 years
12 years or more, but less than 15 years
15 years or more
Required Documents
Resume
Cover Letter
List of References
Optional Documents University Human Resource Management 250 East 200 South, Suite 125 Salt Lake City, UT 84111 Contact us: (801) 581-2169 By Email: employment@utah.edu
#J-18808-Ljbffr