Apex Systems
IT Analyst
The IT Security Analyst improves the security posture of the Institute through network monitoring, incident response, vulnerability management, security awareness, and compliance-related work. Analysts utilize multiple technologies to detect and respond to security incidents and recommend the appropriate controls to community members to mitigate threats and vulnerabilities. The position collaborates with teams across the Institute to develop and implement security standards and compliance requirements to support the research and educational mission. A successful IT Security Analyst possesses a broad understanding of networking, security, and system administration concepts. And possesses a working knowledge of security best practices, exploits, threats, and vulnerabilities across computer platforms. The role requires an individual who can foster innovation and experimentation by applying original thinking, expertise, and professional experience to solve problems and develop new solutions. Essential Functions: Incident Management Monitor multiple security technologies using a Security Information and Event Management (SIEM) tool to detect IT security incidents. Investigate detections to determine if true or false positive, utilizing knowledge of the security tools, networking, software, and systems. Determine the impact of incidents to Institute data and systems. Compile data and reports for operational analysis and respond to incidents with the appropriate communication, following established procedures. Continuously improve processes, suggesting new alerts, creating dashboards, opportunities for automation, etc. Security Operations Develop and manage security services such as network-based vulnerability scanning, virus management, and intrusion detection. Consult with clients on the data classification of their information resources. Assess threats and vulnerabilities regarding information assets and recommend the appropriate information security controls and measures. Strategy and Planning Support the planning, execution, and management of multi-faceted security projects. Actively participate in the Security team's planning activities. Research and review new or updated internal or third-party security applications. Evaluate and recommend tools and solutions that provide security functions. Communications Communicate with all levels of management across the Institute to resolve technical and procedural information security risks. May represent the IS&T Security team among various departments, labs, centers, and committees. Collaborate on projects to ensure that security issues are addressed throughout the project life cycle. Provide reports to management concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance. Compliance Stay abreast of new developments within the legal and regulatory environment impacting the Institute. Maintain an up-to-date understanding of industry best practices, threats, exploits, and trends. Contribute to the development of security standards and compliance requirements of applications, network infrastructure, servers, and workstations. Document IT security policies, procedures, and standards. Education and Outreach Develop IT security awareness and compliance training programs in collaboration with team members. Conduct IT security awareness training sessions for students, faculty, and staff. Coaching and Mentoring Provide ongoing knowledge transfer and training with team members upon technology implementation. Provide technical coaching and mentoring less experienced team members. May guide IT colleagues on the usage and administration of security tools that control and monitor information security. Required Qualifications & Technical Skills: A bachelor's degree (or equivalent work experience) and a minimum of 5 years of experience in cybersecurity, information systems, or another related field are required. 2 years of information security experience required. Possess a working knowledge of security best practices, threats, exploits, and trends across computer platforms. Must possess an understanding of networking and system administration concepts and common log types. Demonstrated experience with security tools such as vulnerability scanners, endpoint detection and response, Intrusion Detection Systems (IDS), SIEM, etc. Must possess an understanding of common phishing techniques and experience analyzing email headers. Strong analytical skills with the ability to break down raw information and undefined problems into specific, workable components. Desired Qualifications & Technical Skills: Related security certification (i.e., Certified Information Systems Security Professional (CISSP), etc.). Proficiency with scripting languages (i.e., Python, Ruby, PERL, etc.). Experience with ticketing systems such as ServiceNow.
The IT Security Analyst improves the security posture of the Institute through network monitoring, incident response, vulnerability management, security awareness, and compliance-related work. Analysts utilize multiple technologies to detect and respond to security incidents and recommend the appropriate controls to community members to mitigate threats and vulnerabilities. The position collaborates with teams across the Institute to develop and implement security standards and compliance requirements to support the research and educational mission. A successful IT Security Analyst possesses a broad understanding of networking, security, and system administration concepts. And possesses a working knowledge of security best practices, exploits, threats, and vulnerabilities across computer platforms. The role requires an individual who can foster innovation and experimentation by applying original thinking, expertise, and professional experience to solve problems and develop new solutions. Essential Functions: Incident Management Monitor multiple security technologies using a Security Information and Event Management (SIEM) tool to detect IT security incidents. Investigate detections to determine if true or false positive, utilizing knowledge of the security tools, networking, software, and systems. Determine the impact of incidents to Institute data and systems. Compile data and reports for operational analysis and respond to incidents with the appropriate communication, following established procedures. Continuously improve processes, suggesting new alerts, creating dashboards, opportunities for automation, etc. Security Operations Develop and manage security services such as network-based vulnerability scanning, virus management, and intrusion detection. Consult with clients on the data classification of their information resources. Assess threats and vulnerabilities regarding information assets and recommend the appropriate information security controls and measures. Strategy and Planning Support the planning, execution, and management of multi-faceted security projects. Actively participate in the Security team's planning activities. Research and review new or updated internal or third-party security applications. Evaluate and recommend tools and solutions that provide security functions. Communications Communicate with all levels of management across the Institute to resolve technical and procedural information security risks. May represent the IS&T Security team among various departments, labs, centers, and committees. Collaborate on projects to ensure that security issues are addressed throughout the project life cycle. Provide reports to management concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance. Compliance Stay abreast of new developments within the legal and regulatory environment impacting the Institute. Maintain an up-to-date understanding of industry best practices, threats, exploits, and trends. Contribute to the development of security standards and compliance requirements of applications, network infrastructure, servers, and workstations. Document IT security policies, procedures, and standards. Education and Outreach Develop IT security awareness and compliance training programs in collaboration with team members. Conduct IT security awareness training sessions for students, faculty, and staff. Coaching and Mentoring Provide ongoing knowledge transfer and training with team members upon technology implementation. Provide technical coaching and mentoring less experienced team members. May guide IT colleagues on the usage and administration of security tools that control and monitor information security. Required Qualifications & Technical Skills: A bachelor's degree (or equivalent work experience) and a minimum of 5 years of experience in cybersecurity, information systems, or another related field are required. 2 years of information security experience required. Possess a working knowledge of security best practices, threats, exploits, and trends across computer platforms. Must possess an understanding of networking and system administration concepts and common log types. Demonstrated experience with security tools such as vulnerability scanners, endpoint detection and response, Intrusion Detection Systems (IDS), SIEM, etc. Must possess an understanding of common phishing techniques and experience analyzing email headers. Strong analytical skills with the ability to break down raw information and undefined problems into specific, workable components. Desired Qualifications & Technical Skills: Related security certification (i.e., Certified Information Systems Security Professional (CISSP), etc.). Proficiency with scripting languages (i.e., Python, Ruby, PERL, etc.). Experience with ticketing systems such as ServiceNow.