Human Resources Employment Opportunities

Information Security Analyst

Apply now Job no: 514838
Position Type: Staff Full Time
Campus: UMass Boston
Department: IT Comm & Infrastructure Serv
Pay Grade: 33
Date opened: Eastern Daylight Time
Applications close: Eastern Daylight Time

General Summary: 

The Information Security Analyst (ISA) reports to the Chief Information Security Officer (CISO) and constitutes an integral part of the ISO team. The ISA will work closely with the ISO staff to improve the internal workflows delivering the best practice as it relates to the lifecycle of Incidents, requests, security-related service desk tickets, and other tasks within the University. The ISA identifies, escalates, and addresses potential security threats and vulnerabilities reported within key security systems, including Sentinel (SIEM), CASB, email, endpoints, firewalls, patch management, and vulnerability management. This role is multi-faceted and involves containing breaches to endpoint devices and systems and promptly addressing incidents highlighted by security monitoring tools. The job requires a candidate to apply their experience and continued personal development to evolve their incident reporting and related lifecycle skills and proactively identify and mitigate cybersecurity threats before they turn into incidents.

Examples of Duties:

  • Serve as the first line main incident coordinator at the Network and Security Operations Center (NSOC).
  • Responsible for daily security event monitoring and subsequent investigation activities. In the event that a security incident has been found, follows enterprise incident response standard processes ensuring proper escalation.
  • Start and coordinate online meetings related to incidents and collaborate with service managers and communications teams and guide the team to resolution as quickly as possible during an incident.
  • Conduct post incident reviews to inform improvements to infrastructure, technology, and process and to minimize the ongoing risk of future disruptions to service.
  • Assists with systems management applications (KACE/JAMF/Intune) to provide accurate and comprehensive inventory and asset management, software distribution, and patch management per vulnerabilities scanning and reporting tools and services.
  • Monitor endpoint protection systems such as anti-malware and Tenable.io vulnerability scanning and remediation.
  • Serve as a liaison between the Desktop Services and Information Security teams to ensure that desktop environments comply with the University’s system security practices.
  • Continuously study trends in cybercrime around threat actors’ behaviors, tactics, and goals.
  • Organize and analyze the collected data from Microsoft Threat Hunting consoles, SIEMs, Tenable scanning tools, and other security services sources to investigate security trends and make predictions to eliminate current and future vulnerabilities.
  • Analyze security data and report on threats and incidents across various platforms and environments.
  • Use automation to improve identification and response time and reduce impact when an incident occurs.
  • Monitor endpoints for patching compliance and vulnerability testing.
  • Monitors Microsoft A5 event management.
  • Leverage SIEM, Microsoft A5 Security Center, Tenable.io, and Varonis platforms by creating and executing search queries to perform threat hunting and conduct forensics analysis of detections minimizing false negatives.
  • Provide inputs for Key Performance Indicators (KPIs) to help determine the effectiveness of security controls.
  • Create Incident Reports at the direction of the CISO, UMass System CISO Committee, and Legal Counsel.
  • Maintain ticket tracking system and audit trails for all work.
  • Gather metrics to support the University’s information security posture and report results to the CISO and other key stakeholders.
  • Participate in the training and supervision of student employees and support their learning at the University.
  • Provide a high level of customer service and deliver timely, courteous, and knowledgeable customer support and awareness training and coaching.
  • Actively supports the University to advance the concepts of Diversity, Equity, Inclusion, & Accessibility in the workplace. 
  • Perform other duties as assigned.

Qualifications: 

Bachelor’s Degree and a minimum of two years of information security experience, preferably in higher education setting, required. Strong technical skills across Microsoft Windows and Macintosh Operating System platforms, common applications, and utilities required. A strong foundation of network troubleshooting knowledge is required.

  • Excellent understanding and experience in multiple security domains such as intrusion detection, incident response, malware analysis, application security, and forensics;
  • Experience detecting abuse and large-scale attacks in diverse environments;
  • Experience working with multiple stakeholders in a matrixed environment consisting of Systems, Network Operations, Information Security, internal business units, and external incident response teams;
  • Familiarity with the following cybersecurity-related tools and disciplines with deep experience in one or more of the following:
    • Microsoft Defender for Endpoints
    • Strong knowledge of Multi-Factor Authentication (MFA) tools and principles
    • Microsoft A5 Email threat protection and Microsoft 365 security center tools
    • Analysis of log data using SIEM tools such as Azure Sentinel
    • Modern Cloud Access Security Broker (CASB)
    • Persistent threat detection on Windows and MacOS file systems using Tenable.io
    • Analysis of network traffic from intrusion detection systems and flow monitoring systems
    • Infoblox DNS, DHCP, IPAM (DDI)
  • Proficiency in understanding networking and related troubleshooting and a firm grasp of network security and information security principles.
  • Knowledge of security risks, copyright violations, and other inappropriate or unlawful computing practices.
  • Ability to maintain an understanding and awareness of the overall cyber threat landscape (advanced persistent threat groups, malware campaigns, botnets, hacktivism, DDoS attacks, geopolitical activities, etc.).
  • Strong interpersonal skills which facilitate positive working relationships with both co-workers and end-users.
  • Strong oral and written communication skills for personal interaction with end-users, written reports, documentation, and call ticket tracking.
  • Desire and willingness to work with end-users and provide high-quality customer service to people at all levels in a university setting.
  • Strong commitment to customer service.
  • SOC/NOC experience is a plus.

Application Instructions: 

Please apply online with your resume, cover letter and list of three professional references.

Review of candidates will begin following the application closing date. 

Only Internal candidates in the Professional Staff Bargaining Unit will be considered during the first 10 business days of the posting.  All other candidates will be considered after that period. 

Salary Ranges for the appropriate Pay Grade can be found at the following link: 

Grade:33

Salary Ranges

This is an exempt union position.

All official salary offers must be approved by Human Resources.

UMass Boston requires all employees to be vaccinated against COVID-19 and to confirm proof of their vaccination status including booster. Exemptions from the vaccine requirement will be permitted only for qualifying religious or medical reasons. Regardless of vaccination status, you must wear a face covering in public indoor spaces on campus.

Applications close: Eastern Daylight Time

Back to search results Apply now Refer a friend

Share this:

| More

All official salary offers must be approved by Human Resources.

The University of Massachusetts Boston provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, gender identity or expression, age, sexual orientation, national origin, ancestry, disability, military status, genetic information, pregnancy or a pregnancy-related condition, or membership in any other legally protected class. The University of Massachusetts Boston complies with all applicable federal, state and local laws governing nondiscrimination in employment in every location in which the university operates. This policy applies to all terms and conditions of employment.

UMass Boston normally does not provide H-1B visa sponsorship for non-academic positions.

The University of Massachusetts Boston is committed to providing a safe and secure environment that is supported by qualified employees for all of its students, faculty and staff to carry out the University's teaching, research and public service missions. As a condition of employment, the University will conduct appropriate background check reviews. For more information, please see the University of Massachusetts Boston campus policy and procedures for employee background reviews.

UMass Boston requires all employees to be vaccinated and to confirm proof of their vaccination status. Exemptions from the vaccine requirement will be permitted only for qualifying religious or medical reasons. Regardless of vaccination status, you must wear a face covering in public indoor spaces on campus.

Refresh Template