Job Description
Job SummaryInstalls security measures to protect campus systems and information infrastructure. Provides timely detection, identification, and alerting of possible attacks/intrusions, or anomalous activities. Creates, monitors, and maintains safeguards to ensure the security of all systems on campus.
Responsibilities
KEY RESPONSIBILITIES:
1. Distinguishes possible attacks from benign activities within the enterprise
2. Collaborates with stakeholders to resolve computer security incidents and vulnerability
compliance
3. Receives and analyzes network alerts and determines possible causes for the alerts
4. Documents and escalates incidents (including event¿s history, status, and potential impact for
further action) that may cause ongoing and immediate impact to the environment
5. Provides daily summary reports of network events and activity relevant to cyber defense
practices
6. Identifies and analyzes anomalies in network traffic using metadata
7. Identifies network mapping and operating system (OS) fingerprinting activities
8. Monitors external data sources (e.g., cyber defense vendor sites, Computer Emergency
Response Teams, Security Focus) of cyber defense threat condition and determines which
security issues may have an impact on the enterprise
9. Validates intrusion detection system (IDS) alerts against network traffic
Required Qualifications
Educational Requirements
Bachelor's degree from an accredited institution of higher education in a related field
Other Required Qualifications
IT Security Certification
Required Experience
Four (4) years IT security experience
Preferred Qualifications
Additional Preferred Qualifications
Application security assessment experience
Preferred Experience
Experience with an enterprise log management system or SIEM (i.e., Splunk, Elastic, AlienVault, etc.), OSCP, GPEN, LPT or similar preferred
Microsoft Azure administration experience
Microsoft 365 administration experience, including Purview and Defender
Experience in the implementation of processes and procedures for cybersecurity reporting and metrics activities