SECURITY ANALYST I/II/SR

Central Michigan University


Position Information
Position Information

Position Number 77400
Type of Recruitment External
Position Title SECURITY ANALYST I/II/SR
Position Summary The Security Analyst is a member of the Information Security Office within the Office of Information Technology (OIT) for CMU. The Security Analyst’s primary responsibilities are intrusion detection, response, investigation, correlation, analysis, and reporting, plus improvement and management of the university’s security monitoring and alerting systems. This includes monitoring of the university’s network traffic and critical IT infrastructure for anomalies and indicators of compromise, as well as the creation, development, and implementation of monitoring and alerting systems and processes that help detect, react to, and prevent malicious traffic within the environment, with a focus on reducing risk to university data, account holders, and IT assets. Secondary responsibilities may include other information security and information technology administrative activities including leading incident response, vulnerability management, risk assessment, investigations and legal discovery, penetration testing, firewall and IDS/IPS systems tuning, programming, scripting, and automating, data loss prevention, standards development, security awareness, end-point security consultation, web and application security, compliance activities, etc.
Required Qualifications Security Analyst I:
Bachelor’s degree in Computer Science, Management Information Systems, Information Assurance or related field (work experience in the occupational field or specialized subject area of the work assigned to the job may be substituted on a year-for-year basis for the degree).
Two years of full-time experience working in enterprise information technology support with above degree or six years of full-time experience without degree.
Basic knowledge of security processes and procedures relating to the confidentiality, integrity, and availability of information and information systems.
Basic knowledge of information security risk assessment and management processes and standards.
Basic knowledge and understanding of security concepts including malware, intrusion detection, risk analysis, and threat/vulnerability management.
Basic knowledge of intrusion detection/prevention systems, SIEMs, and vulnerability scanners.
Demonstrated ability to communicate clearly and effectively and project a positive and professional attitude, and to work in cross-functional teams.
Demonstrated ability to research and resolve complex technical issues.
Demonstrated ability to manage timelines and deliverables, to create and manage task lists, and to meet work and project schedules as determined by others.
Ability to analyze and produce reports on information security issues.
Ability to communicate effectively, both orally and in writing.
Ability to work occasional weekend and evening assignments as well as availability to work during off-hours for participation in both scheduled and unscheduled activities, as required.
Ability to perform the essential functions of the job.
Security Analyst II
All the requirements of Security Analyst I, plus:
One additional year of experience working in enterprise information technology support.
Demonstrated ability to lead projects of moderate scope and complexity.
Experience with highly available databases and storage solutions.
Knowledge of data loss prevention tools and processes.
Strong familiarity with cybersecurity frameworks, controls, and organizations, such as NIST, CIS, and ISO.
Senior Security Analyst
All the requirements of Security Analyst II, plus:
Two additional years of experience working in enterprise information technology support.
Develops consistent and timely documentation.
Demonstrated ability to lead complex projects.
Consistently demonstrates behavior that is consistent with CMU’s values and leadership standards.
Demonstrated consistent and outstanding reliability.
Seeks out opportunities for improvements and develops realistic proposals for implementation.
Advanced experience or knowledge in one or more scripting languages such as PowerShell.
Proven ability to consistently perform above and beyond what is expected of a Security Analyst II.
Preferred Qualifications Information security certifications, such as CISSP, CISM, Security+, etc.
Experience working in a higher education environment.
Knowledge of Security Information and Event Management (SIEM) concepts, applications and systems.
Experience with programming, scripting, and task automation.
Web, application, network and computer penetration testing skills and experience.
Working knowledge of requirements for organizational compliance with multiple laws, regulations, and standards such as PCIDSS, HIPAA, FERPA, and GLBA.
Duties & Responsibilities Security Analyst I:
Works with OIT personnel to ensure necessary information is being properly collected and aggregated into the SIEM.
Configures, updates, and enhances security systems such as IDS/IPS, SIEM, and vulnerability scanners.
Identifies, investigates, analyzes, responds to, and reports on security events that occur within the university environment.
Identifies and addresses accounts that have indicators of compromise.
Works closely with other OIT teams and utilizes tools and processes to scan and evaluate campus servers and workstations on a regular basis for vulnerabilities and configuration issues.
Works with OIT personnel to mitigate discovered vulnerabilities.
Participates in the design, implementation, and continuous improvement of security service offerings.
Researches and monitors the latest information technology security trends.
Maintains documentation for ISO systems.
Investigatory responsibilities that may require discretion and/or interaction with executive, legal, and/or law enforcement staff.
Perform other duties as assigned.
Security Analyst II
All the duties of a Security Analyst I, plus:
Designs and implements data loss protection tools and processes.
Acts as a point of escalation for security incidents.
Oversight and mentoring of student analysts.
Assists with risk assessments, access audits, awareness training and business process review, etc.
Participates as an information assurance subject matter expert in the analysis and design of new enterprise systems and services.
Senior Security Analyst
All the duties of a Security Analyst II, plus:
Performs periodic system penetration testing.
Discovers, develops and maintains security standards utilizing best practices for the university.
Assists in the development of operating procedures and policies that ensure systematic completion of compliance activities and that capitalize on opportunities to streamline compliance activities.
Supervision Exercised None.
Message to Applicants Central Michigan University is dedicated to fostering a broadly diverse and inclusive campus that respects all social identities, experiences, and perspectives. In an effort to further this initiative, we are especially interested in candidates who will advance and promote an inclusive and supportive environment for every member of our university community.
__
You must submit an on-line application in order to be considered as an applicant for this position.
Cover letters may be addressed to the Hiring Committee.
Employee Group Professional & Administrative -Salary
Staff Pay Level
Pay Range $65,000-$90,000
Division President
Department Information Security – OIT
Position Status Regular
Position End Date
Employment Status Full-Time
FTE 1.0
Position Type 12 month
Weekly Work Schedule M-F, 8a-5p; occasional additional hours as needed
Location Mount Pleasant, MI
About the Department
About CMU Central Michigan University has a more than 125-year legacy of preparing students to become leaders and changemakers in their communities and in their personal and professional lives.
We serve nearly 15,500 students on our Mount Pleasant campus, in satellite locations around the state and throughout the country, and through flexible online programs. Many of our approximately 300 undergraduate, master’s, specialist and doctoral programs in the arts, media, business, education, human services, health professions, liberal arts, social sciences, medicine, science and engineering are nationally ranked for excellence.
CMU leads the nation in leadership development programming through our Sarah R. Opperman Leadership Institute, and we are proud to be among only 5% of U.S. universities in the top two Carnegie research classifications. Our faculty work with graduate and undergraduate students in areas such as Great Lakes research, medical innovation, engineering technology and more.
Central is home to 17 men’s and women’s Division 1 sports including football, basketball, gymnastics, baseball, wrestling and more. Our student-athletes achieve great success in competition and in the classroom, capturing Mid-American Conference championships and maintaining an average cumulative GPA of 3.17.
CMU is located in Mount Pleasant, a community that blends the best of small-town living with big-city amenities. It’s part of the culturally varied and vibrant Great Lakes Bay Region that also includes Saginaw, Bay City, Midland and the state’s largest Native American community, centered on the Saginaw Chippewa Isabella Reservation in Mount Pleasant.
Area residents enjoy the mix of outdoor activities, cultural events, shopping and dining options, and family attractions. Other major Michigan destinations and attractions — Lansing, Grand Rapids, Detroit, Traverse City, wineries, beaches, golf and ski resorts, and many more — are within easy reach of the city’s central location in Michigan’s Lower Peninsula.
CMU employees enjoy access to a nationally recognized wellness program along with health care and benefits that exceed regional, state and national norms.
CMU Leadership Standards Central Michigan University is a place where we value students and work for their success, where we act as family, and where employees are engaged, appreciated and have extraordinary opportunities to make a difference.
We intentionally maintain and strengthen the hallmark CMU culture that sets us apart from our peers by expecting CMU leaders and employees to model the following Leadership Standards and develop them within their teams.
Please review the Leadership Standards before applying for this position.
EEO Statement CMU, an AA/EO institution, strongly and actively strives to increase diversity and provide equal opportunity within its community. CMU does not discriminate against persons based on age, color, disability, ethnicity, familial status, gender, gender expression, gender identity, genetic information, height, marital status, national origin, political persuasion, pregnancy, childbirth or related medical conditions, race, religion, sex, sex‐based stereotypes, sexual orientation, transgender status, veteran status, or weight (see http://www.cmich.edu/ocrie ).
If you wish to see “EEO is the Law” posters, please click here .
CMU does not discriminate on the basis of sex in the education program or activity that it operates, including admission and employment, and is required by Title IX of the Education Amendments of 1972 not to discriminate in such a matter.
Inquiries about the application of Title IX can be made to CMU’s Title IX Coordinator, the US Department of Education’s Assistant Secretary, or both.
CMU’s Title IX Coordinator can be reached at:
Phone: 989-774-3253
Office: 103 E. Preston St.
Bovee University Center, suite 306
Mount Pleasant, MI 48858
Email: [email protected]
Posting Ends
Open Until Filled Yes

View or Apply
To help us track our recruitment effort, please indicate in your cover/motivation letter where (jobs-near-me.eu) you saw this job posting.</strong