Job Listings
Oregon State University: Security Analyst
Department: Univ Info & Tech Admin (JIS)
Appointment Type: Professional Faculty
Job Location: Corvallis
Recommended Full-Time Salary Range: $60,288 – $105,420
Job Summary:
University Information and Technology (UIT) is seeking a Security Analyst. This is a full-time (1.00 FTE), 12-month, professional faculty position.
The Security Analyst duties will consist of operating security operations tools and systems to provide for detection and response functions of the OSU Security Operations Center. The Security Analyst will use cyber security tools and knowledge to perform event triage, monitoring and resolution, and incident response. The Security Analyst will additionally perform assist in threat intelligence gathering and technical information security consulting tasks.
UIT has a commitment to deliver data as a strategic working asset and to enable data informed decision making across OSU. UIT leaders and staff will lead by example and use data to inform decision making at all levels in the organization. Persons in technology roles are also expected to design systems with data portability in mind and work within enterprise architecture and privacy guidelines to deliver data as a strategic assess to fulfill OSU’s missions.
Proactively securing and protecting OSU’s digital assets and information systems is crucial to our missions of teaching and learning, research, and outreach and engagement. All OSU IT professionals have a direct responsibility to provision high quality and secure IT systems and services. Persons in technology roles are expected to be responsive to security related actions and requirements, and to collaborate to find secure ways to support the OSU community.
UIT has a deep commitment to and belief in the strength and value of diversity, equity, and inclusion (DEI) both throughout our team and as an intentional and active practice to advance the vision, mission, and strategic efforts of the entire university. As a member of the UIT community, the person in this position is expected to foster and promote the values of DEI and demonstrate a commitment to inclusive excellence in their work.
Why OSU?
Working for Oregon State University is so much more than a job!
Oregon State University is a dynamic community of dreamers, doers, problem-solvers and change-makers. We don’t wait for challenges to present themselves — we seek them out and take them on. We welcome students, faculty and staff from every background and perspective into a community where everyone feels seen and heard. We have deep-rooted mindfulness for the natural world and all who depend on it, and together, we apply knowledge, tools and skills to build a better future for all.
FACTS:
• Top 1.4% university in the world
• More research funding than all public universities in Oregon combined
• 1 of 3 land, sea, space and sun grant universities in the U.S.
• 2 campuses, 11 colleges, 12 experiment stations, and Extension programs in all 36 counties
• 7 cultural resource centers that offer education, celebration and belonging for everyone
• 100+ undergraduate degree programs, 80+ graduate degrees plus hundreds of minor options and certificates
• 35k+ students including more than 2.3k international students and 10k students of color
• 217k+ alumni worldwide
• For more interesting facts about OSU visit: https://oregonstate.edu/about
Locations:
Oregon State has a statewide presence with campuses in Corvallis and Bend, the OSU Portland Center and the Hatfield Marine Science Center on the Pacific Coast in Newport.
Oregon State’s beautiful, historic and state-of-the-art main campus is located in one of America’s best college towns. Corvallis is located close to the Pacific Ocean, the Cascade mountains and Oregon wine country. Nestled in the heart of the Willamette Valley, this beautiful city offers miles of mountain biking and hiking trails, a river perfect for boating or kayaking and an eclectic downtown featuring local cuisine, popular events and performances.
Total Rewards Package:
Oregon State University offers a https://hr.oregonstate.edu/benefits/prospective-employee with benefits eligible positions that is designed to meet the needs of employees and their families including:
• Medical, Dental, Vision and Basic Life. OSU pays 95% of premiums for you and your eligible dependents.
• Free confidential mental health and emotional support services, and counseling resources.
• Retirement savings paid by the university.
• A generous paid leave package, including holidays, vacation and sick leave.
• Tuition reduction benefits for you or your qualifying dependents at OSU or the additional six Oregon Public Universities.
• Robust Work Life programs including Dual Career assistance resources, flexible work arrangements, a Family Resource Center, Affinity Groups and an Employee Assistance Program.
Future and current OSU employees can use the https://hr.oregonstate.edu/benefits/new-employees/benefits-calculator to learn more about the full value of the benefits provided at OSU.
Key Responsibilities
60%—SECURITY OPERATIONS SUPPORT
The Security Analyst will provide the University’s detection and response function. Specific tasks include but are not limited to:
• Support SOC activities including servicing University-wide and affiliate system alerts and conducting security event monitoring, analysis, correlation and triage for on-premise, cloud based and as appropriate, third party systems and services
• Contribute to continuous improvement in Security Operations tasks and functions
• Serve as a resource for work activities and processes related to security operations across the University
• Support vulnerability management operations for the University and affiliates
20%—SECURITY OPERATIONS TECHNOLOGY
The Security Analyst will support security operations technology lifecycle activities. These include, but are not limited to:
• Install, operate and maintain the security operations technology systems that provide University-wide detection and response capabilities
• Contribute to documentation for training and standard operating procedures for security operations technology
• Contribute to continuous improvement to the security incident and event management (SIEM), developing processes and procedures for monitoring, alerting, detection and response functions for the University’s Information Technology ecosystem
• Tune and create analytic detection policies for detecting and monitoring anomalous and malicious activity across the University Information Technology ecosystem
15%—INCIDENT RESPONSEThe Security Analyst will perform cyber incident response activities in support of the University. These activities include but are not limited to:
• Perform the role of Incident Response Team Member in the event of a successful attack, to support technical response actions, incident mitigation and recovery activities
• Contribute to procedures for proactive and reactive Incident Response to be used University wide
5%—OTHER DUTIES AS ASSIGNED
• Support Data Sequestration for Academic Misconduct investigations
• Maintain administrative control of Active Directory and the University network
• Collaborate with internal and external stakeholders to assess needs for data and system monitoring and scanning
What You Will Need
• A bachelor’s degree in Computer Science or a related field, or an Associate’s Degree with two (2) years information security experience
• Knowledge of network security and information security concepts.
• Knowledge of information technology concepts.
• Strong communication and written skills, independent problem-solving abilities and self- direction.
• Ability to work in a fast-paced, team focused environment.
• Demonstrable commitment to promoting and enhancing diversity
• The Criminal History Check will include fingerprinting and successful completion of the Criminal Justice Information Systems (CJIS) online training
This position is designated as a critical or security-sensitive position; therefore, the incumbent must successfully complete a criminal history check and be determined to be position qualified as per University Standard: 05-010 et seq. Incumbents are required to self-report convictions and those in youth programs may have additional criminal history checks every 24 months.
What We Would Like You to Have
• Previous information security or security operations experience.
• Holding a current industry certification such as the CISSP or CySA+.
• Experience with Microsoft security tools, Tenable or Zeek.
• Good technical understanding of a broad range of security concepts and countermeasures including workstation security, perimeter security, account management, application security cryptography, network security.
• Experience with Intrusion Detection and/or Prevention Systems, Security Event and Incident Management Systems, and other Vulnerability and Assessment Tools.
• Proficiency with computer programming.
Working Conditions / Work Schedule
Special Instructions to Applicants
To ensure full consideration, applications must be received by 08/10/2023. Applications will continue to be accepted after the full consideration date, until a sufficient applicant pool has been achieved or the position is filled. The closing date is subject to change without notice to applicants.
When applying you will be required to attach the following electronic documents:
1) A resume/CV; and
2) A cover letter indicating how your qualifications and experience have prepared you for this position.
You will also be required to submit the names of at least three professional references, their e-mail addresses and telephone numbers as part of the application process.
For additional information please contact: Marjorie McLagan at marjorie.mclagan@oregonstate.edu
OSU commits to inclusive excellence by advancing equity and diversity in all that we do. We are an Affirmative Action/Equal Opportunity employer, and particularly encourage applications from members of historically underrepresented racial/ethnic groups, women, individuals with disabilities, veterans, LGBTQ community members, and others who demonstrate the ability to help us achieve our vision of a diverse and inclusive community.
OSU will conduct a review of the National Sex Offender Public website prior to hire.
This position is designated as a critical or security-sensitive position; therefore, the incumbent must successfully complete a criminal history check and be determined to be position qualified as per University Standard 05-010 et seq. Incumbents are required to self-report convictions and those in youth programs may have additional criminal history checks every 24 months. Offers of employment are contingent upon meeting all minimum qualifications including the criminal history check requirement.
