This job has expired

Incident Response & Monitoring Analyst

Employer
University of Colorado Boulder
Location
Colorado, United States
Salary
Salary Not Specified
Posted Date
Aug 12, 2022

View more

Position Type
Faculty Positions, Science, Technology & Mathematics, Computer Sciences & Technology, Administrative, Business & Administrative Affairs, Computer Services & Information Technology, Technology Administration/Other, Chief Technology & Information Officers
Employment Type
Full Time
You need to sign in or create an account to save a job.


Job Summary

The University of Colorado Boulder encourages applications for an Incident Response and Monitoring Analyst!
This position is a technical lead role within the Security Operations team and is responsible for incident response processes, digital forensics processes and technology support for investigations. We may fill this position at either the mid-level or a senior level. Duties include both direct incident response handling as well as management of the response process, ensuring incidents are appropriately worked, resolved and advanced as needed. This position will take the lead within the team for interacting with law enforcement agencies when needed. The CU Boulder campus supports more than 30,000 students and thousands of employees, all using a wide variety of IT services that are hosted both on-premise and with third-parties.
We are looking for a team member who collaborates well both within the security team and with other groups on campus, brings knowledge and experience in incident response, and has a focus on serving the university community through protecting their security and privacy. This position may lead one or more student employees, depending on arrangements within the team. This position is available as full time or part time with a minimum of 75% time work schedule. This position has flexibility to work remotely, but is expected to be on the CU Boulder campus to assist with collections and investigations as needed.
Applications Used:
  • Bro/Zeek/Snort intrusion detection system
  • Forensics and analysis tools
  • LogRhythm SIEM
  • Juniper and Palo Alto firewalls
  • The Hive security alert management system
  • Service Now IT ticketing system

The University of Colorado Boulder is committed to building a culturally diverse community of faculty, staff, and students dedicated to contributing to an inclusive campus environment. We are an Equal Opportunity employer, including veterans and individuals with disabilities.
The University of Colorado Boulder is committed to building a culturally diverse community of faculty, staff, and students dedicated to contributing to an inclusive campus environment. We are an Equal Opportunity employer, including veterans and individuals with disabilities.

Who We Are

Vision:
  • Office of Information Technology will be valued by campus as a strategic, inclusive and innovative partner in advancing learning and discovery in order to enable CU Boulder to be a premier public university.

Mission:
  • Office of Information Technology enables campus priorities by providing high-value IT services and solutions.

Values:
  • Trust, as a foundation for how we engage with one another and with campus partners, along with
  • Avid curiosity in how to better support the campus and our stakeholder’s while
  • Fostering empowerment and authentic engagement among ourselves and
  • Celebrating inclusivity that promotes a sense of belonging while acknowledging that each person is unique and valued.

Strategy:
  • Office Information Technology will advance learning and discovery by delivering high-value reliable IT services and solutions that:
    • Provide a fluid and adaptable academic and student experience
    • Enable research competitiveness and
    • Deliver core infrastructure and enterprise IT services for business effectiveness.

Based on our departmental goals and our commitment to diversity and inclusive excellence, CIO Information Technology particularly welcomes applications from candidates whose knowledge, skills, and abilities, and desire to contribute to an inclusive campus environment, will help us achieve our vision of a diverse and inclusive community.

What Your Key Responsibilities Will Be

Duties and responsibilities of the position include, but are not limited to:
Incident Response
  • Serve as the lead role in information security incident response, providing direction for related processes and outcomes.
  • Work with partners to resolve computer security incidents.
  • Create incident reports of notable incidents, including assessments of broader implications to the organization.
  • Coordinate with law enforcement investigations in alignment with organizational processes.
  • Work with IT service providers to determine appropriate incident and monitoring processes for their services.

Cyber Defense Analysis
  • Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.
  • Provide cybersecurity recommendations to leadership based on significant threats and vulnerabilities.

Digital Forensics
  • Perform forensic analysis of computers, network traffic, phones and other data sources in support of information security investigations.
  • Handle and supervises data/evidence in accordance with appropriate processes.
  • Coordinate with internal and external groups for handling and transfer of data.

Professional Development
  • Maintain awareness and knowledge of information security threats, vulnerabilities, technologies and business processes.
  • Continuously learns new professional and technical skills and abilities through formal and informal learning opportunities.
What You Should Know
  • This position is in a hybrid work situation. This position has flexibility to work remotely, but is expected to be on the CU Boulder campus to assist with collections and investigations as needed.
  • All University of Colorado Boulder employees are required to comply with the campus COVID-19 vaccine requirement. New employees must provide proof of vaccination or receive a medical or religious exemption within 30 days of employment.
What We Can Offer
  • Salary: $70,000 - 85,000.
Benefits

The University of Colorado offers excellent benefits , including medical, dental, retirement, paid time off, tuition benefit and ECO Pass. The University of Colorado Boulder is one of the largest employers in Boulder County and offers an inspiring higher education environment. Learn more about the University of Colorado Boulder .

Be Statements
Be challenged. Be innovative. Be Boulder.

What We Require
  • Bachelors Degree or equivalent combination of education and experience.
  • For Mid Level:
    • 3 years of experience focused on information security incident response and/or information security analysis.
    For Senior Level:
    • 5 years of experience focused on information security incident response and/or information security analysis. Including participating in or leading information security incident response processes.
What You Will Need

To be successful in this position, candidates will need the following:
Knowledge
  • Knowledge of cybersecurity and privacy principles.
  • Knowledge of incident response and handling methodologies.
  • Knowledge of processes for preserving digital evidence.
  • Knowledge of computer networking fundamentals.
  • Knowledge of operating systems.

Skills
  • Skill in evaluating information for reliability, validity and relevance.
  • Skill in preparing reports and briefings.
  • Skill in identifying how security risks apply to the organization.

Abilities
  • Ability to communicate sophisticated information in a well-organized manner through verbal, written or visual means.
  • Ability to optimally collaborate with team members in-person and remotely.
  • Ability to think analytically and critically.
What We Would Like You To Have
  • Specific training and/or certification in incident response, digital forensics, network security monitoring, and related topics (degree programs, SANS/GIAC, etc.)
  • Experience developing and documenting processes.
  • Experience collaborating with multiple departments.
  • Experience performing forensic analysis of Windows, Linux, MacOS, iOS and/or Android devices.
  • Experience with network security monitoring.
  • Experience working with law enforcement (local and/or federal).
  • Experience working with Security Information and Event Management (SIEM) systems.
Special Instructions

To apply, please submit the following materials:
  1. A current resume.
  2. A cover letter that specifically tells us how your background and experience align with the requirements, qualifications, and responsibilities of the position.

We may request references at a later time.

Please apply by August 28, 2022 for consideration.

Note: Application materials will not be accepted via email. For consideration, please apply through CU Boulder Jobs.

Posting Contact Information

Posting Contact Name: Boulder Campus Human Resources

Posting Contact Email: Recruiting@colorado.edu


You need to sign in or create an account to save a job.

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert

Similar jobs