Senior Information Security Analyst

Center for Translational Data Science (CTDS) ยท Chicago, IL with some remote flexibility

Other
Environment
Partners & Advocates
Health & Well-Being
Posted 2 months ago

Security
Featured Job

The Senior Information Security Analyst will be a senior member of CTDS’s Security Operations & Threat Management team supporting the Information Security Office. In this position you will be responsible for monitoring, investigating, and escalating security events, as well as develop and integrate threat intelligence into operations. The candidate will be challenged to automate and improve Security Operations. This position will also assist in the production of valuable and actionable threat metrics to share with the wider Information Security team.

Responsibilities

  • Investigate and respond to security alerts, leverage security platforms for the identification of security events; triage and escalate security incidents.

  • Improve Security Operations through automation and technical controls.

  • Identify, design, and implement improvements to current programs/procedures.

  • Stay up to date with current security vulnerabilities and attacks.

  • Analyze threats posed to various systems, technologies, or operations.

  • Identify relationships, trends, and patterns of security events.

  • Mature, document, and maintain procedures around threat hunting.

  • Automate response and remediation of security events.

  • Develop and leverage threat intelligence solutions, as well as conduct intelligence, analysis, and vulnerability scanning.

  • Develop new use cases to detect threats across multiple environments including network, endpoint, and applications.

  • Integrate cyber threat intelligence into various systems. 

  • Develop impactful risk and threat metrics and provide investigation reports.

  • Support wider CTDS Information Security Officer initiatives.

  • Assist the team in system maturity, upgrades, expanded features.

  • Produce useful and actionable threat and risk dashboards, reports, and metrics.

  • Practical application of detection and response methodologies in a variety of environment types, including on premises, private cloud, and public cloud provider.

  • Uses a deep understanding of IT expertise to develop and implement security and compliance policies, guidelines, and safe practices for university-wide computing and networking systems.

  • Leads teams to conduct in-depth information technology risk assessments; makes recommendations and designs improvements to IT security procedures.

  • Guides communications with users to understand their security needs and supports the implementation of procedures to accommodate them. Ensures that user community understands and adheres to necessary procedures to maintain security.

  • Performs other related work as needed.

Preferred Qualifications

 

Experience:

  • 5-7+ years of business/technical/information security/risk compliance experience.

  • Product Experience with various SIEM/SOAR, XDR, Scanning, Malware Analysis, Vulnerability Management, Threat Intelligence, and Insider Threat solutions.

  • Experience conducting incident response, threat intelligence, threat hunting, etc. activities and host/network forensics

  • Experience with information security tools and solutions.

 

Certifications:

  • CISA, CRISC, GIAC, CISM, or CISSP Certifications.

 

Competencies

  • Deep technical expertise in threat intelligence and hunting, incident detection at scale, and creating effective incident containment and response practices, coupled with a broad understanding of the security and information technology landscape.

  • Knowledge of hybrid IT systems, networking, and cloud environments (AWS, Google, etc.).

  • Understanding of MITRE ATT&CK and Lockheed Martin Cyber Kill Chain.

  • Fundamental understanding of TCP/IP, Firewalls, Routers, and Switches.

  • Significant technical depth in security incident detection and response.

  • Ability to respond to changing priorities and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness.

  • Ability to weigh Center, partner, and agency needs against security and risk tolerance.

  • Ability to conceptualize a course of action and to organize for the successful completion of that action are critical, often under tight deadlines.

  • Ability to present information in a consistent and concise manner.

  • Strong written and verbal communication skills and ability to foster collaborative working relationships.

Also see our Sr InfoSec role focusing on Governance, Risk, and Compliance: https://uchicago.wd5.myworkdayjobs.com/en-US/External/job/Shoreland/Sr-Information-Security-Analyst--Governance--Risk--and-Compliance_JR13135

Related Jobs

Senior Platform Engineer - Center for Translational Data Science (CTDS)
Chicago, IL with some remote flexibility - Posted 2 months ago
Technical Business Analyst - Center for Translational Data Science (CTDS)
Chicago, IL with some remote flexibility - Posted 2 months ago
Staffing Manager - Truss
United States - Remote - Posted 1 month ago
View more open tech jobs in Chicago, IL
View more remote jobs
Be the first to see new Senior Information Security Analyst jobs

Save this search to get an email when new jobs match this search.

Create Email Alert