Cyber Security Analyst

Why Work at BYU   

As the flagship higher education institution of The Church of Jesus Christ of Latter-day Saints, Brigham Young University (BYU) strives to be among the exceptional universities in the world. At BYU, we are devoted to our faith and to our students. We take an active role in the University's Mission: "To assist individuals in their quest for perfection and eternal life.” 

Our unique mission, deeply rooted in the Gospel of Jesus Christ, provides countless ways to serve and make an impact. This, along with our remarkable culture of belonging, weekly devotionals, and endless opportunities for learning and growth—all situated within a beautiful and historic campus—make it hard to imagine a more inspiring place to work. 

Brigham Young University strongly prefers to hire faithful members of The Church of Jesus Christ of Latter-day Saints.

Job Description

Cyber Security Analyst

The CES Security Operations Center is currently looking to hire a security analyst to serve BYU, BYU-Hawaii, BYU-Idaho, and Ensign College. This position, along with our other security analyst positions, will lead one of our security service pillars, and then rotate to another pillar semi-annually. Prior experience is not required in all 5 pillars (we will train you in the ones you do not know) and flexibility is key. Our pillars are security event monitoring and development, incident investigation & response, penetration testing, vulnerability management, and threat hunting. This rotational system allows you to build skills and expertise in a broad range of security operations disciplines. People skills are also required, as we regularly interact with campus customers. This position also gives you the opportunity to share with others your acquired skills, to grow and learn more, and to apply that learning. Other responsibilities will be assigned to you as you gain skills through on-the-job training, career-focused professional development, and mentoring.

You are going to love working at BYU/OIT! Here's why:

• OIT strives to provide the flexibility needed (both in schedule and remote work) to help employees maintain a great work-life balance.

•  You will work with real-world, leading-edge technology that serves the campus community while furthering your career. 

• OIT provides regular training and coaching to help you grow your career and improve your skills.

•  Plus, we have a LOT of FUN together! 

What you will be doing in this position:

Basic Security Analyst Responsibilities 

• Participate in security analyst on-call rotation 

•  Initial triage of security events, analysis of associated log data, security incident ticket population, and initial contact with relevant IT staff or end users 

•  Drafting and editing security work instructions, for security analysts, IT staff, and end users; creating workflow diagrams to correlate work instructions to security incidents 

Security Event Monitoring and Development

•  Develop dashboards and alerts, with mentoring

• Refine monitoring and logging processes, with mentoring     

Incident Investigation and response 

• Lead non-major incident investigations, with mentoring 

• Analyze network and endpoint log data to validate legitimate traffic and identify malicious traffic 

• Communication of containment strategy and remediation for security incidents; understanding what remediation activities are needed for common security incidents, with mentoring 

• Final validation of mitigation & resolution activities for non-major security incidents, with mentoring 

• Direct counter-phishing efforts 

Vulnerability management 

• Creation of metrics and reporting around vulnerability management activities

• Priority management data presented to the institutions, with mentoring 

Threat hunting 

• Research new threats in the industry, and develop methods for searching for those threats in our environments 

• Analysis of automated alerts, manual threat hunting data, or other intel data to raise observation data, with mentoring 

• Validation of threat observations as an actual security incident or false positive, with mentoring 

Penetration testing 

• Performs in-depth penetration testing and analysis of system vulnerabilities, with mentoring 

Professional development  

• On-the-job training and learning, both self-paced and as mentored by other full-time analysts 

• Attends seminars and conferences, participates in relevant professional organizations 

Supervision, collaboration, and leadership  

• Mentors student and full-time analysts, and is mentored as well 

What qualifies you for this role:  

Education and Experience:   

This position provides an opportunity for people of varying levels of skill.  If you have a lot of education, experience, and skill, we'll compensate you accordingly.  If you are early in your career, this could be a great opportunity for you, too.  Different levels of pay are assigned by the hiring department depending on experience/education/skills and business needs.  

Entry Professional (Level 52): Associate's degree or equivalent combination of education and experience (2 years). Cybersecurity experience preferred. ($63,500 to $82,500 approximate starting salary range) 

Early Career Professional (Level 53): Bachelor's degree or 4 years of a combination of education and IT experience. Cybersecurity experience preferred. ($71,000 to $92,500 approximate starting salary range) 

Professional (Level 54T): Bachelor's degree and 2 years of IT experience, or an equivalent combination of relevant education and experience. Cybersecurity experience preferred. Supervision experience preferred (full-time or part-time). ($85,500 to $111,000 approximate starting salary range) 

Senior Professional (Level 55T): Bachelor's degree and 5 years of IT experience required, or master's degree and 3 years of IT experience. Cybersecurity experience preferred. A minimum of 2 years of supervisory & mentoring experience is required (part-time or full-time). ($99,000 to $129,000 approximate starting salary range) 

Lead/Expert (Level 56T): Bachelor's degree and 12 years of IT experience, or a Master's degree and 10 years of IT experience. Cybersecurity experience required. A minimum of 5 years of supervisory & mentoring experience is required (part-time and full-time). ($115,500 to $150,000 approximate starting salary range) 

Skills, abilities, or knowledge:  

You are not required to have experience in all areas listed below. What you don't know we can teach you. We are seeking the most qualified candidates; the more you have, the more likely you will be selected. Compensation will be commensurate with experience and skills. 

Technical Skills and Experience:

For this position, we are looking for someone with experience and expertise in several of the concepts and specific technical skills listed below:

•  Security and business fundamentals 

• Professional comportment

• Log analysis and threat hunting

• Problem-solving and root-cause analysis 

•  Forensics

• Threat intel 

• Penetration testing

• Vulnerability management

• Architecture 

•  Networking

•  Operating systems: server & desktop

•  Operating systems: cloud IaaS & PaaS

•  Scripting and programming languages

•  Application security

• Database security

•  Directory technologies 

•  IT security standards, regulations, and laws

What we offer in return:

In addition to our competitive pay structure, this position comes with fantastic benefits, including:

• 401k. BYU automatically contributes 8% at no cost to you. Additionally, if you contribute 5%, BYU adds an additional 4% (Rehires may qualify for different retirement plans)
• Excellent work-life balance: 13 paid holidays + 22 days paid vacation + 12 sick days, accrued annually
• Employee assistance program, available to the employee and all members of their household
• Tuition benefits for employees and eligible family members
• Access to athletic facilities
• Excellent medical/dental benefits
• Short/long-term disability benefits
• Paid parental and maternity leave
• Wellness Program
• Free on-campus parking
• Free UTA passes for employees, spouses, and qualified dependents
• Discounts at the BYU Store and for many events at BYU

Pay Grade: 40

Required Documents:

All Staff positions require a resume.

Refer to the Job Posting for any additional required documents.

Members of The Church of Jesus Christ of Latter-day Saints must hold and be worthy to hold a current temple recommend.

Brigham Young University is an equal opportunity employer, including disability and protected veteran status.

Brigham Young University (BYU) is widely recognized not just for its world-class education, but for its deep commitment to inspired religious values. Gathered together in a Christ-centered atmosphere, BYU employees are a vital part of a community of belonging, where we value the experiences, perspectives, and talents of each individual. If you share in our devotion to faith and to excellence, we have a place for you here at BYU!