Information Security Analyst / SOC Analyst – Associate/1/2/3

JOB SUMMARY

CEN, through The University of Connecticut (UConn) Information Technology Services (ITS), has an amazing opportunity for Information Security (IS) professionals to join a fast-paced team providing information and cyber security services to our members in CT. Incumbents will manage and enhance CEN’s security infrastructure, customer service offerings, provide “DevSecOps” type support leveraging automation and self-service capabilities, develop API integrations for security tools, and generally advance the security of, and visibility into the network.

This posting is intended to fill two (2) positions within CEN for near and long-term development of the Information Security team, provide support for CEN’s internal needs, externally customer facing managed security services, and serve as the core team working towards development of statewide security solutions and offerings. Initial roles will be to serve as SOC analysts dedicated to the UConn Information Security Office, then over time, transition towards broader CEN based activities. Internal CEN needs and externally managed service support may include though are not limited to: Identity Access Management (IAM), MFA/2FA, Vulnerability Management, Endpoint Protection, Application Security, Firewalls, VPN, and IDS/IPS, load balancing, DDoS mitigation, web content filtering, penetration testing, security architecture, and other related Information Security disciplines.

The successful candidate(s) will bring various levels of experience, support, and knowledge of specific network and information security (IS) methodologies, practices, processes, and software packages and a conceptual understanding of other IS security procedures and/or policies.

Note: Please indicate the role you’re applying for in the cover letter.  All minimum qualifications must be met at the applicable level to be eligible for consideration at that level. Applicable role will be verified by the hiring committee with respect for qualifications and demonstrated experience.

ORGANIZATIONAL OVERVIEW

The Connecticut Education Network (CEN) is Connecticut’s trusted internet partner, committed to our member community and its success.  By honoring this commitment, we have grown the member customer network and maintained our reputation one of the most valued and secure Internet Service Providers serving CT for over 20 years. Join CEN to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do, where you do it, and contributing to mission and vision that provides unprecedented value to CT.

SALARY

• Information Security Associate: $57,505 - $74,756
• Information Security Analyst 1: $64,405 - $83,727
• Information Security Analyst 2: $80,790 - $105,027
• Information Security Analyst 3: $90,485 - $117,630

BENEFITS INCLUDE

• Defined contribution with match or defined benefit program retirement options
• Excellent and affordable healthcare options
• Annual merit increase program
• 22 paid vacation days per year, in addition to paid sick leave and 13 paid holidays
• Employee and dependent tuition waivers
• A highly desirable work environment and work-life balance

DUTIES AND RESPONSIBILITIES

Information Security Associate

• Monitor and response to threats, events, alerts and incidents.
• Use SEIM, IDS/IDP, EDR, NDR and Firewall systems to identify threats and attacks.
• Assist in containment and mitigation activities.
• Triage and respond to service requests from customers and/or internal teams.
• Maintain awareness of potential and developing threats across industry and in general.
• Participate in Incident response activities as required for cyber security incidents. 
• Maintain appropriate documentation and diagrams of infrastructure and security systems.
• Promote security awareness to improve and ensure system security and best practices. 
• Interact with customers, forge relationships, and contribute to the development of the community.
• Expected travel may be 20% for on-site support, community/customer interactions, and/or vendors.
• May directly collaborate with UConn ISO staff as needed.
• May participate in on-call rotation, after-hour changes, and after-hour escalations as needed.
• Performs related work as required.

Information Security Analyst 1 (additional responsibilities inclusive of Info Sec Associate) 

• Administer and use security tools to identify, investigate, and mitigate threats to the environment.
• Proactively analyze network traffic, system logs, to identify threats, intrusions, and/or compromises.
• Aids in analysis of security incidents to help determine root cause and prevent future occurrences.
• Reports on security metrics to proactively monitor threats and provide trend data for reporting.
   

Information Security Analyst 2 (additional responsibilities inclusive of Analyst 1)

• Develop and support security infrastructure including but not limited to firewalls, DDoS mitigation system, filtering, load balancers, logging, SIEM, and identity access management. 
• Host workshops, training, and/or events and mentor technical staff on security best practices and recommend training programs to encourage cross-team competency.
• Research, recommend, implement, and support security tools and counter measures to reflect the evolving security terrain and trends; perform manual penetration testing and reports as needed.
• Draft scripts or deploy programs to assist with automation, provisioning, and/or telemetry, and to ensure integrity of resources to dependent systems.
• Produce and maintain detailed engineering plans, operating procedures, diagrams, models, and standards as they relate to network security design, deployment, and operations.

Security Analyst 3 (additional responsibilities inclusive of Analyst 2)

• May serve as team lead for Info Sec team, managing team priorities and performance.
• Serve as the senior technical analyst and final escalation point for all things infosec related.
• Assist in negotiations with vendors and/or subcontractors.
• Operate autonomously with general direction and limited supervision. 
• Lead major projects / initiatives related to information and network security.
• Integrate data for use between various applications. 
• Identify gaps, perform risk assessments, and implement solutions to align with best practices.
• Creates custom code to facilitate data gathering / sharing across applications. 

RELATED SKILLS AND COMPETENCIES

• Problem Solving: Demonstrates sound analytic and diagnostic skills dealing with issues that are loosely defined and/or where information is available but must be further manipulated. Once decisions are made, you are able to follow and direct action to implement intended results. Breaks a problem down to manageable pieces and implements effective, timely solutions. Openly and directly confront issues until resolved.
• Team Orientation: Builds relationships with peers and other departments to achieve objectives. Balances team and individual responsibilities. Exhibits objectivity and openness to others’ views. Gives and welcomes feedback. Puts success of team above self.  Responsibilities are assigned with some latitude for setting priorities and decision-making using established policies and procedures. Results are reviewed with next-level team lead/manager for clarification and direction before proceeding.
• Planning and Project Management: Works with, or serves as, the project lead in identifying those project tasks that are most important, establishes clear priorities and understands the larger picture.  Executes project tasks and creates documentation as required.
• Physical Demands: This position involves extended periods of sitting and the extensive use of computers and office equipment. May involve stooping, kneeling, crouching and/or working on step ladders. Involves close vision, color vision, depth perception, and focus adjustment. Must be able to lift 35 lbs. to shoulder height.

MINIMUM QUALIFICATIONS

Information Security Associate

• Bachelor’s Degree (BD) OR Associate’s Degree (AD) and 2 years related experience OR 4 years related experience (IT/Security).
• Knowledge of network architecture concepts including topology, protocols, components, and principles.
• Strong technical, analytical, interpersonal, and organizational skills.
• Must be a US Citizen.

Information Security Analyst 1 (inclusive of Info Sec Associate)

• BD OR AD and 2 years related experience OR 4 years related experience (IT/Security).
• Knowledge of information security concepts including confidentiality, accessibility, integrity, threats, risk, authentication, authorization, and others.
• Knowledge of detection and protection techniques. Knowledge of information security event triage and incident response concepts.

Information Security Analyst 2 (inclusive of Info Sec Analyst 1)

• BD and 2 years experience OR AD and 4 years of experience OR 6 years related experience (IT/Security).
• Excellent understanding of OSI layers 1-4.
• Experience with Network flow data (i.e., NetFlow, sFlow, IPFIX) or related forms of flow records and session summary data.
• Understanding of diagnostic and troubleshooting tools, such as the ability to perform detailed analysis on packet capture data; SIM/SIEM log analysis and diagnosis.
• Experience managing enterprise security devices/platforms from vendors such as Fortinet, Palo Alto, Arbor/NetScout, f5, iBoss, Splunk, Cisco and/or Juniper.
• Programming/development skills (preferably in Python, PERL, and Powershell)
• 1+ years in an information security role, or significantly supporting an information security program.

Information Security Analyst 3 (inclusive of Info Sec Analyst 2)

• BD + 4 years' experience OR AD + 6 years' experience OR 8 years related experience (IT/Security).
• Familiar with IT Security frameworks and relevant regulatory obligations and audit requirements (GDPR, SOX, NIST, ISO, PCI, FERPA, HIPPA, and/or AICPA/SOC2)
• Strong written and oral communication skills, and the ability to communicate technical information to a non-technical audience.
• Excellent time management, prioritization, and planning skills.
• 3+ years in an information security role.
• Senior level information security experience.

PREFERRED QUALIFICATIONS

Information Security Associate

• Experience as part of an information security team or directly supporting information security initiatives in a professional environment.

Information Security Analyst 1

• Bachelor’s degree or higher in a Science, Technology, Engineering, Math (STEM) field.
• Ability to present complex technical concepts in verbal or written business terms.

Information Security Analyst 2

• Master’s degree or 5 years direct experience in a large enterprise or service provider environment.
• One or more technical certifications such as Cisco CyberOps, CCNP Security, Fortinet NSE, Palo PCNSA or better.
• Demonstrated understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, and Incident Management.
• Experience leveraging IP routing protocols such as BGP, OSPF, and/or ISIS.
• Working knowledge of network security concepts and technologies, including but not limited to firewalls, IDS / IPS, proxy servers, access control systems, and web application firewalls.
• Demonstrated understanding of a wide array of enterprise applications/services including DNS (Domain Name System), SMTP, IIS, Apache, LDAP, SQL, RADIUS, TACACS, etc.

Information Security Analyst 3

• Experience supervising and managing employee performance.
• CISSP, CISM, or related information security certification.
• Understanding of NIST standards including NIST 800-171/172 and NIST 800-53.
• Experiencing in contract negotiations, pricing, terms, and conditions.

APPOINTMENT TERMS

This is a full-time, end-dated position with the possibility of renewal subject to performance and funding. The University offers a competitive salary, and outstanding benefits, including employee and dependent tuition waivers at UConn, and a highly desirable work environment.  For additional information regarding benefits visit: https://hr.uconn.edu/health-benefits/.

Other rights, terms, and conditions of employment are contained in the collective bargaining agreement between the University of Connecticut and the University of Connecticut Professional Employees Association (UCPEA).

TERMS AND CONDITIONS OF EMPLOYMENT

Employment of the successful candidate is contingent upon the successful completion of a pre-employment criminal background check.

TO APPLY

Please apply online at https://hr.uconn.edu/jobs, Staff Positions, Search #498802 to upload a resume, cover letter, and contact information for three (3) professional references.

This job posting is scheduled to be removed at 11:55 p.m. Eastern time on December 24, 2024. 

All employees are subject to adherence to the State Code of Ethics which may be found at http://www.ct.gov/ethics/site/default.asp.

All members of the University of Connecticut are expected to exhibit appreciation of, and contribute to, an inclusive, respectful, and diverse environment for the University community.

The University of Connecticut aspires to create a community built on collaboration and belonging and has actively sought to create an inclusive culture within the workforce. The success of the University is dependent on the willingness of our diverse employee and student populations to share their rich perspectives and backgrounds in a respectful manner. This makes it essential for each member of our community to feel secure and welcomed and to thoroughly understand and believe that their ideas are respected by all. We strongly respect each individual employee’s unique experiences and perspectives and encourage all members of the community to do the same. All applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

The University of Connecticut is an AA/EEO Employer.