Security Analyst - GRC: Office of Innovative Technologies - UTK

The IT Administrator/Analyst II position will be information security analysts directed by the Chief Information Security Officer.  As a Security Analyst, you will play a pivotal role in safeguarding the University’s digital assets and sensitive information. Leveraging your experience, you will assist with the development and implementation of robust security measures to identify, assess, and mitigate potential risks. Your general responsibilities will include incident response, analyzing vulnerabilities, and recommending effective countermeasures to ensure the integrity, confidentiality, and availability of our systems, particularly with respect to Governance, Risk and Compliance as it relates to information security.  Collaborating closely with cross-functional teams and departmental leadership, you will also provide guidance on emerging threats to develop security solutions, including the evaluation of risk, costs to the university, and impact to the university community. 

• Participate in IT security incident response services for all UT Knoxville departments, units, and colleges
• Contribute to the design, deployment and management of technical security solutions, including systems, networks, SaaS, PaaS, and/or databases
• Engage directly with University of Tennessee, Knoxville personnel on problem resolution, training, and policy and procedure guidance regarding IT security
• Assist in the implementation of the GRC program to support business objectives, aligned with industry best practices and regulatory requirements.
• Assist to define and monitor IT risk and compliance training programs.
• Assist in conducting risk assessments, supporting the development and adherence of risk mitigation strategies, and maintaining the risk register.
• Support audit activities by gathering evidence, conducting preliminary assessments, and assisting in the remediation of audit findings.
• Assist in evaluating and managing risks associated with third-party vendors and service providers through vendor risk assessment processes.
• Evaluate SaaS security solutions including risk, costs to the university, and impact to the user community
• Provide guidance for cloud solutions such as Azure, AWS, GCP, and OCI
• Provide technical evaluation on IT security solutions, frameworks, techniques, and applications
• Provide guidance in the holistic development and enhancement of the IT Security Program

Required Qualifications: 

• High School diploma or GED
• Two (2) years’ experience providing Information Security services for enterprise
• Knowledge of advanced security concepts and enterprise responses
• Ability to produce highly technical reports and communicate importance to stakeholders
• Knowledge of security concepts and enterprise responses associated with cybersecurity.
• Ability to correlate current security trends into protection mechanisms/mitigation for UTK.
• Ability to work directly with personnel and provide solutions based on risk and business needs. 
• Ability to produce highly-technical reports and communicate importance to different shareholders. 
• Knowledge of compliance standards/frameworks/maturity models
• Advanced organization, communication, analysis, and troubleshooting skills.

Preferred Qualifications: 

• Bachelor’s Degree in IT related field
• Three (3) to five (5) years’ experience providing Information Security services for enterprise
• Experience in Higher Education serving in a technical security role
• ISC2 CISSP (Certified Information Systems Security Professional)
• SANS Certification(s) particularly Risk Management focused
• Ability to create, communicate, and maintain policy/program-level documents.
• Ability to interface with senior technical and business management.
• Knowledge specific to compliance standards/frameworks/maturity models employed by the University

The University of Tennessee, Knoxville, has shaped leaders, changemakers, and innovative thinkers since its founding in 1794. The university is home to more than 38,000 students and 10,000 statewide employees—the Volunteers—who uphold the university’s tradition of lighting the way for others through leadership and service. 

UT Knoxville offers over 900 programs of study across 14 degree-granting colleges and schools. As Tennessee’s flagship land-grant university, its footprint spans the entire state. The university holds the highest Carnegie classification for research activity and has deep partnerships with industry leaders and the US Department of Energy’s largest multidisciplinary laboratory, Oak Ridge National Laboratory. 

The Knoxville campus serves and recruits for UT Knoxville, including the Institute of Agriculture and the Space Institute, as well as the UT Institute of Public Service.  

UT Knoxville considers its employees its number one asset. With values that focus on work-life balance, compensation, and innovation leadership, all Vols are supported to advance professionally. Employees have access to career development and coaching, continued education, and an extensive list of development and training possibilities. The Volunteer employee experience implements structures and practices that attract and retain a diverse community and that support a culture where everyone matters and belongs.  

The university holds a strong commitment to its land-grant mission of learning and engagement, with a tradition of service and leadership that carries that Volunteer spirit throughout the state and around the world. It has been ranked nationally as “Best Employer for New Graduates,” “One of America’s Best Large Employers,” and “Best Workplace for Women,” and has been designated as “Best Place for Working Parents” by Forbes Magazine.  

Apply today and join the Tennessee Volunteer community!