Security Analyst Operations

We are seeking a highly motivated and skilled Security Analyst to join the Cyber-Tech Security (CTS) department within the Office of Technology Services (OTS) at the Illinois Institute of Technology. The Security Analyst will be responsible for safeguarding the organization’s information systems by identifying, analyzing, and mitigating security threats. The role includes ensuring security events are contained and remediated, enforcing security policies, and raising security awareness among team members. The ideal candidate will have a strong technical background and a deep understanding of cybersecurity principles and best practices to ensure the confidentiality, integrity, and availability of organizational data.

Key Responsibilities:

• Incident Detection and Response (30%):

  • Implement, operate, and monitor security information and event management (SIEM) tools to detect and respond to security incidents, indicators of compromise, and breaches. Provide metrics for security deficiencies.

• Incident Analysis and Coordination (20%):

  • Analyze security incidents, indicators of compromise, and breaches to determine the impact, origin, and resolution. Coordinate with product teams and vendors to address and mitigate identified security threats.

• System and Application Security (20%):

  • Collaborate with product teams and vendors to ensure secure configuration and deployment of systems and applications. Analyze security requirements for new systems, applications, and vendors, and recommend additional security measures and controls. Identify hardware and software nearing end-of-life for support.

• Collaboration with Technical Stakeholders (10%):

  • Work closely with developers, database administrators, system architects, and other technical teams to support existing and implement new security solutions.

• Requirement Gathering and Execution (10%):

  • Gather technical requirements and execute on deliverables with stakeholders across different teams.

• Research and Threat Intelligence (5%):

  • Conduct research on new or improved security best practices, protocols, technologies, and cyber threat intelligence, including current attack vectors.

• Miscellaneous Duties (5%):

  • Perform other duties as assigned by the Director or Cyber-Tech Security team.

Qualifications:

Education and Experience:

• Bachelor’s degree in Computer Science, Engineering, IT/IS/MIS, or a related field.
• 1-3 years of experience in information technology or information security.
• Preferred: Experience in academia, research, or similar industries.

Knowledge & Skills:

• Technical Proficiency:
  • Working knowledge of security tools and technologies such as SIEM, Endpoint Detection and Response (EDR), vulnerability scanners, Data Loss Prevention (DLP), CIS benchmarks, forensic tools, anti-virus/malware protection, encryption technologies, cloud services, and mobile devices.
  • Familiarity with Microsoft 365, Active Directory, Linux, email solutions, and cloud services.
• Documentation & Process Management:
  • Ability to produce operations documentation (SOPs, wiki pages, etc.).
  • Familiarity with Agile project management practices.
• Compliance & Incident Response:
  • Familiarity with compliance frameworks like NIST 800-171, CMMC, HIPAA (preferred).
  • Previous experience as part of an incident response team (preferred).

Certifications:

• Desirable (not required):
  • CompTIA Security+, CompTIA CySA+, GIAC Security Essentials (GSEC), or similar certifications.

Supervision & Budget Authority:

• No supervisory or budgetary responsibility.

Physical Environment and Requirements:

• Hybrid office environment.
• Occasional work may be required for tasks like retrieving desktops or laptops for forensic work or excess.

Special Schedule Requirements:

• Normal university business hours: Monday – Friday, 8:30 a.m. – 5:00 p.m.
• Occasional work may be scheduled on Thursday mornings, Friday nights, and Saturday mornings during university maintenance windows. After-hours availability may be required for incident response.

EEOC Statement:

Illinois Institute of Technology is an Equal Opportunity Employer (EOE) and is committed to creating a community of excellence, equity, inclusion, and diversity. We actively seek applications from individuals of all backgrounds and identities, and all qualified applicants will receive equal consideration for employment.