OmniSOC Security Analyst

0
0
  • Permanent
  • Indiana

Indiana University

Department

UITS OMNISOC (UA-DOMN-IUBLA)

Department Information

At University Information Technology Services
(UITS) we provide the technology, tools, and services you need to succeed. UITS supports IU’s vision for excellence in research, teaching, outreach, and lifelong learning. We ensure a workplace that encourages growth, flexibility, and creativity, as well as a culture that champions inclusion, diversity, and overall employee well-being through programs supported university wide. As an Equal Opportunity Employer, we believe in each person’s potential, and we’ll help you reach yours.

OmniSOC Background

  • OmniSOC is a security operations center hosted at Indiana University which provides monitoring and security operations services to US-based higher education institutions, research and education networks, and NSF-funded research facilities. OmniSOC is primarily made up of three teams:
  • A security services team (this position), which specializes in the comprehensive assessment and growth of OmniSOC member’s security programs by providing expertise, coaching, and security operations services to members. OmniSOC Services Team Analysts are experienced cybersecurity subject-matter experts capable of managing multiple highly complex tasks, projects, and client-members while coordinating with outside partners, software systems/vendors, and managing cybersecurity needs for novel applications across an array of stakeholders and contexts.
  • A platform engineering team that is responsible for running the OmniSOC SIEM and other IT infrastructure as well as performing all software development. The team operates in a devops model and supports both the services and security teams, along with OmniSOC members. The platform team manages an extremely scalable mission critical application while also developing and extending the core product. Platform engineers are able to assimilate new information, solve technical problems, and own software development and infrastructure projects.
  • The Security Analyst and Engineering Team primarily focuses on the analysis of OmniSOC member log data (network and endpoint) for indications of potential malicious activity or compromise. Security Analysts triage triggered automated detection and network intrusion detection system (NIDS) alerts and investigate whether an actual incident has occurred. Findings are shared with member institutions for mitigation. Security Engineers identify key member log sources and associated threats in order to build and tune automated detections to identify potential incidents for investigation by analysts and provide the analysts with playbooks to guide those investigations. Further driving the engineering efforts is the consumption of cyber threat intelligence that can be used to initiate and refine threat hunting operations.
  • These teams work together to deliver high-quality, timely service to our membership. Our success is dependent upon our teams working in a collaborative, highly organized and efficient manner.

OmniSOC core values:

  • Member focus
    • Analyst engage deeply with members to understand their goals, strengths, needs and challenges
    • We are committed to raising the cybersecurity level of our community for the betterment of all
  • Impact
    • Each analyst at OmniSOC bears responsibility for the success of OmniSOC and our community, we are committed to enabling the missions of education and research members through safer technology
  • We are focused on impactful over volume
  • Individual Mastery and collective improvement
    • We value an exploring mindset and actively encourage curiosity while pursuing ways to learn more, make the world better, and expand our expertise
    • We view mistakes not as failures, but learning opportunities, and try to learn from each failure
  • Communication
    • We are open and direct with each other when discussing problems
    • We default to openly sharing information with each other, our members, and the community.
  • Courage
    • We make tough decisions without agonizing and learn through doing and through one another to collectively improve our decision making
    • We act according to our principles even when no one is looking, we are unafraid to speak our minds or question actions that don t align with our professed values.

OmniSOC Services Analyst

  • OmniSOC Services Team Analysts are experienced cybersecurity subject-matter experts (SMEs) capable of managing multiple highly complex tasks, projects, and client-members while coordinating with outside partners, software systems/vendors, and managing cybersecurity needs for novel organizational objectives across an array of stakeholders and contexts.
  • OmniSOC is seeking cybersecurity analysts to join our security services team providing cybersecurity subject matter expertise to our members in higher education, networking, and major science research projects across the United States. Our analysts are deeply involved in the mission of our members, functioning as consultants, coaches, security analysts and decision makers within member organizations.
  • OmniSOC analysts are actively engaged in the higher ed and research community, regularly visiting campuses, research facilities and attending and presenting at conferences for education and research technology and cybersecurity in the US and abroad.
  • We strive to be leaders in the field, educating and bettering our member organizations in cybersecurity practice and policy through publication, training and community outreach. From embedded servers on ships at sea, to operational technology controlling telescopes on the tops of volcanoes, to world class data centers at leading research universities, our analysts meet our clients where they are and help them to improve their cybersecurity in an impactful, measurable way.
  • “Solve problems, work with amazing people, enable science, make technology safer.”

Job Summary

General Responsibilities

  • Performs ongoing advanced analysis and monitoring of technology environments to identify security exposures and potential threats.
    Assesses and determines level of risk in order to provide threat information, as well as to advise and/or recommend protections and solutions, to security leadership and department decision-makers.
  • Makes recommendations to improve information security policies and procedures.
  • Researches and stays abreast of current higher education information security environment and trends; stays up-to-date and advises junior peers on information security analysis and monitoring best practices, tools, and approaches.
  • Leads communication, awareness and training efforts for faculty, staff and student population through the creation of informational bulletins, best practices.
  • Partners with security engineers to ensure exposures and risks are avoided and/or addressed.
  • Acts as point of escalation for response to information security incidents; may contribute on information security emergency response teams and/or on other information security projects.
  • May serve as project leader; often provides guidance to junior peers.

Qualifications

This position is posted at the Advanced CareerLevel but may be filled at the Career Career Level depending on the candidate’s qualifications. Although they will be similar, the duties and responsibilities may differ if filled at the lower rank. Please see the qualifications for each level listed below

Advanced Level Requirements

Combinations of related education and experience may be considered. Education beyond the minimum required may be substituted for work experience. Work experience beyond the minimum required may be substituted for education.

EDUCATION

Required

  • Bachelor’s degree (preferably in Computer Science or related field)

WORK EXPERIENCE

Required

  • 5 years of information security or related experience

Preferred

  • Demonstrated history of success leading short to medium term projects and a strong mental model for understanding cybersecurity decision making processes
  • History of curiosity and active engagement with systems of all types across technology, organizational management, and planning

SKILLS

Required

  • Proficient communication skills
  • Maintains a high degree of professionalism
  • Demonstrates time management and priority setting skills
  • Demonstrates a high commitment to quality
  • Possesses flexibility to work in a fast paced, dynamic environment
  • Seeks to acquire knowledge in area of specialty
  • Highly thorough and dependable
  • Demonstrates a high level of accuracy, even under pressure
  • Possesses a high degree of initiative
  • Ability to influence internal and/or external constituents
  • Creativity in identifying complex problems and finding solutions quickly and accurately
  • Attention to detail in communicating technical issues and implementing solutions
  • Mental discipline in conducting lengthy investigations
  • Ability to change priorities as incidents and threats develop or evolve
  • Demonstrates in-depth knowledge of Microsoft Windows or Unix-like operating systems

Preferred

  • Curiosity
  • Determination
  • Independent thinking
  • Ability to navigate unstructured environments, deciding what needs to be done to accomplish a task, and plotting a course from here to there click apply for full job detailsOmniSOC Security Analyst

To apply for this job please visit www.jobg8.com.

Previous articleSr. Project Manager
Next articleLarge Systems Specialist (Systems Administrator)