The Operational Security Analyst reports to the Chief Information Security Officer (CISO) and performs the daily operational security services of the IT Security Office. These services involve the management and monitoring of security incident detection technologies, centralized management of event logs produced from various technologies, and coordinating a response with other IT departments when actionable situations or incidents are detected.
The Operational Security Analyst will:
Perform daily operational tasks as well as daily monitoring of a Log and Event Management System and Security Incident Detection Systems (e.g. Varonis, Avanan, ADAudit, or similarly functioning systems) and other types of threat intelligence.
Make daily decisions about which events or alerts warrant further investigation or response and what that response should be. These decisions may have institution-wide impacts.
Coordinate remediation responses across the enterprise for vulnerabilities identified through risk/vulnerability scanning, threat intelligence, and log and event analysis.
Partner with the CISO to provide guidance to teams where needed on security configurations for networked information technologies.
Design and develop methodologies and procedures to monitor, detect and respond to various IT security threats and exposures.
Ongoing evaluation of Log Management and Security Incident Detection technologies.
Serve as a backup representative to the CISO on the UNC Information Security Council, the WCU Data Security and Stewardship Committee and the WCU Information Security Incident Response Team.
Collaborate and consult with other IT units on IT security concerns.
Work with all university faculty/staff across campus as information security issues or security needs arise.
Work on projects, research activities, and other duties as assigned.
Expected to stay up-to-date on the latest intelligence, including hacker methodologies, in order to anticipate security breaches, with the goal of complying with internal/external information security policies and standards.
Bachelor's degree in Computer Science, Information Systems, or related technical disciplines, and 2-4 years professional experience in the field.
Critical thinking and analytical skills in identifying and resolving problems or finding acceptable solutions to problems.
Excellent oral, written, and interpersonal communications skills, including the ability to explain technical concepts in non-technical terms.
Strong attention to detail.
Broad knowledge of networking technologies and security practices.
Strong working knowledge of data center and system administration security practices.
Strong working knowledge of endpoint device security for various operating systems.
Excellent customer service and support-oriented approaches.
Confident in managing multiple simultaneous initiatives with minimal supervision.
Ability to exhibit maturity and composure under pressure as security incidents arise.
Bachelor's degree and 5 years of experience.
Professional IT or security certifications are preferred (e.g. Security+).
Special Instructions to Applicants:
Review of applications will begin immediately and will continue until a selected candidate has been selected.
To be considered, you must apply online. Attach a cover letter, current resume, and a list of 3 references (include complete contact information).
For questions or additional information, please contact Joel McKenzie (IT Security Specialist) at email@example.com or 828-227-2667.
As the westernmost institution in the University of North Carolina system, WCU provides comprehensive educational opportunities to residents in the state’s western region and attracts students from around the globe to explore the region’s vast natural diversity. Founded in 1889 as a teaching college, Western Carolina now provides an education to more than 10,000 students in undergraduate and graduate programs.