Job Description

Cybersecurity Analyst / Senior Cybersecurity Analyst

Technology Services – University of Illinois at Urbana-Champaign

The Privacy & Cybersecurity team at the University of Illinois has outstanding career opportunities for Cybersecurity Analysts and Senior Cybersecurity Analysts. The University of Illinois is a world leader in research, teaching, and public engagement. We serve the state, the nation, and the world by creating knowledge, preparing students for lives of impact, and addressing critical societal needs through the transfer and application of knowledge.

We are interested in candidates that can help drive forward the university’s mission by working along with a team of highly motivated cybersecurity professionals tasked with responding to cybersecurity events. This position will work with the team in their responsibilities of incident handling, vulnerability management, and threat hunting as well as supporting “non-cybersecurity” related investigations (e-discovery, data preservation, digital evidence handling). The ideal candidate understands the 24×7 nature of cybersecurity response and will work to maintain a positive work environment ensuring staff are supported and follow escalation procedures when necessary. This should include caring deeply about supporting an inclusive work environment that promotes team and individual growth. The candidate will be encouraged to pursue their professional development through specialized training and grow into subject matter experts in various areas of cybersecurity. They will have opportunities to work with a diverse and large team of campus IT professionals to build partnerships and shared understandings.

This position offers remote work eligibility with the understanding that some cybersecurity events may require on-campus response. Consider joining the University of Illinois Privacy & Cybersecurity team if you are interested in tackling some of the most exciting challenges in the field while working in a supportive, remote eligible, team-based organization.

Why Work at Technology Services?
Highlights of Employee Benefits

Job Summary
Analyze, respond, and manage cybersecurity attacks, compromises, vulnerabilities, and breaches as related to the University. Proactively develop defensive security measures and capabilities. Handle information security incidents and other adverse information security events. Work collaboratively in technologies of cybersecurity applying to incident response, digital forensics, vulnerability management, and other technologies as applicable. Act in a supporting role to investigations surrounding University operations, assets, and business/organizational processes.

Duties & Responsibilities
Play an active role in CSOC initiatives to respond to cybersecurity incidents and related investigations

• Use forensics, incident response, and process expertise to respond to compromised accounts and investigate system, service, or network attacks and breaches. Collaborate with other security staff for security incident remediation and advanced security incident investigations.
• Respond to security alerts and incidents and work to reduce their likelihood.
• Investigate intrusion incidents, conduct forensic investigations, and initiate incident response.
• Work with local, State, and Federal law enforcement as well as with University staff on personnel and other investigations involving regulated private information.
• Conduct preservation of electronic data, e-discovery, chain-of-custody, evidence handling and the processes surrounding those actions in support of University operations.
• Produce responsive digital artifacts and evidence for investigations.
• Track, assist in developing risk-based mitigation strategies for vulnerabilities and report existing and emerging vulnerabilities.
• Observe and evolve the processes surrounding investigations and data production/disclosure in support of University operations.
• Correspond with all responsible parties tasked with conducting official investigations on expectations, delivery dates, and evolutions in specifics surrounding any given official investigation. Responsible parties could include Legal counsel, Ethics office, HR, FOIA, UIPD or other Law Enforcement Agency.
• Consult with customers and internal staff to implement cybersecurity solutions and best practices.
• Deliver technical reports and formal documents for security issues and investigation outcomes, and present to both technical and non-technical audiences.
• Work both regular business hours and in a rotation of non-traditional hours to respond to on-call requests in a 24 x 7 service environment.
• Other responsibilities as assigned.
• Senior level only: Research, analyze, manage, track and report existing and emerging vulnerabilities. Work with units to develop risk-based mitigation strategies for vulnerabilities. Provide leadership with comprehensive analysis to include mitigation recommendations and the resources needed to address them.

Represent the IT Security office in collaborative and strategic initiatives, applying expertise and functioning as an integral, complementary part of the cybersecurity team

• Participate in and facilitate internal and external meetings. Drive discussions as needed to represent the needs of the assigned domain(s). Present findings/reports to technical and non-technical audiences.
• Provide excellent customer service on behalf of the IT Security office.
• Advocate for Technology Services or other clients and partners in service planning and deployment across the organization.
• Provide recommendations for continual process improvement across all Security workflows.
• Draft and review documentation such as analyses of technical, administrative, or procedural security issues; procedural documentation/playbooks; and team documentation.

Develop and maintain personal and professional excellence through university-provided and external training/seminars/courses; staying abreast of industry trends, methods, and published literature; and participating in manager-approved innovation programs and individual development initiatives.

Senior level only: Act as a subject-matter expert in operational cybersecurity domain(s)

• Cultivate subject-matter expertise and skills in less experienced staff, in coordination with management.
• Consult with customers and internal staff to recommend solutions related to assigned domain(s).
• Provide recommendations on emerging issues and the resources needed to address them.
• Develop training and other educational material in conjunction with support & training staff.

Minimum Qualifications – Cybersecurity Analyst 
Two years of progressively more responsible work experience in an Information Technology (IT) related profession. College course work which included Information
Technology (IT), IT Management, or a closely related discipline may be substituted as follows:

• 60 semester hours or Associate’s Degree equals one year
• 90-120 semester hours or Bachelor’s Degree equals two years.

Minimum Qualifications – Senior Cybersecurity Analyst 
1) Four years of progressively more responsible work experience in an Information Technology (IT) related profession. College course work which included Information Technology (IT), IT Management, or a closely related discipline may be substituted as follows:

• 60 semester hours or Associate’s Degree equals one year
• 90-120 semester hours or Bachelor’s Degree equals two years.

2) Demonstrated experience in cybersecurity operations (investigations, incident response, forensics, e-discovery, or related discipline).

Preferred Qualifications
1) Bachelor’s degree in a related field
2) Experience performing operational cybersecurity duties in a professional environment
3) Experience implementing cybersecurity projects
4) Demonstrated experience in one or more of the following domains: Secure IT Operations, Data Security, Incident Response and Analysis, Digital Forensics, Network Security, Systems and Applications Security, or Vulnerability Management
5) Customer engagement / customer service experience
6) Experience with computer protection applications, such as anti-malware, anti-virus, and system firewalls
7) Experience working in a Security Information Event Management (SIEM) product
8) Experience with security event triage
9) GSEC, GCIH, GCIA, GCFA, CISSP, CEA, MCA, CCSA, CISA or similar certifications highly desired
10) Senior Level Only: Experience in an academic/higher education campus IT environment
11) Senior Level Only: Team leadership experience

Knowledge, Skills & Abilities
1) Senior Level Only: Excellent attention to detail.
2) Problem-solving ability.
3) Demonstrated ability in effective communication and collaborating in a high performance team environment, including oral, written, and active listening.
4) Demonstrated commitment to customer service and customer satisfaction principles.
5) Ability to collaborate positively and effectively with diverse workgroups.

Appointment Information
This is a 100% full-time Civil Service 5031 – Information Technology Technical Associate position, appointed on a 12-month basis. The expected start date is as soon as possible after the closing date. Salary is commensurate with experience. Salary range starts at $65,000 for the Cybersecurity Analyst, and $75,000 for the Senior Cybersecurity Analyst.

Immigration sponsorship is not available for this position.

For more information on Civil Service classifications, please visit the SUCSS web site at https://www.sucss.illinois.gov/pages/classspec/default.aspx.

How to Apply

Job Categories: Equal Opportunities. Job Types: Full-Time. Salaries: 60,000 - 80,000.

121 total views, 0 today

Apply for this Job