Skip to Main Content

IT Security Analyst Senior

Position Information

Position Details

Position Number 33494
Class Title IT Security Analyst Senior
Job Description

UCF Information Security Office is seeking an experienced, motivated security incident response analyst to join the UCF Security Incident Response Team (SIRT.) This position will work within UCF SIRT and be responsible for providing security analysis and technical support to monitor, identify, mitigate and report on security incidents, with concentration on university’s research program and their compliance requirements.

The successful candidate must be well-versed in security incident response policies, standards, processes, threat analysis, and threat prevention programs, and cyber security tools, such as security information management system (SIEM.) They will serve as an expert and be responsible for collaborating with system owners, implementing log data collection strategies, identifying security risks and exposures, determining the causes of security violations, and suggest procedures to mitigate future security incidents. Ensuring that any issues that may adversely impact the confidentiality, integrity or availability of enterprise and research resources are identified, properly alerted and promptly resolved to meet policy and regulatory requirements.

Specific duties include:

Provide support for internal analysis teams and be a contributing member of the Security Incident Response Team (SIRT.)

Design and implement system log data collection strategies for proper collection and correlation of events.

Collaborates with system owners to support system log data captures and perform data analytics to meet university standards, policies, and regulatory requirements, such as Defense Federal Acquisition Regulations (DFARS), NIST, FIPS, PCI DSS, HIPAA/HITECH, FERPA, GLBA, etc.

Develop security monitoring and security incident response capabilities compliant with university standards, policies, and regulatory requirements, such as Defense Federal Acquisition Regulations (DFARS), NIST, FIPS, PCI DSS, HIPAA/HITECH, FERPA, GLBA, etc.

Evaluate and implement integration of system log data sources into a security information and event management (SIEM) system.

Establish a security incident handling capability for information systems that includes adequate preparation, detection, analysis, containment, recovery, and user response activities.

Document, update and maintain SIRT policies and procedures.

Publish security incident reports and other SIRT technical documents based on analysis of ongoing security threats, security incidents and investigations.

Perform monitoring activities (e.g., SIEM), track, document, and report security incidents to appropriate officials and/or authorities both internal and external to the organization.

Assess the severity of security threats (e.g., security incidents, vulnerabilities, malicious code) and coordinate notifications to users in a timely manner as required by federal, state or contractual reporting requirements.

Participate, and where appropriate, respond to audits and inquiries from internal, state, or federal agencies, such as University Audit, State of FL Auditor General, the U.S. Department of Defense, Defense Security Service (DSS), etc.

Support and conduct computer investigations and forensic analysis for host and network based security incidents.

Investigate new security investigation tools for a variety of computing environments, platforms and applications.

Other duties as assigned to carry out the mission of the University, Information Security Office, and SIRT.

Minimum Qualifications

Bachelor’s degree and two years of information technology experience.

Additional Minimum Requirements
Preferences

Prefer candidates with two (2) or more years of experience in security incident response field.

Prefer candidates with computer investigation or computer forensics experience.

Prefer any of the following certifications: CISSP, GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Incident Handler (GCIH)

Special Conditions

This is a reposted position. Previous applicants are still being considered and do not need to reapply.

The University of Central Florida is proud to be a smoke-free campus and an E-Verify employer.

Equal Employment Opportunity Employer

As an equal opportunity/affirmative action employer, UCF encourages all qualified applicants to apply, including women, veterans, individuals with disabilities, and members of traditionally underrepresented populations. UCF's Equal Opportunity Statement can be viewed at: http://eeo.ucf.edu/documents/PresidentsStatement.pdf. As a Florida public university, UCF makes all application materials and selection procedures available to the public upon request.

FTE 1.0-Full-Time
Requisition Number 402778
Job Open Date 09/01/2017
Job Close Date
Open until filled Yes
Division Academic Affairs
College/Area Information Technologies and Resources (ITR)
Department ITR-UCF IT
Annual Salary $68,421 to Negotiable
Type of Appointment Regular
If Visiting A&P, please specify timeframe
Job Category A&P
Work Schedule

Monday-Friday, 8 AM to 5 PM

Work Location Orlando (Main)
Quick Link http://www.jobswithucf.com/postings/50816

Supplemental Questions

Required fields are indicated with an asterisk (*).

  1. * Do you have a bachelor's degree and two years of information technology experience?
    • Yes
    • No

Optional & Required Documents

Required Documents
Optional Documents
  1. Curriculum Vitae/Resume
  2. Cover Letter
  3. Other Doc 1
  4. Other Doc 2
  5. Other Doc 3
  6. Other Doc 4