Security Analyst

Who We Are:

System Administration, which also houses the Office of the President, is located in the uptown neighborhood of Denver with a few smaller offices located on the campuses.  Many of our departments support the educational and research missions of the four University of Colorado campuses, but System Administration is not considered a campus. We provide diverse opportunities for professional development, innovation, and collaboration with talented staff and faculty.  Learn more about CU System Administration . 

The University of Colorado System Administration office, located in Denver, brings together administrative departments and service centers that provide guidance and services to all of CU's campuses. University Information Services (UIS) housed within System Administration provides Information Technology services, data sources, and integrations to campus partners. The Office of Information Security (OIS) supports the activities of System Administration through a collaborative security process.

Position Summary:

The Security Analyst is an early professional level security operations role within the OIS team. This position will provide the opportunity to use and grow skills across the security operations domain. This includes managing alerts from network monitoring and Security Information and Event Management (SIEM), assisting with incident response, and proactive activities such as vulnerability management. This position works closely with other team members within OIS and UIS. This position is available as full time or part time, with a minimum of 75%-time work schedule, and may be located in the Denver office or fully remote.

This position reports to the Information Security Officer and is exempt from the State of Colorado Classified Staff System.

Where You Will Work:

Remote – this role is eligible to work remotely within the United States.

Diversity and Equity:

The University of Colorado System Administration Office is committed to recruiting and supporting a diverse workforce. The university strives to promote a culture of inclusiveness, respect, communication and understanding. We encourage applications from women, ethnic minorities, persons with disabilities, persons within the LGBTQ+ community and all veterans.

Duties & Responsibilities:

Monitoring

•       Reviews alerts from information security monitoring systems
• Reviews and evaluates incident tickets assigned to the security team
• Provides preliminary evaluation and designates items for appropriate action (e.g. resolution, investigation, follow-up)
• Recognizes patterns related to information security alerts and issues and communicates them to other team members

Incident Response

•       Investigates alerts of concern and engages other individuals and information sources as needed
• Communicates with system or account owners to collect more information related to incident requests and to recommend next steps related to resolution
• Raises up sophisticated issues outside of established scope to senior team members
• Aids in forensic collections and documentation related to information security incident requests
• Document incidents according to Office of Information Security standards

Process and Technology Improvements

•       Finds opportunities to improve monitoring, alerting, and response activities
• Proposes and tests improvements to activities, processes, and systems

Professional Development

•       Maintains awareness and knowledge of information security threats, vulnerabilities, technologies, and business processes
• Continuously learns new professional and technical skills and abilities through formal and informal learning opportunities

Applications Used:

•       Bro/Zeek/Suricata intrusion detection system
• Exabeam SIEM
• Qualys Vulnerability Management
• Microsoft Defender for Endpoints 

What We Offer:

Salary: The anticipated hiring range has been established at $78,000- $83,000.

CU System Administration takes into consideration a combination of the selected candidate’s education, training and experience as it relates to the position, as well as the position’s scope and complexity, internal pay equity and external market value when determining a salary level for potential new employees.

Benefits: With our unparalleled range of benefits, including top-notch healthcare, comprehensive wellness programs, enriching professional development, and a dynamic work-life balance, we ensure your holistic growth and happiness.

• No-cost or low-cost medical & dental plan options, some inclusive of IVF assistance.
• Disability, Life, Vision Insurance options.
• Multiple retirement planning options including a mandatory 401(a) plan where CU contributes 10% of your gross pay, a 401k or 403b plan and a 457 deferred compensation plan.
• Pre-tax savings plans, such as Health care and Dependent care flexible spending accounts.
• Embrace a healthy work-life balance with ample sick and vacation leave, along with at least 12 paid holidays. This includes a dedicated week off for winter break.
• 4 weeks of parental leave to adjust to the joys of parenthood.
• A tuition benefit program for you and/or your dependents.
• Free RTD EcoPass and Free Onsite Parking at our 1800 Grant Street Office.
• Many additional perks & programs with the CU Advantage .

Additional taxable fringe benefits may be available. 

For more information on benefits programs, please review our Comprehensive Benefits Guide . 

Access our Total Compensation Calculator to see what your total rewards could be at CU.  (This position is a University Staff position)

Qualifications:

Minimum Qualifications:

Please ensure your resume includes any and all relevant experience to be accurately assessed against these qualifications.  You must meet all minimum requirements listed at the time of application to be considered for this role.

•       Bachelor’s degree from an accredited institution of higher education, or equivalent professional experience (professional experience may be substituted for the educational requirement on a year-for-year basis)
• One (1) year of relevant experience

Preferred Qualifications:

• Two (2) years’ relevant experience
• Experience in the following:
• Information security incident response duties
• Security Information and Event Management (SIEM) systems
• Network security monitoring (IDS/IPS/Netflow)
• Scripting and automation
• Public cloud computing environments (e.g. Amazon AWS, Microsoft Azure)
• Specific training and/or certification in incident response, digital forensics, network security monitoring, and related topics (e.g. degree programs, SANS Institute training, Global Information Assurance Certification [GIAC])

Knowledge, Skills, and Abilities:

•       Knowledge of cybersecurity and privacy principles and standard methodologies
• Knowledge of incident response and handling methodologies
• Knowledge of computer networking fundamentals
• Knowledge of common computer operating systems
• Analytical and problem-solving skills to examine and summarize data and trends in order to resolve issues and produce results
• Evaluative skills to assess information for reliability, validity, and relevance
• Critical thinking skills to identify problems, questions, and assumptions; establish significance; and understand logical connections between ideas
• Oral, written, and listening communication skills to accurately interpret what others are saying and convey messages, information, concepts, and details accurately and clearly
• Ability to prepare reports and briefings
• Ability to identify security risks that may impact the organization
• Ability to communicate sophisticated information in a well-organized manner through verbal, written or visual means
• Ability to efficiently collaborate with team members in-person and remotely

How to Apply:

For full consideration, please attach the following as separate documents to your application:

Please ensure you check the “Job Specific Attachments” box next to each document on the “Required Documents” page of the application for the appropriate documents to be attached. 

When to Apply:

For full consideration completed applications must be submitted by May 21, 2024.  Reference checking is a standard step in our hiring process. You may be asked to provide contact information, including email addresses, for up to five references as part of the search process for this position. *Please note: All application materials must be submitted through CU Careers; emailed materials will not be considered.*

Sponsorship Statement:

We are unable to sponsor applicants for work visas for this position.

Background Check Statement:

The University of Colorado is committed to providing a safe and productive learning and living community. To achieve that goal, we conduct background investigations for all final applicants being considered for employment. Background investigations include a criminal history record check, and when appropriate, a financial history, motor vehicle history and/or fingerprinting background check. The Immigration Reform and Control Act requires that a verification of employment eligibility be documented for all new employees by the end of the third day of work. The University of Colorado is committed to diversity and equality in education and employment.

ADA Statement:

We are committed to an inclusive and barrier-free search process. We provide accommodations for applicants requesting accommodation through the search process such as alternative formats of this posting.  Individuals with disabilities in need of accommodations throughout the search process should contact the ADA Coordinator at: [email protected] .