Information Security Operations Analyst
University of Pennsylvania
Philadelphia, PA
Job posting number: #7274117
Posted: August 20, 2024
Application Deadline: Open Until Filled
Job Description
Job Description SummaryInformation Systems & Computing (ISC) is the University of Pennsylvania’s central IT organization, providing the core network, data, voice, video, and enterprise application infrastructure and services upon which Penn’s numerous Schools and Centers build their unique tools and capabilities.
ISC’s 300-plus employees work closely with the University’s IT organizations in order to create, deliver and support products and services that help Schools and Centers operate efficiently and effectively. We strive to be easy to work with, and to serve as a trusted advisor to Penn’s IT community, faculty, staff and students in support of an environment of discovery and progress.
ISC’s focus on customer service and the high-quality, cost-effective, reliable implementation of modern IT solutions advances the mission of the University, as well as that of each individual School and Center. At Penn, technological freedom and departmental autonomy represent dearly held core values. ISC supports those ideas by providing foundational services and cogent counsel, empowering individuals and departments to employ their distinct strengths in support of their goals.
Learn more about us by visiting https://www.isc.upenn.edu/about
or www.linkedin.com/company/penn-information-systems-computing/ .
The position is a critical Security Operations Center (SOC) member within the Office of Information Security (OIS). OIS is an integral part of the ISC organization and enables ISC’s commitment to Transform, Enable, and Secure IT across the University of Pennsylvania. This SOC Tier One Operations Analyst position performs incident response and handling, including investigation of security incidents following established procedures and maintaining incident documentation. Provides direct support to the business and IT staff for systems security related issues.
Job Description
Job Responsibilities
Review alerts/logs, conduct investigations and threat hunting, and respond to identified incidents in the Penn SecureIT environment.
Be on call to receive, triage, and respond to occasional off-hour security alerts from Penn systems and security service providers. On call requirements are for 24x7 coverage for approximately half the days of the year, including holidays and weekends.
Work directly with end users and their IT support to identify and respond to suspected/actual account compromises
Collaborate with SOC and ISC/Center IT departments to resolve security incidents and improve security posture/address lessons learned from incidents.
Perform other duties and responsibilities as assigned
Qualifications
Required:
Bachelor of Science and 1 to 2 years of experience or equivalent combination of education and experience.
Familiarity with information security tools and IT environments.
Experience with specific security tools, including CrowdStrike, Suricata, Tenable/Nessus vulnerability scanner, Splunk/CrowdStrike, Logscale, or similar log aggregation tools.
Flexibility and ability to accommodate non-standard IT environments and unusual constraints on security practices.
Demonstrated ability to work collaboratively as part of a team with good oral, listening, and written communication skills.
Preferred:
Experience and/or certification in information security incident response.
Experience in higher education, not-for-profit, or similar IT environments.