Cyber Security Analyst, Incident Response - University Information Services -Georgetown University

Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world.

Requirements

Cyber Security Analyst, Incident Response -University Information Services - Georgetown University

Job Overview

The Cyber Security Analyst for Incident Response - in an advanced and highly trusted role supporting the enterprise cybersecurity program - serves the cybersecurity operations center to help inform and defend the institution, its tangible and intangible assets, and its people and reputation.

Responsible for activities relating to monitoring and responding to security events, they receive, research, triage and document all security events and alerts as they are received; and They support multiple security-related platforms and technologies, interfacing with others within the organization, as well as other internal business units and external customers/partners.

Events will be generated from endpoints, networks, security information and event management (SIEM) systems, threat intelligence platforms, technology managers, the MSSP, third-parties and other sources. The Cyber Security Analyst also receives information sharing and analysis center (ISAC) information and is responsible for hunting for potential compromise across the infrastructure.

The Cybersecurity Analyst for Incident Response displays an in-depth understanding of new trends and technologies related to IT security and compliance, and contributes to the company IT security strategy and roadmap.

Work Interactions

Reporting directly to the Director of the Cybersecurity Operations Center, the Cyber Security Analyst for Incident Response is an essential member of the University cybersecurity team. They coordinate as directed with UIS divisions and stakeholders on matters related to cyber threats, risks, remediations, and preventive measures.

As well, they are involved in day-to-day cybersecurity operations; and coordinate work with various University technical staff, including cyber risk analysts, project managers and system owners.

Candidate Qualifications

• Capable of working with diverse teams and promoting an enterprise-wide positive security culture
• Self-starter requiring minimal supervision
• Outstanding written and verbal, business and cybersecurity communication skills
• Highly organized and efficient, with strong project management, multitasking and organizational skills
• Ability to preserve credibility with the team and external constituents through sustained industry knowledge
• Ability to motivate teammates to achieve excellence and willingly shares knowledge
• Ability to maintain a high level of integrity, trustworthiness and confidence, with the highest level of professionalism
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively

Position Requirements

• Ability to analyze incident logs, assess malware, and understand vulnerabilities and exploits, along with strong operating systems knowledge
• Demonstrated understanding and comprehension of a wide range of network and host cybersecurity solutions
• Applicable knowledge of adversary tactics, techniques and procedures (TTPs), MITRE ATT&ACK framework, CVSS, open source intelligence (OSINT) and deception techniques
• Demonstrated ability to investigate, handle and track incidents
• Proficiency with SIEM, intrusion detection and prevention systems (IDS/IPS), threat intelligence platforms and security orchestration, automation and response (SOAR) and solutions to centralize and manage incident and remediation workflow

Experience

• 3 to 5 years of information security monitoring and response or related experience - preference for working in a 24x7 operational environment, with geographic disparity
• Experience driving measurable improvement in monitoring and response capabilities at scale
• Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), DLP, and other network and system monitoring tools
• Knowledge of a variety of Internet protocols
• Working knowledge/experience with network systems, security principles, applications and risk and compliance initiatives, such as Gramm-Leach Bliley Act (GLBA), Payment Card Industry (PCI), Health Information Portability and Accountability Ace (HIPAA), Federal Education Rights and Privacy Act (FERPA), and the General Data Protection Regulation (GDPR)

Education and Certifications

• Bachelor's degree in information assurance, computer science, engineering or related technical field or equivalent
• Preference for SANS GCIH or GCIA; CISSP

Work Mode: Telework. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University. Such review may necessitate a change to a position's mode of work designation. Complete details about Georgetown University's mode of work designations for staff positions can be found on the Department of Human Resources Mode of Work Designation.

Current Georgetown Employees:

If you currently work at Georgetown University, please exit this website and login to GMS (gms.georgetown.edu) using your Net ID and password. Then select the Career worklet on your GMS Home dashboard to view Jobs at Georgetown.

Submission Guidelines:

Please note that in order to be considered an applicant for any position at Georgetown University you must submit a cover letter and resume for each position of interest for which you believe you are qualified. These documents are not kept on file for future positions.

Need Assistance:

If you are a qualified individual with a disability and need a reasonable accommodation for any part of the application and hiring process, please click here for more information, or contact the Office of Institutional Diversity, Equity, and Affirmative Action (IDEAA) at 202-687-4798 or ideaa@georgetown.edu.

Need some assistance with the application process? Please call 202-687-2500. For more information about the suite of benefits, professional development and community involvement opportunities that make up Georgetown's commitment to its employees, please visit the Georgetown Works website.

EEO Statement:

Georgetown University is an Equal Opportunity/Affirmative Action Employer fully dedicated to achieving a diverse faculty and staff. All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, national origin, age, sex (including pregnancy, gender identity and expression, and sexual orientation), disability status, protected veteran status, or any other characteristic protected by law.

Benefits:

Georgetown University offers a comprehensive and competitive benefit package that includes medical, dental, vision, disability and life insurance, retirement savings, tuition assistance, work-life balance benefits, employee discounts and an array of voluntary insurance options. You can learn more about benefits and eligibility on the Department of Human Resources website.


To apply, visit https://georgetown.wd1.myworkdayjobs.com/en-US/Georgetown_Admin_Careers/job/2115-Wisconsin-Ave-3rd-Floor/Cyber-Security-Analyst--Incident-Response---University-Information-Services----Georgetown-University_JR14849







Copyright 2022 Jobelephant.com Inc. All rights reserved.

Posted by the FREE value-added recruitment advertising agency jeid-3e80fc10a9ef104699ca729d7cfb15d5

Return to Search Results