Job title: Enterprise Information Security Analyst, Information Technology, Dell Medical School
Company: University of Texas at Austin
Job description: Job Posting Title: Enterprise Information Security Analyst, Information Technology, Dell Medical School
Hiring Department: Dell Medical School
Position Open To: All Applicants
Weekly Scheduled Hours: 40
FLSA Status: Exempt
Earliest Start Date: Immediately
Position Duration: Expected to Continue
Location: UT MAIN CAMPUS
The mission of the Dell Medical School (DMS) is to revolutionize how people get and stay healthy. The DevSecOps team within DMS IT supports the entire Dell Medical School and the community we serve to create useful, secure, user-friendly applications covering work being done in clinical, research, graduate and undergraduate medical educational, and community outreach domains.
Under the direction of the Director of Enterprise Security and Technology within the Office of the OCIO, the Enterprise Information Security Analyst will work closely with the Enterprise IT Security Architect to perform IT security analysis and assessments in accordance with established procedures and protocols. The position will ensure the demonstrable Confidentiality, Integrity and Availability (CIA) of the University of Austin Dell Medical School’s information assets for authorized internal and external users by reviewing, validating, classifying, and responding to security events and cyber-attacks. The Enterprise Information Security Analyst will assist with meeting the requirements of all four domains: Security Oversight, IT Risk Assessment, Security Engineering, and Security Operations and focus in depth upon the domain requirements of Security Operations and IT Risk Assessment.
Stay abreast of external regulations, data security/privacy standards, and relevant data/breach notification and laws applicable to healthcare and higher education assess potential risks; translate appropriate information security and data privacy requirements into coherent policy and data management processes.
Monitor and analyze cybersecurity alerts and audit logs to detect and respond to suspicious/malicious activities. Investigate, document and assess security breaches and other cybersecurity incidents. Ability to anticipate cyber attacks.
Work with security team(s) to perform tests and uncover network vulnerabilities, fix detected vulnerabilities to maintain a high-security standard. Identify ongoing threats to remote computers and protect against new exploits. Protect expanded attack surfaces due to increased telework.
Conduct cybersecurity audits, assessments and support ongoing audit requirements for all systems. Particiate in review of all 3rd party vendor services/contracts (applications, hosting, systems, etc.) that involve the collection, processing, transmission, or storage of all data types defined by the University’s Data Classification standards; develop and implement an ongoing supporting documentation.
Install, upgrade, maintain and monitor information security-related systems.
Participate in business continuity and disaster recovery planning.
Create and mantain a complex variety of security and risk documentation (eg. Policies, process diagrams, risk registers, etc.) that may be shared with various audiences.
Assist in cultivating a risk aware culture through outreach and education.
Other duties as assigned.
Bachelor’s degree plus 5 years of progressive experience working in information technology, security, or risk management. Comparable success and work experience may be considered in lieu of degree requirement. CompTIA Security + or other industry related certifications. Must possess a high degree of integrity relative to computer security and the confidentiality of information. Demonstrated ability to analyze IT security threats, understand risk, articulate operational impact and work as part of a team dedicated to achieving and maintaining compliance to all applicable regulations. Professional experience working with the following technologies: Various operating systems such as Windows, Linux, macOS, various security tools such as, SIEMs, Data Loss and Prevention (DLP), Vulnerability Assessment tools such as McAfee ATP, MS Defender ATP and/or CrowdStrike. Working knowledge of network protocols and firewall concepts. Demonstrated ability to perform IT security risk assessments, develop and resolve complex security related issues, recommend, develop and implement compensating controls to remediate or mitigate known risk and vulnerabilities to an acceptable level. Must have functional understanding of regulatory and compliance mandates, including but not limited to HIPAA, HITECH, PCI and FERPA. Exceptional verbal and written communications and consultative customer service skills. Ability to establish collaborative working relationships at all contact levels across the University. Demonstrated passion for problem solving; proficient project and portfolio management experience with the ability to work autonomously in a fast-paced environment with multiple priorities and deadlines. General knowledge of IT governance and operations. The Dell Medical School is especially interested in qualified candidates who can contribute to diversity and excellence within the learning health system. At the Dell Medical School, we strive to create a vital, inclusive health ecosystem. To ensure alignment, we follow these fundamental values: . Relevant education and experience may be substituted as appropriate.
Healthcare experience. Experience in network scanning or cloud security. Knowledge of risk management frameworks (RMF). Knowledge of Incident Response(IR). Certified Ethical Hacker (CEH). CompTIA Security + Certification. Knowledge of federal, state, and university regulations and standards (e.g. NIST 800-171, PCI, FERPA, and other regulatory audits).
$71,004 + depending on qualifications
May work around standard office conditions. Repetitive use of a keyboard at a workstation. Use of manual dexterity.
3 work references with their contact information; at least one reference should be from a supervisor
Letter of interest
Important for applicants who are NOT current university employees or contingent workers: You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure that ALL Required Materials have been uploaded. Once your job application has been submitted, you cannot make changes.
Important for Current university employees and contingent workers: As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log-in to Workday, navigate to your Worker Profile, click the Career link in the left hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled in to your application. The application is one page and you will be prompted to upload your resume. In addition, you must respond to the application questions presented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.
Employment Eligibility: Regular staff who have been employed in their current position for the last six continuous months are eligible for openings being recruited for through University-Wide or Open Recruiting, to include both promotional opportunities and lateral transfers. Staff who are promotion/transfer eligible may apply for positions without supervisor approval.
Retirement Plan Eligibility: The retirement plan for this position is Teacher Retirement System of Texas (TRS), subject to the position being at least 20 hours per week and at least 135 days in length.
A criminal history background check will be required for finalist(s) under consideration for this position.
Equal Opportunity Employer:
The University of Texas at Austin, as an , complies with all applicable federal and state laws regarding nondiscrimination and affirmative action. The University is committed to a policy of equal opportunity for all persons and does not discriminate on the basis of race, color, national origin, age, marital status, sex, sexual orientation, gender identity, gender expression, disability, religion, or veteran status in employment, educational programs and activities, and admissions.
The University of Texas at Austin will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.
Employment Eligibility Verification:
If hired, you will be required to complete the federal Employment Eligibility Verification I-9 form. You will be required to present acceptable and original to prove your identity and authorization to work in the United States. Documents need to be presented no later than the third day of employment. Failure to do so will result in loss of employment at the university.
The University of Texas at Austin use E-Verify to check the work authorization of all new hires effective May 2015. The university’s company ID number for purposes of E-Verify is 854197. For more information about E-Verify, please see the following:
[PDF] [PDF] [PDF] [PDF]
Employees may be required to report violations of law under Title IX and the Jeanne Clery Disclosure of Campus Security Policy and Crime Statistics Act (Clery Act). If this position is identified a Campus Security Authority (Clery Act), you will be notified and provided resources for reporting. Responsible employees under Title IX are defined and outlined in .
The Clery Act requires all prospective employees be notified of the availability of the Annual Security and Fire Safety report. You may access the or obtain a copy at University Compliance Services, 1616 Guadalupe, Suite UTA 2.206, Austin, TX 78701.
Expected salary: $71004 per year
Location: Austin, TX
Job date: Sun, 12 Jun 2022 01:20:05 GMT
Apply for the job now!