It security analyst

Department:

Location: Belknap Campus

Time Type:

Full time

Worker Type:

Regular

Job Req ID: R106742

Minimum Requirements:

Bachelor's degree in Computer Science or a related field and four (4) years of relevant experience or an equivalent combination of education and experience. (7 Salaried)

Position Description:

The University of Louisville Information Technology Department is seeking an IT Security Analyst III. The position is responsible for the confidentiality, integrity, and availability of university data.

The candidate will be responsible for managing, monitoring, identifying and mitigating security incidents within the university environment. Will plan and implement security measures to protect university assets. Identify and implement new security architecture and solutions. Responsible for security services such as antimalware protection, encryption, firewall, log management, vulnerability management, intrusion detection, data security and forensics. Participate in the creation, maintenance, and enforcement of university security policies, guidelines, and procedures. Work closely with other security stakeholders across the university.

This job may require access to technology, data and software source code that is subject to US export controls. An offer of employment is contingent upon verifying U.S.-person status or obtaining the necessary export control licenses to perform the job functions.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Plan, implement, and upgrade security measures and controls.
• Monitor, identify, and mitigate security risks by establishing plans and protocols to protect data and information systems against unauthorized access, modification and/or destruction.
• Document, prioritize, and analyze security threats, incidents, and key metrics.
• Manage, configure, and optimize firewalls, log management, vulnerability management, and intrusion detection and prevention systems. Including policy creation, rule tuning, and threat prevention.
• Conduct security assessments and vulnerability management to ensure compliance with security policies.
• Responsible for identification, isolation, and resolution of complex incidents across multiple technologies.
• Develop security reports and dashboards for senior management.
• Directly involved in the development, implementation, and execution of technical solutions to address and resolve any security issues identified or projected while also maintaining compliance of regulatory laws.
• Collaborate with IT, the office of Risk and Compliance, University Counsel, Human Resources and Law Enforcement staff as necessary to assist with forensic and Open Records investigations and freedom of information requests to ensure confidentiality and proper procedure.

PREFERRED QUALIFICATIONS

• Strong knowledge of information security, network engineering, and/or system administration.
• Threat detection and Incident Response: familiarity with SIEM, SOAR, IDS/IPS, and endpoint security solutions.
• Networking and Protocols: understanding of TCP/IP, DNS, VPNs, and cloud security principles.
• Effective oral, written, and interpersonal communication skills.
• Demonstrated ability to prioritize work to meet multiple competing deadlines.
• Demonstrated problem-solving abilities with keen attention to detail.
• Industry recognized Information Security certification (e.g., CISSP, Security+, CISM).
• Hands-on experience with Microsoft security tools such as Defender, Sentinel, Purview, Intune, Entra.
• Strong knowledge of Palo Alto Networks firewalls including PAN-OS and GlobalProtect.
• Experience securing AWS environments, including IAM, Security Hub.
• Knowledge of NIST, CIS, ISO 27001, and regulatory standards such as HIPAA, FERPA, GLBA, CUI.
• This role is primarily remote; however, candidates should be able to work on campus when necessary.
• Fully remote candidates (out of state) will be considered only if local recruitment efforts are unsuccessful.

Compensation will be commensurate to candidate experience.

Equal Employment Opportunity

The University of Louisville is an equal opportunity, affirmative action employer, and is committed to providing employment opportunities to all qualified applicants without regard to race, sex, age, color, national origin, ethnicity, creed, religion, disability, genetic information, sexual orientation, gender, gender identity and expression, marital status, pregnancy, or veteran status. If you are unable to use our online application process due to an impairment or disability, please contact the Employment team at employment@louisville.edu or 502.852.6258.

Assistance and Accommodations

Computers are available for application submission at the Human Resources Department located at 215 Central Avenue, Ste 205 - Louisville, Kentucky 40208.

If you require assistance or accommodation with our online application process, please contact us by email at employment@louisville.edu or by phone 502-852-6258.