At University Information Technology Services https://uits.iu.edu/ (UITS) we provide the technology, tools, and services you need to succeed. UITS supports IU's vision for excellence in research, teaching, outreach, and lifelong learning. We ensure a workplace that encourages growth, flexibility, and creativity, as well as a culture that champions inclusion, diversity, and overall employee well-being through programs supported university wide. As an Equal Opportunity Employer, we believe in each person's potential, and we'll help you reach yours.
OmniSOC Background
OmniSOC is a security operations center hosted at Indiana University which provides monitoring and security operations services to US-based higher education institutions, research and education networks, and NSF-funded research facilities. OmniSOC is primarily made up of three teams:
A security services team (this position), which specializes in the comprehensive assessment and growth of OmniSOC member's security programs by providing expertise, coaching, and security operations services to members. OmniSOC Services Team Analysts are experienced cybersecurity subject-matter experts capable of managing multiple highly complex tasks, projects, and client-members while coordinating with outside partners, software systems/vendors, and managing cybersecurity needs for novel applications across an array of stakeholders and contexts.
A platform engineering team that is responsible for running the OmniSOC SIEM and other IT infrastructure as well as performing all software development. The team operates in a devops model and supports both the services and security teams, along with OmniSOC members. The platform team manages an extremely scalable mission critical application while also developing and extending the core product. Platform engineers are able to assimilate new information, solve technical problems, and own software development and infrastructure projects.
The Security Analyst and Engineering Team primarily focuses on the analysis of OmniSOC member log data (network and endpoint) for indications of potential malicious activity or compromise. Security Analysts triage triggered automated detection and network intrusion detection system (NIDS) alerts and investigate whether an actual incident has occurred. Findings are shared with member institutions for mitigation. Security Engineers identify key member log sources and associated threats in order to build and tune automated detections to identify potential incidents for investigation by analysts and provide the analysts with playbooks to guide those investigations. Further driving the engineering efforts is the consumption of cyber threat intelligence that can be used to initiate and refine threat hunting operations.
These teams work together to deliver high-quality, timely service to our membership. Our success is dependent upon our teams working in a collaborative, highly organized and efficient manner.
OmniSOC core values:
Member focus
Analyst engage deeply with members to understand their goals, strengths, needs and challenges
We are committed to raising the cybersecurity level of our community for the betterment of all
Impact
Each analyst at OmniSOC bears responsibility for the success of OmniSOC and our community, we are committed to enabling the missions of education and research members through safer technology
We are focused on impactful over volume
Individual Mastery and collective improvement
We value an exploring mindset and actively encourage curiosity while pursuing ways to learn more, make the world better, and expand our expertise
We view mistakes not as failures, but learning opportunities, and try to learn from each failure
Communication
We are open and direct with each other when discussing problems
We default to openly sharing information with each other, our members, and the community.
Courage
We make tough decisions without agonizing and learn through doing and through one another to collectively improve our decision making
We act according to our principles even when no one is looking, we are unafraid to speak our minds or question actions that don¿t align with our professed values.
OmniSOC Services Analyst
OmniSOC Services Team Analysts are experienced cybersecurity subject-matter experts (SMEs) capable of managing multiple highly complex tasks, projects, and client-members while coordinating with outside partners, software systems/vendors, and managing cybersecurity needs for novel organizational objectives across an array of stakeholders and contexts.
OmniSOC is seeking cybersecurity analysts to join our security services team providing cybersecurity subject matter expertise to our members in higher education, networking, and major science research projects across the United States. Our analysts are deeply involved in the mission of our members, functioning as consultants, coaches, security analysts and decision makers within member organizations.
OmniSOC analysts are actively engaged in the higher ed and research community, regularly visiting campuses, research facilities and attending and presenting at conferences for education and research technology and cybersecurity in the US and abroad.
We strive to be leaders in the field, educating and bettering our member organizations in cybersecurity practice and policy through publication, training and community outreach. From embedded servers on ships at sea, to operational technology controlling telescopes on the tops of volcanoes, to world class data centers at leading research universities, our analysts meet our clients where they are and help them to improve their cybersecurity in an impactful, measurable way.
"Solve problems, work with amazing people, enable science, make technology safer."
Job Summary
General Responsibilities
Performs ongoing advanced analysis and monitoring of technology environments to identify security exposures and potential threats. Assesses and determines level of risk in order to provide threat information, as well as to advise and/or recommend protections and solutions, to security leadership and department decision-makers.
Makes recommendations to improve information security policies and procedures.
Researches and stays abreast of current higher education information security environment and trends; stays up-to-date and advises junior peers on information security analysis and monitoring best practices, tools, and approaches.
Leads communication, awareness and training efforts for faculty, staff and student population through the creation of informational bulletins, best practices.
Partners with security engineers to ensure exposures and risks are avoided and/or addressed.
Acts as point of escalation for response to information security incidents; may contribute on information security emergency response teams and/or on other information security projects.
May serve as project leader; often provides guidance to junior peers.
Qualifications
This position is posted at the Advanced CareerLevel but may be filled at the Career Career Level depending on the candidate's qualifications. Although they will be similar, the duties and responsibilities may differ if filled at the lower rank. Please see the qualifications for each level listed below
Advanced Level Requirements
Combinations of related education and experience may be considered. Education beyond the minimum required may be substituted for work experience. Work experience beyond the minimum required may be substituted for education.
EDUCATION
Required
Bachelor's degree (preferably in Computer Science or related field)
WORK EXPERIENCE
Required
5 years of information security or related experience
Preferred
Demonstrated history of success leading short to medium term projects and a strong mental model for understanding cybersecurity decision making processes
History of curiosity and active engagement with systems of all types across technology, organizational management, and planning
SKILLS
Required
Proficient communication skills
Maintains a high degree of professionalism
Demonstrates time management and priority setting skills
Demonstrates a high commitment to quality
Possesses flexibility to work in a fast paced, dynamic environment
Seeks to acquire knowledge in area of specialty
Highly thorough and dependable
Demonstrates a high level of accuracy, even under pressure
Possesses a high degree of initiative
Ability to influence internal and/or external constituents
Creativity in identifying complex problems and finding solutions quickly and accurately
Attention to detail in communicating technical issues and implementing solutions
Mental discipline in conducting lengthy investigations
Ability to change priorities as incidents and threats develop or evolve
Demonstrates in-depth knowledge of Microsoft Windows or Unix-like operating systems
Preferred
Curiosity
Determination
Independent thinking
Ability to navigate unstructured environments, deciding what needs to be done to accomplish a task, and plotting a course from here to there.
Career Level Requirements
Combinations of related education and experience may be considered. Education beyond the minimum required may be substituted for work experience. Work experience beyond the minimum required may be substituted for education.
EDUCATION
Required
Bachelor's degree (preferably in Computer Science or related field)
WORK EXPERIENCE
Required
2 years of information security or related experience
Preferred
2 years of experience (education and internships may apply) in one or more areas of networking, software development, or system administration with emphasis on Linux/UNIX systems
Client or customer management experience
Competence or mastery of organization and project management skills
History of curiosity and active engagement with systems of all types across technology, organizational management, and planning
SKILLS
Required
Proficient communication skills
Maintains a high degree of professionalism
Demonstrates time management and priority setting skills
Demonstrates a high commitment to quality
Possesses flexibility to work in a fast paced, dynamic environment
Seeks to acquire knowledge in area of specialty
Highly thorough and dependable
Demonstrates a high level of accuracy, even under pressure
Demonstrates in-depth knowledge of Microsoft Windows or Unix-like operating systems
Attention to detail in communicating technical issues and implementing solutions
Mental discipline in conducting lengthy investigations
Preferred
Curiosity
Determination
Independent thinking
Ability to navigate unstructured environments, deciding what needs to be done to accomplish a task, and plotting a course from here to there
Working Conditions / Demands
This role requires the ability to effectively communicate and to operate a computer and other standard office productivity equipment. The position involves sedentary work as well as periods of time moving around an office environment and the campus. The person in this role must be able to perform the essential functions with or without an accommodation.
Additional Information
Scope and Impact
This position is necessary to meet the demand for OmniSOC's expertise in the open science, research, higher ed, and other communities as we expand relationships throughout the region and across the country. These positions will ensure that OmniSOC is able to grow its reputation as a national leader in cybersecurity practice, policy, and education.
There is no archetypal ideal candidate, successful candidates may come from many different backgrounds of education and work experiences. Work experience and demonstrated previous responsibilities, behaviors and experience are valued more highly than education credentials and certificates. Candidates are encouraged to apply even if they feel they lack the exact qualifications and experience requirements listed here.
Work Location
Indianapolis, Indiana or Bloomington, Indiana
This position is eligible for remote work, hybrid work, or on site work, based on university policy and business needs.
Advertised Salary
This position carries a salary of 65,000 per year to 85,000 per year depending on qualified level (Career/Advanced) and level of candidate experience.
Benefits Overview
For full-time staff employees, Indiana University offers a wide array of benefits including:
Multiple plan options for medical insurance
Dental insurance
Health Savings Account with generous IU contribution
Life insurance, LTD, and AD&D options
Base retirement plan contribution from IU, subject to vesting
Additional supplemental retirement plan options
Tuition benefit for IU classes
10 paid holidays per year
Generous Paid Time Off
Paid Parental Leave
Employee Assistance Program (EAP)
Learn more about our benefits by reviewing our online Benefits Brochure.
Job Classification
Career Level: Advanced
FLSA: Exempt
Job Function: Information Technology
Job Family: IT Security & Privacy
Click here to learn more about Indiana University's Job Framework.
Posting Disclaimer
This posting is scheduled to close at 11:59 pm EST on the advertised Close Date. This posting may be closed at any time at the discretion of the University, but will remain open for a minimum of 5 business days. To guarantee full consideration, please submit your application within 5 business days of the Posted Date.
If you wish to include a cover letter, you may include it with your resume when uploading attachments.
Equal Employment Opportunity
Indiana University is an equal employment and affirmative action employer and a provider of ADA services. All qualified applicants will receive consideration for employment based on individual qualifications. Indiana University prohibits discrimination based on age, ethnicity, color, race, religion, sex, sexual orientation, gender identity or expression, genetic information, marital status, national origin, disability status or protected veteran status. Indiana University does not discriminate on the basis of sex in its educational programs and activities, including employment and admission, as required by Title IX. Questions or complaints regarding Title IX may be referred to the U.S. Department of Education Office for Civil Rights or the university Title IX Coordinator. See Indiana University's Notice of Non-Discrimination here which includes contact information.
Campus Safety and Security
The Annual Security and Fire Safety Report, containing policy statements, crime and fire statistics for all Indiana University campuses, is available online. You may also request a physical copy by emailing IU Public Safety at iups@iu.edu or by visiting IUPD.
