IT Security Analyst 4

Department:

Location:

Belknap Campus

Time Type:

Full time

Worker Type:

Regular

Job Req ID:

R107263

Minimum Requirements:

Bachelor's degree in Computer Science or a related field and six (6) years of relevant experience or an equivalent combination of education and experience. Grade 10 (Salaried)

Position Description:

The Enterprise IT Security Analyst IV in the Department of Information Technology Services at the University of Louisville plays a critical role in protecting the university’s digital assets, infrastructure, and data. This position is responsible for monitoring, assessing, and responding to cybersecurity threats, as well as implementing policies and controls to reduce risk.

This job may require access to technology, data and software source code that is subject to US export controls. An offer of employment is contingent upon verifying U.S.-person status or obtaining the necessary export control licenses to perform the job functions.

This role is primarily remote; however, candidates should be able to work on campus when necessary.

Fully remote candidates (out of state) will be considered only if local recruitment efforts are unsuccessful.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Plan, implement and upgrade security measures and controls.

• Monitor, identify and mitigate security risks by establishing plans and protocols to protect data and information systems against unauthorized access, modification and/or destruction.

• Document, prioritize and analyze security threats, incidents, and key metrics.

• Responsible for security services and tools such as endpoint protection, encryption, firewall management, log management, vulnerability management, intrusion detection, data security, and forensics.

• Mentor and share knowledge with co-workers on security tools, processes and procedures.

• Responsible for identification, isolation and resolution of complex incidents across multiple technologies.

• Monitor security systems, tools, and dashboards for anomalies and indicators of compromise.

• Investigate and respond to cybersecurity incidents, coordinating with technical teams and leadership, as needed.

• Perform vulnerability assessments and oversee remediation efforts.

• Assist in developing and maintaining security policies, procedures, and technical standards.

• Conduct security risk assessments for applications, systems, and third-party services. Lead security awareness initiatives and training for faculty, staff, and students.

• Support compliance efforts related to HIPAA, FERPA, PCI-DSS, and other applicable regulations.

• Directly involved in the development, implementation and execution of technical solutions to address and resolve any security issues identified or projected while also maintaining compliance with applicable laws and regulations.

• Maintain up-to-date knowledge of current threats, vulnerabilities, and best practices.

• Participate in audit and governance activities and assist with security-related projects and initiatives.

PREFERRED QUALIFICATIONS

• Master’s degree in related field.

• Professional certifications such as CISSP, CISM, GIAC.

• Hands-on experience with Microsoft security tools such as Defender, Sentinel, Purview, Intune, Entra.

• Strong knowledge of Palo Alto Networks firewalls including PAN-OS and GlobalProtect.

• Experience in higher education or large, decentralized organizations.

• Familiarity with cloud security in environments such as AWS, Azure, or Google Cloud.

• Experience conducting forensics investigations.

• Familiarity with identity and access management concepts and tools.

• Strong networking background and experience with network security, firewall and IDS/IPS management.

• Experience with security tools such as SIEMs, vulnerability scanners, and endpoint protection.

• Strong understanding of information security principles, technologies, and best practices.

• Working knowledge of regulatory and compliance frameworks (e.g., NIST, ISO, HIPAA, FERPA).

• Effective oral, written and interpersonal communication skills

• Demonstrated ability to prioritize work to meet multiple, competing deadlines.

• Demonstrated analytical and problem-solving abilities with a keen attention to detail.

Compensation will be commensurate to candidate experience.

Equal Employment Opportunity

The University of Louisville is an Equal Employment Opportunity employer. The University strives to provide equal employment opportunity on the basis of merit and without unlawful discrimination on the basis of race, sex, age, color, national origin, ethnicity, creed, religion, disability, genetic information, sexual orientation, gender, gender identity or expression, veteran status, marital status, or pregnancy. In accordance with the Rehabilitation Act of 1973 and the Vietnam Era Veteran Readjustment Act of 1974, the University prohibits job discrimination of individuals with disabilities, Vietnam era veterans, qualified special disabled veterans, recently separated veterans, and other protected veterans. The University acknowledges its obligations to ensure affirmative steps are taken to ensure equal employment opportunities for all employees and applicants for employment. It is the policy of the University that no employee or applicant for employment be subject to unlawful discrimination in terms of recruitment, hiring, promotion, contract, contract renewal, tenure, compensation, benefits, and/or working conditions. No employee or applicant for employment is required to endorse or condemn a specific ideology, political viewpoint, or social viewpoint to be eligible for hiring, contract renewal, tenure, or promotion.

Assistance and Accommodations

Computers are available for application submission at the Human Resources Department located at 215 Central Avenue, Ste 205 - Louisville, Kentucky 40208.

If you require assistance or accommodation with our online application process, please contact us by email at[email protected]or by phone 502-852-6258.