Position Summary:
The Information Security Analyst I role involves conducting basic threat detection and incident response activities to maintain NYU’s security posture. Job duties include identifying and mitigating security risks by analyzing security events and alerts, executing incident response procedures, and communicating and assisting stakeholders. Typical duties may include analysis of multiple data sources and technologies to assist in the detection of compromised systems and accounts, identification and mitigation of phishing campaigns, and identification and remediation of vulnerable operating systems and software. Provides initial triage for discovered issues, escalates as needed, and contributes to larger incident response efforts when required. Participates in process improvement initiatives to continuously enhance the security posture of the university. Works collaboratively as a team member in a dynamic environment and must also possess excellent analytical, communication, and problem-solving skills. A high level of confidentiality and professionalism is required.
Fully remote work may be considered.
Qualifications:
Required Education:
Bachelor's Degree or equivalent combination of education and experience
Preferred Education:
Bachelor's Degree in a related discipline.
Required Experience:
2+ years experience involving information technology and/or information security, compliance, or risk management.
Preferred Experience:
2+ years experience working in a large-scale information technology environment. Experience using network and system diagnostic tools. Basic experience with scripting, programming, or automation methods. Basic experience with intrusion detection or system protection tools and methodologies. Basic experience with vulnerability scanning tools (e.g., Tenable Nessus, InsightVM, Metasploit, etc.) Experience with information security regulatory/compliance requirements.
Required Skills, Knowledge and Abilities:
Demonstrated understanding of IT security principles and concepts. Ability to clearly communicate information and security concepts to non-technical audiences. Experience with multiple operating systems, including Windows, Mac OS, or Unix/Linux. Must possess strong critical thinking and analytical skills. Must be able to maintain adequate confidentiality, integrity, and availability of information. Maintain a high level of discretion.
Preferred Skills, Knowledge and Abilities:
Knowledge of foundational security controls and information security best practices. Knowledge of enterprise infrastructure and application monitoring tools. Familiarity with security frameworks such as CIS, NIST, ISO, and PCI-DSS. Familiarity with cloud architecture and security concepts. Familiarity with computer network protocols, network security architecture, and computer architecture. Working knowledge of network systems, security principles, applications, and risk and compliance initiatives.
Additional Information:
In compliance with NYC's Pay Transparency Act, the annual base salary range for this position is USD $65,700.00 to USD $80,300.00. New York University considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as, market and organizational considerations when extending an offer. This pay range represents base pay only and excludes any additional items such as incentives, bonuses, clinical compensation, or other items.
NYU aims to be among the greenest urban campuses in the country and carbon neutral by 2040. Learn more at nyu.edu/nyugreen.
EOE/AA/Minorities/Females/Vet/Disabled/Sexual Orientation/Gender Identity