Sec Incident Response Rep IV

As a community, the University of Rochester is defined by a deep commitment to Meliora - Ever Better. Embedded in that ideal are the values we share: equity, leadership, integrity, openness, respect, and accountability. Together, we will set the highest standards for how we treat each other to ensure our community is welcoming to all and is a place where all can thrive.

Job Location (Full Address):

Remote Work - New York, Albany, New York, United States of America, 12224

Opening:

Worker Subtype:

Regular

Time Type:

Full time

Scheduled Weekly Hours:

40

Department:

100086 University IT / IS

Work Shift:

UR - Day (United States of America)

Range:

UR URG 110 H

Compensation Range:

$29.05 - $40.67

Responsibilities:

Responsible for support of day-to-day operations of information security incident response and triage. Verifies, classifies and documents events, escalating incidents as required. Provides first-level and second-level response for information security events, including threat analysis, root cause analysis and remediation. This role requires an on-call rotation.

ESSENTIAL FUNCTIONS

• Provides first-level and second-level response for information security events, including threat analysis, root cause analysis and remediation.
• Manages various security operations tools to ensure continued security and performance.
• Responds to requests for operational and security logs.
• Assists with development of incident response processes and systems.
• Participates in daily, quarterly, weekly and as needed meetings.
• Monitors security blogs, articles, reports and other sources to keep up to date on the latest security threats and trends.
• Other duties as assigned.

MINIMUM EDUCATION & EXPERIENCE

• Bachelor's degree and 1 year of related experience required
• Or equivalent combination of education and experience
• Experience with Security Information and Event Management (SIEM) systems, such as QRadar, ArcSight or LogRhythm, preferred

KNOWLEDGE, SKILLS AND ABILITIES

• Demonstrated analytical and problem solving skills required
• Strong interpersonal, verbal and written communication skills required
• Self-motivated and directed required
• Dedication to continued learning required
• Ability to effectively prioritize and execute tasks in a high-pressure environment required
• On-call rotation required
• Knowledge of intrusion detection systems, system administration, network protocols and industry-standard techniques and practices preferred

 

The University of Rochester is committed to fostering, cultivating, and preserving an inclusive and welcoming culture to advance the University’s Mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion, creed, sex, sexual orientation, citizenship status, or any other characteristic protected by federal, state, or local law (Protected Characteristics). This commitment extends to non-discrimination in the administration of our policies, admissions, employment, access, and recruitment of candidates, for all persons consistent with our values and based on applicable law.