IT Security Analyst, Risk Management:Under general supervision, implement and operate security controls to minimize risk to physical and logical assets of the Biological Sciences Division (BSD) at the University of Chicago and continue to improve efficiencies for the management of all the BSD Information Security program elements in a consistent manner to ensure the confidentiality and integrity of BSD sensitive information. The Security Analyst will assist with the core security program of the BSD research enterprise and manage security infrastracture used to safeguard data and the organization from cyber attacks. Responsibilities include, but are not limited to:- Perform risk assessments on mission critical information systems or business processes. - Identify and document information security vulnerabilities and risks.- Develop remediation plans to address identified risks and vulnerabilities.- Facilitate risk management governance meetings to gain organizational approval of remediation plans.- Track progress on remediation of identified risks and vulnerabilities and provide appropriate reporting.- Develop security policies, standards, procedures, checklists, and guidelines tailored to meet the requirements of the organization.- Analyze and understand threat intelligence information and how it might impact the organization.Risk Identification and Assessments (40%)Collect and review information, including existing documentation, regarding the organization's internal and external business and IT environments to identify potential or realized impacts of IT risk to the organization's business objectives and operations. Analyze risk scenarios based on organizational criteria (e.g., organizational structure, policies, standards, technology, architecture, controls) to determine the likelihood and impact of an identified risk.Security Auditing and Compliance (40%)Establish process for auditing and remediation of all computing systems. This includes, access management, vulnerability assessments. Participate in all compliance efforts; include strategy development, policies and procedures and department coordination.Security Architecture (20%)Design and architect security systems to mitigate risk and protect computer systems and sensitive information. Establish security standards for BSD computing devices, including, but not limited to Solaris, Linux, Windows, Apple, etc.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran status or status as an individual with disability.The University of Chicago is an Affirmative Action / Equal Opportunity / Disabled / Veterans Employer.Job seekers in need of a reasonable accommodation to complete the application process may contact Human Resources by calling 773-834-1841 or by emailing firstname.lastname@example.org with their request.
One of the world's premier academic and research institutions, the University of Chicago has driven new ways of thinking since our 1890 founding. Today, UChicago is an intellectual destination that draws inspired scholars to our Hyde Park and international campuses, keeping UChicago at the nexus of ideas that challenge and change the world.