Career Center

As the central information technology (IT) organization for the University of Washington (UW), UW-IT provides critical technology support to academic campuses, medical centers and global research operations. UW-IT collaborates with UW partners to advance teaching, learning, innovation and discovery at the University. UW-IT’s strategic focus consists of two elements: supporting the academic mission; and building a strong foundation. Each of UW-IT’s strategy statements aligns with one of these elements; each strategy statement infers information security implications for UW-IT units.

Located within UW-IT and supporting its strategies, the Office of the Chief Information Security Officer (CISO) is responsible for the strategic leadership of the University’s information security program and for promoting a culture of cybersecurity across the enterprise. Services are designed to help UW units understand information security risks by analyzing and forecasting threats and vulnerabilities; researching applicable information security laws; providing education, training and awareness on safeguarding institutional information; consulting on incident management; and managing policies and strategies for protecting UW’s institutional information resources.

The Information Security Analyst responds to and remediates information security events; promotes and supports the secure use of networked servers and desktops by faculty, staff, and students; serves as a member of the information security Incident Response team as specified in University policy; participates in the development of new security services for enterprise and workgroup computing; advises UW Information Technology and campus computing professionals on information security vulnerabilities, response, and remediation applicable to the University environment; and helps support system administration tasks within the Office of the CISO.


RELEVANT TECHNOLOGIES
The person in this position is expected to demonstrate detailed knowledge and experience with:
•    Information security issues in an open, highly distributed networked environment.
•    Enterprise Intrusion Prevention Systems.
•    Performing information security incident response, analysis, and remediation.
•    The secure use and system administration of desktop and server operating systems.
•    Networking protocols and architectures such as TCP/IP, 802.11, LAN, WAN, and VoIP.

The person in this position is expected to have a broad technology background and a general understanding of:
•    Security tools such as Netcat, Nmap, Nessus, Wireshark, Metasploit, and Burp Suite.
•    Internet protocols and data formats such as HTTP, TLS, SSL, HTML, and XML.
•    Database technologies such as Elasticsearch, SQL, or Oracle.
•    Identification and authentication technologies.
•    Cloud and virtualization architectures.
•    Encryption techniques, algorithms and approaches.

REQUIREMENTS
•    Bachelor’s Degree in Computer Science, Engineering or related field or experience.

Additional Requirements
•    Minimum four (4) years’ experience in information security in an educational, research, scientific, or cultural institution
•    Detailed experience working with Windows, Mac, and Unix/Linux operating systems for desktops and servers
•    Experience performing progressively more complex and responsible tasks within a technical environment, including maintenance and support of networked computer systems, applications, and operations
•    Experience consulting on information security threats and vulnerabilities
•    Strong understanding of and experience with security-related technologies, systems and tools, including Intrusion Prevention/Detection Systems, firewalls, etc.
•    Strong understanding of and experience using computer programming techniques and languages (Python, Perl, PowerShell, etc.)
•    Experience with security incident response, analysis, remediation and prevention
•    Experience advising stakeholders, at all levels in an organization, on information security related risks
•    Strong deductive reasoning, critical thinking, problem solving, and prioritization skills
•    Demonstrated excellent communication skills (i.e., written, verbal, listening), technical documentation skills, user liaison skills, and personal interaction abilities
•    Ability to work within large collaborative organizations, building consensus and fostering ongoing relationships
•    Ability to work independently with minimal supervision
•    Knowledge of internet protocols (HTTP, DNS, etc.)

DESIRED
•    Higher education or government agency information security experience
•    Experience handling and protecting information at a variety of sensitivity levels
•    Understanding of laws and standards such as FISMA, GLBA, FERPA, PCI DSS, and NIST
•    Information security certifications such as CISSP, CSFA, CEH, GWAPT, GPEN, etc
•    Ability to obtain and maintain a DoD Secret security clearance
•    Knowledge of cloud, container-based and virtualization architectures
•    Experience with ServiceNow


CONDITIONS OF EMPLOYMENT
Must be able to respond to security incidents during off-hours.
Must be willing to be on-call on a rotating basis.
This is an essential/restricted position, where employees usually work remote during suspended operations and during restricted operations but may be called in to address a specific critical problem. Supervisors will call in employees as needed.