Handles proactively defending, detecting, and eliminating security threats at Washington University in St. Louis. This position requires beginner level skills and experience with tactics, techniques, and procedures commonly found in the MITRE ATT&CK matrix. Seeking a self-motivated, curious minded individual with a passion for protecting users, securing infrastructure, and discovering indicators of compromise.
Standard computer department working environment with standing, walking and lifting less than 50 pounds required. A moderate amount of work performed at customer site with some after-hours support when incidents occur. Travel between campuses as needed.
Primary Duties & Responsibilities
Hunt through vast amounts of log data looking for malicious activity using Splunk.Â
Handle incidents using standard Incident Response practices.Â
Meet with engineering and operations teams to work on incidents and other security topics.Â
Use Splunk apps, scripts, and automation tools to streamline detection, alerting, and remediation capabilities.Â
Evaluate, remediate, and respond to tickets, email, and phishing support requests.Â
Help evaluate and recommend changes or additions to security tools e.g., honeypots, canary tokens, etc.â¯Â
Maintain up-to-date knowledge of tools, log sources, and IR best-practices to deal with evolving threat actors.Â
Work with IT organizations to analyze and remove malicious software across multiple platforms (Windows, Linux, macOS, mobile).Â
Help produce dashboards, reports and metrics concerning incidents and their posture.Â Â
Will be on call for security incidents as necessary. Â
Perform other duties as assigned.Â â‹
1-4 years of professional experience in information security or related IT experience.Â
SANS (GIAC), ISC2 (SSCP / CCSP), or other security related certification or equivalent experience.â‹
Passion for researching and solving unfamiliar complex technical problems.Â
Experience with logging platforms e.g., Splunk, Elastic, or Humio.Â
Basic knowledge of Microsoft Windows platforms, security hardening, Active Directory authentication, and logging capabilities.Â
Basic knowledge of macOS and Linux operating systems and logging capabilities.Â
Basic understanding of common tactics and techniques, such as those documented in the MITRE ATT&CK knowledge base.Â
Basic knowledge of penetration testing platforms e.g., Kali Linux to understand and test common threat techniques.Â
Experience using EDR/XDR products e.g., CrowdStrike, Cisco Secure Endpoint, Microsoft Defender to investigate threats and perform triage activities.Â
Basic knowledge of common Internet protocols and services e.g., tcp, udp, dns, http, https, smtp, ssl, ssh, rdp, smb, sql, etc.Â
Understand how to use and interpret packet analyzer tools like Wireshark and tcpdump.Â
Basic knowledge of cloud provider services and logging capabilities e.g., Azure, Amazon, and Google.Â
Experience with networking technologies e.g., subnetting, IP allocations, BGP, firewalls, VPNs.Â
Aptitude for customer service including patience, tactfulness, and empathy.Â
Strong team-oriented interpersonal skills; ability to effectively work with a wide variety of people.Â
Proficient communication skills.Â
Ability to work independently with limited supervision.Â
Associate degree or equivalent and two years of relevant IT work experience.
$55,600.00 - $94,900.00 / AnnuallyThe salary range reflects base salaries paid for positions in a given job grade across the University. Individual rates within the range will be determined by factors including one's qualifications and performance, equity with others in the department, market rates for positions within the same grade and department budget.
All external candidates receiving an offer for employment will be required to submit to pre-employment screening for this position. The screenings will include criminal background check and, as applicable for the position, other background checks, drug screen, an employment and education or licensure/certification verification, physical examination, certain vaccinations and/or governmental registry checks. All offers are contingent upon successful completion of required screening.
Washington University in St. Louis is committed to providing a comprehensive and competitive benefits package to our employees. Benefits eligibility is subject to employment status, full-time equivalent (FTE) workload, and weekly standard hours. Please visit our website at https://hr.wustl.edu/benefits/ to view a summary of benefits.
Washington University in St. Louis is committed to the principles and practices of equal employment opportunity and especially encourages applications by those from underrepresented groups. It is the Universityâ™s policy to provide equal opportunity and access to persons in all job titles without regard to race, ethnicity, color, national origin, age, religion, sex, sexual orientation, gender identity or expression, disability, protected veteran status, or genetic information.
Washington University is dedicated to building a diverse community of individuals who are committed to contributing to an inclusive environment â“ fostering respect for all and welcoming individuals from diverse backgrounds, experiences and perspectives. Individuals with a commitment to these values are encouraged to apply.
When you are ready to apply, creating an account only takes a minute. Your account creates a candidate home page which we will use to communicate with you and allows you to apply for jobs and view your application statuses. The first page of the application offers two âœQuick Applyâ options. Quick Apply allows you to either use a previous application or create a new application using a resume to populate the work experience and education sections of your job application. If using a resume to populate your application, check to ensure the application fields populated accurately. You may skip the âœQuick Applyâ page by clicking âœNextâ at the bottom of the page. Documents may be uploaded in the My Experience section of the application. You also have the option to apply with a Linkedin feature, which allows you to apply by using your Linkedin profile to populate some of the job application fields.
Washington University in St. Louis, a medium-sized, independent university, is dedicated to challenging its faculty and students alike to seek new knowledge and greater understanding of an ever-changing, multicultural world. The University offers more than 90 programs and almost 1,500 courses leading to bachelor's, master's and doctoral degrees in a broad spectrum of traditional and interdisciplinary fields, with additional opportunities for minor concentrations and individualized programs. The faculty is composed of scholars, scientists, artists and members of the learned professions. They serve society by teaching; by adding to the store of human art, creativity, understanding, and wisdom; and by providing direct services, such as health care.