Reporting to the Harvard Medical School (HMS) Director of Security Operations and Cyber Defense, the Cyber Security Analyst will assist in managing cyber defense tools such as MDR/EDR, vulnerability scanners, and firewalls. This role will collaborate with HMS security and IT to build strong security reporting and metrics, network security, device security, vulnerability management programs, and help identify top areas of risk, as well as shape mitigation strategies. As you identify threats and opportunities, you will define appropriate risk reduction strategies and technologies and work cross-functionally to implement the appropriate security controls and strategies.
Support the Cyber Security team with protecting confidentiality and integrity of the organizations information assets
Utilize security tools and Splunk to identify suspicious/malicious activity
Conduct network traffic analysis on operating systems and applications to assess cyber security threats and trends
Develop, maintain and execute security initiatives to maintain and secure HMS information and infrastructure
Implement approved Information Security Policies and Procedures
Form repeatable processes for prioritizing and responding to alerts and helping develop playbooks
Work with products and concepts in the Endpoint and Server protection space such as: Exploit mitigation, attack surface reduction, anti-virus/malware, EDR, and DLP
Assist with network monitoring, intrusion detection analysis, log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources
Maintain proper security metrics via Splunk
Maintain a general knowledge of common security vulnerabilities, attack vectors, methods, and remediation techniques
Abide by and follow the Harvard University IT Code of Conduct
Minimum of five years' experience post-secondary education or relevant work experience
Additional Qualifications and Skills
BA or BS in Computer Science, Information Management, or equivalent experience
Four or more years of progressive experience in the information security field, in a hands-on technical role
Excellent written and verbal communication skills and can translate security objectives to cross- functional partners.
Ability to understand business needs and develop solutions
Must be able to work in a collaborative team environment
Ability to multi-task and work cooperatively with a diverse range of people; Must have strong interpersonal skills
Solid understanding of enterprise security principles and best practices
Working knowledge of endpoint/server security and network security
Experience supporting a Security Operations Center as a Security Operations or Cyber Defense team member
Experience with Splunk, Elastic, or other products as a SIEM
Experience with products and concepts in the Endpoint and Server protection space such as: Exploit mitigation, attack surface reduction, EDR, and DLP
Track record of deploying and supporting enterprise level security solutions
Experience responding to incidents to drive containment and remediation
Ability to script and code when needed for integrations and automation
Certificates and Licenses
Completion of Harvard IT Academy Information Security Foundations course (or external equivalent) preferred
IT Security Certification preferred; e.g., CISSP, CISA/CISM, and/or GIAC
This position is based in Boston and some in-person on-campus work will be required, and flexible/remote work is an option. Any remote work must be performed in a state in which Harvard is registered to do business (CA*, CT, GA, IL, MA, MD, ME, NH, NJ, NY, RI, VA, VT, and WA). Individual flexible and remote work options for this role will be discussed during the interview process. *Note: Harvard employees working in California must be exempt.
Harvard University continues to place the highest priority on the health, safety, and well-being of its faculty, staff, and students, as well as the wider community. Please note that all new employees will be required to complete an attestation of having received their primary series COVID-19 vaccination prior to hire, as detailed on our COVID-19 Vaccine Requirement Webpage. Individuals may request exemption from the vaccine requirement for medical or religious reasons prior to completing the hiring process. Additional information regarding this requirement, exemptions, verification of vaccination status, and other related policies and resources may be found on the University's COVID-19 Information Website.
Please note that we are currently conducting a majority of interviews and onboarding remotely and virtually. We appreciate your understanding.
The Harvard Medical School is not able to provide visa sponsorship for this position.
Commitment to Equity, Diversity, Inclusion, and Belonging We are committed to cultivating an inclusive workplace culture of faculty, staff, and students with diverse backgrounds, styles, abilities, and motivations. We appreciate and leverage the capabilities, insights, and ideas of all individuals. Harvard Medical School Mission and Community Values
EEO Statement We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, gender identity, sexual orientation, pregnancy and pregnancy-related conditions, or any other characteristic protected by law.
Harvard University is devoted to excellence in teaching, learning, and research, and to developing leaders in many disciplines who make a difference globally. The University, which is based in Cambridge and Boston, Massachusetts, has an enrollment of over 20,000 degree candidates, including undergraduate, graduate, and professional students. Harvard has more than 360,000 alumni around the world. The University has twelve degree-granting Schools in addition to the Radcliffe Institute for Advanced Study, offering a truly global education. Established in 1636, Harvard is the oldest institution of higher education in the United States.