Senior Information Security Analyst - Information Security - UT Southwestern Medical Center Dallas, TX 75390, USA Bookmark Share Print 828 0 3

Listing Description

Why UT Southwestern?

With over 75 years of excellence in Dallas-Fort Worth, Texas, UT Southwestern is committed to excellence, innovation, teamwork, and compassion. As a world-renowned medical and research center, we are looking for strategic thinkers who will help assure the security and compliance of UT Southwestern. With a career in our Information Technology department at UT Southwestern, you will be able to help with our mission to provide exceptional clinical care and create cutting-edge research programs as you grow your IT and security career. We invite you to be a part of the UT Southwestern team where you’ll discover a culture of teamwork, professionalism, and a life-changing career!

Job Summary

UT Southwestern is hiring an Information Security Analyst to join our IT and security team. We’re investing extensive resources to grow our InfoSec team to ensure the safety of our sensitive and critical hospital and university information. As a security analyst, you will be responsible for implementing information security best practices throughout UT Southwestern and assuring compliance. This position will provide expertise, consulting, and problem resolution in areas of network, server, database, application, and end point security assurance. Join UT Southwestern as a valued member of our IT and security team!

Job Duties

• Conduct and coordinate risk analysis and assessments on existing and proposed systems, document findings, and recommend risk mitigation strategies.
• Assist departmental technical support staff in identifying and implementing appropriate security safeguards and coordinates efforts to assure compliance with security patch application and virus protection policies.
• Respond to security incidents to prevent additional loss and to obtain and preserve forensic evidence.
• Lead root cause analysis efforts to determine improvement opportunities. Maintain a database of security incidents and provide reports to University management and external regulatory agencies.
• Maintain a database of registered servers and ensure accurate information pertaining to data classification and protection strategies.
• Assist in the development of information system security standard configurations using variations of the NIST checklist.
• Distribute security notices and alerts to campus technical support personnel. Coordinate campus-wide information security collaboration and communication initiatives.
• Draft policies and procedures and make recommendations to ensure the security of information assets against unauthorized or accidental modification, destruction, or disclosure.
• Remain knowledgeable of changes in security technology, industry practices, and state and federal regulatory requirements.
• Conduct security training and develop awareness programs and materials for both technical and non-technical computer users. • Present technical briefings as required.

Experience and Education

• Bachelor’s Degree in computer science and technology or related field
• Three (3) years of related experience, including two (2) years in an information security role
• Prior experience with software of applications used for vulnerability scanning, remote system administration, network monitoring and protection, and security notification strongly preferred

Preferred Qualifications

• Two (2) or more years of experience in a senior information security position or role.
• Experience as a network, server, database, or application administrator.
• Experience as a security or technology administrator in higher education or similarly decentralized environment.
• Experience using Project Management and System Development Lifecycle methodologies.
• Relevant information security certifications (e.g., CISSP, CISA, GIAC).
• Experience using the following or similar information security technologies: Vulnerability scanners (Nmap, Nessus, Nexpose); Notification resources (Bug Traq, US-CERT); Networking monitoring and protection systems (Cisco NAC, SourceFire, Tripwire)

To learn more about the benefits UT Southwestern offer visit https://www.utsouthwestern.edu/employees/hr-resources/

For COVID-19 vaccine information, applicants should visit https://www.utsouthwestern.edu/covid-19/work-on-campus/

This position is security-sensitive and subject to Texas Education Code §51.215, which authorizes UT Southwestern to obtain criminal history record information.

UT Southwestern Medical Center is committed to an educational and working environment that provides equal opportunity to all members of the University community. In accordance with federal and state law, the University prohibits unlawful discrimination, including harassment, on the basis of: race; color; religion; national origin; sex; including sexual harassment; age; disability; genetic information; citizenship status; and protected veteran status. In addition, it is UT Southwestern policy to prohibit discrimination on the basis of sexual orientation, gender identity, or gender expression.