Sec Incident Response Rep IV

As a community, the University of Rochester is defined by a deep commitment to Meliora - Ever Better. Embedded in that ideal are the values we share: equity, leadership, integrity, openness, respect, and accountability. Together, we will set the highest standards for how we treat each other to ensure our community is welcoming to all and is a place where all can thrive.

Job Location (Full Address):

Remote Work - New York, Albany, New York, United States of America, 12224

Opening

Worker Subtype:

Regular

Time Type

Full time

Scheduled Weekly Hours

40

Department

100086 University IT / IS

Work Shift

UR - Day (United States of America)

Range

UR URG 110 H

Compensation Range

$29.05 - $40.67

The referenced pay range represents the minimum and maximum compensation for this job. Individual annual salaries/hourly rates will be set within the job's compensation range, and will be determined by considering factors including, but not limited to, market data, education, experience, qualifications, expertise of the individual, and internal equity considerations.

Responsibilities

Responsible for support of day-to-day operations of information security incident response and triage. Verifies, classifies and documents events, escalating incidents as required. Provides first-level and second-level response for information security events, including threat analysis, root cause analysis and remediation. This role requires an on-call rotation.

Essential Functions

• Provides first-level and second-level response for information security events, including threat analysis, root cause analysis and remediation.
• Manages various security operations tools to ensure continued security and performance.
• Responds to requests for operational and security logs.
• Assists with development of incident response processes and systems.
• Participates in daily, quarterly, weekly and as needed meetings.
• Monitors security blogs, articles, reports and other sources to keep up to date on the latest security threats and trends.
• Other duties as assigned.
  
  

Minimum Education & Experience

• Bachelor's degree and 1 year of related experience required
• Or equivalent combination of education and experience
• Experience with Security Information and Event Management (SIEM) systems, such as QRadar, ArcSight or LogRhythm, preferred
  
  

Knowledge, Skills And Abilities

• Demonstrated analytical and problem solving skills required
• Strong interpersonal, verbal and written communication skills required
• Self-motivated and directed required
• Dedication to continued learning required
• Ability to effectively prioritize and execute tasks in a high-pressure environment required
• On-call rotation required
• Knowledge of intrusion detection systems, system administration, network protocols and industry-standard techniques and practices preferred
  
  

The University of Rochester is committed to fostering, cultivating, and preserving an inclusive and welcoming culture to advance the University’s Mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion, creed, sex, sexual orientation, citizenship status, or any other characteristic protected by federal, state, or local law (Protected Characteristics). This commitment extends to non-discrimination in the administration of our policies, admissions, employment, access, and recruitment of candidates, for all persons consistent with our values and based on applicable law.