Indiana University

Human Resources

The following position reporting to Doug Pearson, Technical Director, REN-ISAC, is being posted externally. If interested, you must apply online at
Refer to job number #10227.

Security Analyst - PA2IT

Supports the security information gathering, analysis, and sharing, incident response, and information product development activities of the Research and Education Networking - Information Sharing and Analysis Center (REN-ISAC).

Performs first-level analysis of complicated technical security incidents, threats and information by applying specialized training and experiences; and triages security incidents, technical requests, and other information flow in support of the REN-ISAC computer security incident response team (CSIRT) serving the EDU sector. Provides first-level technical response; and escalates to Lead and Principal Security Engineers as needed.

Applies specialized knowledge to assimilate and correlate open source and private REN-ISAC security information to provide daily situational awareness to the EDU sector supporting threat warning, protection and response. Develops alerts, notifications, and other information products based on analysis; and participates in and leads various functions within REN-ISAC that support the community organization, projects, activities and events. Develops relationships and works closely with security and network engineers supporting higher education institutions and national and international R&E networks, with private security collaborations, with REN-ISAC members, and with collaborators in the formal US ISAC structure.

Scope of work is in direct service to all institutions of higher education, and in support of efforts to protect national cyber-infrastructure through the formal US ISAC structure. Effort involves interaction and coordination with a wide-range of technical and management staff, primarily external to the University. Provides training and leadership to front-line watch desk technicians.

REQUIRED: Bachelor's degree and one year of experience in information technology infrastructure or support.

Combinations of related education and experience may be considered.

General knowledge of cyber security concepts, issues and current landscape; and ability to write effective communications targeted for technical and executive audiences. Ability and enthusiasm to understand the broad picture of the REN-ISAC mission, how it maps to the needs of the served community, products and services offered, and to understand and anticipate needs of the community. Possess high standards of integrity and discretion; and basic knowledge of network protocols and applications (e.g. DNS, SMTP, HTTPS, etc.).

Must gain and maintain depth of knowledge in technology areas; and possess excellent oral and written communication, presentation, and interpersonal skills. Demonstrated ability to work efficiently under pressure, and prioritize and handle multiple tasks; and possess a high level of accuracy, dependability and responsibility.

Preferred: Bachelor's degree in business, computer science, engineering, or informatics; experience in computer incident response and investigation; experience working in LINUX shell; experience in web page development and maintenance; experience in a university-based technology environment; knowledge concerning security vulnerabilities and cyber-criminal tactics, techniques and procedures; knowledge concerning protection and response practices, methods and tools; established relationships in the global community of cyber security defenders.

Note: Must be able to receive federal government secret security clearance as is required of this position.

Other: Research and Education Networking . Information Sharing and Analysis Center (REN-ISAC) -

Indiana University is an Affirmative Action/Equal Employment institution.