1-3 years of experience
Concerned about your lack of experience? Learn More...
Employment Type:
Full time
Job Category:
Information Services
IT Security Analyst
(This job is no longer available)
University of Oregon | Eugene, OR
Grad Date

Not sure what types of jobs you are interested in?

Explore Jobs
Based on Your Education

Follow This Company

Job Description

Job Context

Information Services (IS) is the central information technology unit at the University of Oregon and provides wide ranging services to campus. Information Services consists of four major functional areas: Customer Experience, which serves as the key contact point for interactions with campus clients and customers; Applications & Middleware, which manages and supports applications, integration services, identity management and data management; Information Security, which helps protect virtual or physical information; and Technology Infrastructure, which provides administration and support for the software, hardware, and services needed to support the campus IT environment. Information Services also includes the Advanced Network Technology Center. IS works closely with the Network for Education and Research in Oregon.

Established in 1876, the University of Oregon offers a breadth and depth of curricula with more than 270 academic programs and provides the opportunity to work at a respected research university with a strong holistic, liberal arts foundation. The UO also has a history of political and social involvement that embraces diverse beliefs, cultures, and values, and it is committed to environmental responsibility.

Eugene is the home of the University of Oregon. Located in the lush Willamette Valley, Eugene is well-known for outdoor pursuits like running, cycling, rafting, and fishing, as well as arts, music, crafts, brewing, wine-making, and community-supported agriculture. With branches in Portland and on the Oregon coast, the UO is deeply connected to Oregon's natural and cultural treasures.

Reporting to the Chief Information Security Officer, the IT Security Analyst will serve in a team enviroment to carry out the Information Security Program by determining and mitigating IT risk of the University's data, systems, and networks. Candidates who promote and enhance diversity are strongly desired.

Duties and Responsibilities

Duties and responsibilities for this position include, but are not limited to, the following:

Works with a team that formulates, implements, and operates security designs to monitor and protect the campus networks. This includes intrusion detection systems, intrusion prevention systems, network monitoring, flow analysis, system integrity, risk analysis, security scanning and other proactive security measures. This task includes the support for the underlying systems and programs that help perform those functions.

Provides information security incident handling and response, in cooperation with strategic campus partners, to assist with identifying, investigating, documenting, mitigating, and remediating incidents that involve university network and computing resources. The IT Security Analyst works with other members of the Security team to investigate, perform forensics, compile relevant technical/background information, and perform post-mortem analysis of information security and AUP incidents. This work will frequently require handling confidential and sensitive information for law enforcement or the University's General Counsel Office.

Assists with education and outreach by providing advice to departments on current best practices related to security, developing security documentation, and teaching workshops on computer security related topics

Implement computer and network security strategies and policies and documents security procedures as they are developed

Evaluate, assess, and provide recommendations on new products and technologies related to the design and deployment of secure systems. This work will include participation in long-range planning for security systems on campus.

Provides off-hours, on-call support on a rotation basis with others in the Network Services and Security groups

Manages student workers on the Security Team

Other duties as assigned

Qualification Requirements

Required qualifications:

Bachelor's degree from an accredited institution

Two years of experience working in the information security field, preferably in a higher education environment. An advanced degree (Masters) could be substituted for one year of experience.

Demonstrated experience with TCP/IP analysis, network monitoring and scanning tools

Demonstrated understanding of Unix or Microsoft Windows Administration

Demonstrated understanding of popular desktop operating systems and applications

US citizenship or eligibility for employment under prevailing US laws

Professional Competencies:

Proven skills in technical writing, verbal communications, consulting, and problem solving in a rapidly changing technical environment

Proven experience being team-oriented and self-motivated, with a keen attention to detail and the ability to work independently

Ability to effectively communicate and work with individuals from diverse backgrounds or cultures

Preferred qualifications:

Bachelor's degree in Computer Science, Information Technology/Systems, Information Security or relevant field

Demonstrated experience with one or more of the following: Incident Response, Intrusion Detection Systems, Vulnerability Assessment, or Computer Forensics in an environment with a large user community

Proficiency in any of several programming languages (e.g. Perl, Python, Ruby, Java, C, LUA, shell-scripting)

Experience with Intrusion Detection and Intrusion Prevention Systems (IDS/IPS), preferably with FireEye, SNORT, or BRO

Experience with Vulnerability Assessment, preferably with Nessus, NMAP, or Metasploit

Familiarity with Cisco ISE or a similar NAC system

Certification in or progress toward at least one designation in an information security, risk, compliance or related discipline (e.g. CISSP).

Working knowledge of laws, regulations and standards affecting information technology in a higher education environment (e.g. PCI, HIPAA, HEOA, FERPA, and DMCA)

This position is subject to a criminal background check

Salary Range

Salary is competitive and commensurate with qualifications and experience.


The University of Oregon provides an excellent benefits package including health, dental, insurance, retirement plan, employee tuition rates (transferable to immediate family members under specific circumstances) and excellent vacation and sick leave provisions.

Application Procedure

This position is open until filled. To ensure consideration, please submit all application materials by July 29, 2016.

Complete applications must include the following:

A letter of application demonstrating how you meet the qualifications and addressing your interest in the position.

A current résumé

The names, addresses, phone numbers and email addresses of three current references who can comment on your qualifications for this position. References will be kept confidential, and candidates will be notified before references are contacted.

The application materials should be packaged as a single PDF file, using the applicant's last name as the document name, and emailed to iscareer@uoregon.edu .

Please reference Position # 16117 and the applicant's last name in the subject of the email.

Incomplete or improperly submitted applications may be excluded from consideration.