Information Security Engineer I

University of Denver•Denver, CO

8d•$70,000 - $80,000

About The Position

Information Technology (IT) is the unified IT organization that supports the University's vision, values, mission, and goals by providing IT infrastructure, systems, administrative applications, academic resources, and related services to faculty, students, and staff. Embracing DU’s Impact 2025, the division aligns IT resources with the University’s strategic goals and operational plans, providing service in the spirit of “One DU”. Position Summary The Information Security Engineer I is responsible for monitoring and responding to cybersecurity events. This position receives, researches, triages, and documents all security events and alerts ingested through the campus-managed SOC. This individual supports multiple security-related platforms and technologies, interfaces with other IT departments within the university organization, and collaborates with external partners. Events will be generated from endpoints, networks, security information and event management (SIEM) systems, threat intelligence platforms, employees, students, third parties, and other sources. The position serves within the University of Denver’s Information Security team and reports to the Director of Cyber Operations.

Requirements

Solid understanding of cybersecurity concepts.
Demonstrate ability to support or quickly learn security functions within SOC, such as SIEM, Firewalls, IDS/ IPS, EDR, DLP, email protection, malware analysis, cloud security, etc.
Possess a security and analytical mindset, where the goal of triage and investigation is to determine why something occurred and whether it was expected in the environment.
Understands networking fundamentals: ports, protocols, IP addressing, and infrastructure setup.
Experience with monitoring tools is a plus.
Technical background/understanding of operating systems such as Windows, MacOS, and Linux.
Scripting and programming experience a plus.
BS Degree in Information Systems and/or Cyber Security or equivalent combination of experience and formal education.
One to two (2) years of related work experience or a combination of equivalent training and/or work experience.

Nice To Haves

One or more Information Security Certifications: CISSP, SSCP, CISM, Security+, GSEC, etc., or willingness to obtain at least one certification within 1 year of employment.
Direct experience working in a SOC or high-paced information security environment.

Responsibilities

Analyzing, triaging, aggregating, and reporting on security events, including investigation of anomalous network activity, and responding to cyber incidents within the network environment.
Performs event correlation, trend analysis of security logs, network traffic, security alerts, events, and incidents.
Continuously works to fine-tune security tools to minimize false positives and maximize detection and prevention effectiveness.
Participate in the cybersecurity awareness program improvement and development.
Assist in managing the Third-Party Vendor Risk Management platform and contribute to the security technology review process.
Assist with management, administration, and configuration of Information Security-related systems and applications (VPN, firewall, vulnerability scanner, intrusion detection tools, etc.).
Remains on the cutting edge of cyber threats, exploits, and vulnerabilities.
Provide proactive feedback to senior personnel and management as required.
Aggregates and keeps track of information security metrics.
Participate in cross-functional project teams, providing subject matter expertise in network, system, and cloud security.
Perform all other duties as assigned to support the University of Denver’s mission.