IT Information Security Analyst IV

ARUP Laboratories Career•Salt Lake City, UT

About The Position

The Information Security Analyst is responsible for monitoring, detecting, and responding to security threats across the organization’s IT environment. Working within the Security Operations Center (SOC), this role ensures the confidentiality, integrity, and availability of information systems. The analyst collaborates with IT and business teams to protect sensitive data and maintain regulatory compliance. About ARUP : ARUP Laboratories is a national clinical and anatomic pathology reference laboratory and an enterprise of the University of Utah and its Department of Pathology. Based in Salt Lake City, Utah. ARUP proudly hires top talent to create a work environment of diversity, professional growth and continuous development. Our workforce is committed to the important service we provide to over one million patients each month. We always strive for excellence and have a strong desire to have involvement with the advances in medicine and the role laboratory services plays within each patient’s life. We never forget that there is a patient behind every specimen we receive. We are looking for individuals who want to contribute to ARUP's culture of accountability, integrity, service, and excellence. Consider joining our dynamic team.

Responsibilities

Advanced Threat Monitoring and Analysis: Lead threat monitoring activities to detect and analyze complex security incidents using SIEM tools, IDS/IPS, EDR, and other advanced security platforms.
Triage, investigate, and respond to security incidents in accordance with established procedures, including containment, eradication, and recovery.
Analyze logs from firewalls, IDS/IPS, endpoint protection platforms, SIEM, and other sources to detect and assess security events.
Incident Response and Coordination: Direct and manage incident response actions, from identification through containment, eradication, and recovery.
Participate in on-call as required to ensure 24/7 monitoring and response coverage.
Document investigations, actions taken, and outcomes in case management systems with accuracy and clarity.
Collaborate with SOC analysts, IT teams, and other departments (quality, compliance, legal, finance, executive) to resolve incidents, share threat intelligence, and support audits or legal holds.
Follow and contribute to the improvement of SOC playbooks, workflows, and standard operating procedures.
Identify, test, implement, and administer technologies that protect the organization’s information infrastructure.
Track, monitor, and report on key performance indicators (KPIs) and metrics (such as MTTD and MTTR) to measure the effectiveness of security operations and drive continuous improvement.
Perform periodic risk assessments, security reviews, and audits to ensure regulatory and security requirements are met; assist with remediation planning and follow-up.
Support malware analysis, containment efforts, and forensic investigations as directed, including responding to security emergencies during and after business hours.
Participate in ongoing corporate information security awareness training, notifications, and updates.
Communicate findings and recommendations clearly to technical and non-technical stakeholders.
Maintain confidentiality and integrity of sensitive information encountered during investigations.
Stay current with emerging threats, attack techniques, regulatory requirements (e.g., HIPAA, PCI), and security technologies through continuous learning and training.
Assist in the implementation, maintenance, and improvement of the organization-wide information security program.
Perform project leadership tasks on select security projects as assigned.
Mentorship and Training: Provide guidance, training, and mentorship to junior and mid-level analysts, fostering a culture of continuous improvement and knowledge sharing within the team.
Lead IR efforts.
Perform other duties as assigned.