IT Security Analyst - UTIA Information Technology Services
University of Tennessee•Knoxville, TN
•Hybrid
About The Position
This position supports the University of Tennessee Institute of Agriculture IT Security Program by protecting institutional data, IT assets, networks, and users in Knoxville and across the state. Reporting to the Chief Information Security Officer, the IT Security Analyst focuses on governance, risk, and compliance activities; PCI merchant compliance; incident response; vulnerability mitigation; and user security awareness training. The role requires strong written and verbal communication skills and the ability to analyze and resolve complex information security issues independently and collaboratively.
Requirements
- Bachelor’s Degree in Cybersecurity, Information Technology, Computer Science, or related field
- Minimum of three years of hands-on experience in IT governance, risk, compliance, or malware forensics
- Knowledge of compliance standards, such as PCI DSS, HIPAA, FERPA, GDPR, and risk frameworks, such as CIS, NIST SP 800-171, CUI, ISO 27001, FISMA, ITAR
- Strong communication skills, particularly when relaying technical information to non-technical users
- Strong troubleshooting and problem-solving abilities to identify threats and vulnerabilities, as well as determine the proper risk mitigation
- Must be able to work independently as well as in teams.
- Applicants must be legally authorized to work in the United States on a full-time basis without need now or in the future for sponsorship for employment-based visa status.
Nice To Haves
- Experience working in Higher Education or other large public sector organization
- Professional certification(s) such as CISSP, SANS GSEC, CompTIA Security+
- Knowledge of Manage Engine’s Endpoint Central, Microsoft Intune, Microsoft Entra, Microsoft Azure, Microsoft Defender, Tenable, UpGuard, or FTK
Responsibilities
- Governance, Risk, and Compliance (25%) - Participate in UT’s Governance, Risk, and Compliance team activities; conduct vendor and internal risk assessments using system tools; and determine approval or denial of IT purchase requests based on risk and compliance requirements.
- Credit Card Merchant Compliance (30%) - Ensure compliance for approximately 110 UTIA credit card merchants and about 500 merchant staff by reviewing PCI DSS self-assessments, procedures, inventories, and annual training completion.
- IT Security Incident Response (25%) - Coordinate with UTIA, UTCVM, UTK, and UT System partners on security operations alerts and incident response; investigate security breaches; perform malware forensics; and monitor vulnerability remediation timelines.
- IT Security Awareness Training (20%) - Administer annual and new-hire security awareness training for approximately 2,800 employees, track non-completion, coordinate account actions, maintain tickets, and review phishing simulation results to determine additional training needs.
Benefits
- up to two days per week remote work after six-month probationary period
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
