Network Security Analyst 2

Job Summary/Basic Function:

Responsible to conduct vulnerability scans and penetration tests on campus systems, operates and monitor network and host-based intrusion detection/prevention systems, recommends security solutions, advises on systems and application-level security configurations and investigates and mitigates security risks as required.

Department Overview:

Boise State’s Information Security team keeps the university’s digital world safe, smart, and strong. From safeguarding sensitive data and aligning IT with strategy, to ensuring compliance and responding to risks, ITGRC is the backbone of trust in technology—empowering research, learning, and innovation to thrive securely.

Candidate must reside in the state of Idaho or be willing to relocate to Idaho to be considered for this position.

Level Scope:

Recognized subject matter expert who knows how to apply theory and put it into practice with in-depth understanding of the professional field with limited oversight from managers. Independently performs the full range of responsibilities within the function; requires deep job knowledge of area typically obtained through higher education combined with experience. Manages large projects or processes and problems faced are difficult and often complex; analyzes problems/issues of diverse scope and determines solutions. May manage programs that include formulating strategies and administering policies, processes and resources; functions with a high degree of autonomy. Influences others regarding policies, practices and procedures.

Essential Functions:

• Maintain awareness of current cybersecurity vulnerabilities, exploits, and threats.
• Monitor intrusion detection systems (IDS) and security information and event management (SIEM) systems for abnormal conditions and issues; maintain current documentation of processes related to both systems.
• Monitor the health and availability of IDS and SIEM systems.
• Identify and remediate false positive alerts.
• Work with senior team members to identify, respond to, and resolve threats; and propose controls to minimize risk of future events.
• Develop scripts, tools and procedures to automate scans, assessments and discovery activities.
• Provide input and guidance on incidents such as phishing notifications.
• Work with senior team members to track network activity using packet captures, netflow and other systems.
• Create automated checks and routine tasks that monitor system health on different operating systems.
• Patch and update security systems.
• Work with senior team members to modify security system configurations.
• Conduct routine system health checks and verify system services are running as expected.
• Write and develop standard operating procedures for handling all types of incidents.
• Work with senior team members to build and maintain reports.
• Build and maintain working relationships among OIT, the campus community, vendors, suppliers, and community members.
• Perform other duties as assigned. 

Knowledge, Skills, Abilities:

• Strong analytical and problem-solving skills.
• Solid understanding of common threats, penetration/intrusion techniques and attack vectors.
• Knowledge of basic incident response procedures.
• Working knowledge of a broad range of current IT platforms and technologies.
• Experience with at least one programming language such as Ruby, Python, Perl, Java, or C++.
• Experience with TCP/IP network security, operating system security, common attack patterns, and exploitation techniques.
• Experience using intrusion detection systems (IDS) and security information and event management (SIEM) systems.
• Ability to follow an Incident Response Plan.
• Ability to communicate findings in both verbal and written form.
• Experience correlating unstructured data across a wide variety of logs and other inputs.
• Experience with open source and commercial cybersecurity tools.
• Experience administering systems.
• Strong knowledge of data networking concepts with a focus on security.
• Experience with log and packet analysis tools.
• Experience interpreting data from log and packet capture tools.
• Experience analyzing and handling security incidents.
• Knowledge of technical security issues facing large organizations.
• Ability to maintain one or more security related certifications. 

Minimum Qualifications:

Bachelor’s degree or an advanced degree and 5 years of Information Technology Experience and 3 years Information Security experience or equivalent professional experience. 

Preferred Qualifications: 

Prefer degree concentration in: Computer Information Systems, Management Information Systems, Computer Science, Technical Writing or Business.

Salary and Benefits:

Starting salary is $73,548.80 annually, commensurate with experience. Boise State University provides a best-in-class benefits package, including (but not limited to):

• 12 paid holidays AND the University is closed between Christmas and New Year's (requires use of 3 vacation days)
• Between 12-24 annual paid vacation days for full-time Professional and Classified staff depending on position type and years of service
• 10.76% University contribution to your ORP retirement fund (Professional and Faculty employees)
• 11.96% University contribution to your PERSI retirement fund (Classified employees)
• Excellent medical, dental and other health-related insurance coverages
• Tuition fee waiver benefits for employees, spouses and their dependents
• See our full benefits page for more information!

Required Application Materials:

For full consideration, please provide the following:

• A cover letter expressing our interest in, and qualifications for this position
• A resume
• And the contact information for three professional references.

Please note: This position does not qualify for any type of Visa sponsorship, now or in the future.

Candidate must reside in the state of Idaho or be willing to relocate to Idaho to be considered for this position.

About Us:

Nestled along the Boise River and steps from the state capitol, Boise State University fosters a vibrant and welcoming academic environment that fuels student and employee success. We’re a trailblazing institution, nationally recognized for our innovative spirit and commitment to positive impact on Idaho and beyond.

Boise State is proud to be recognized by Forbes as the only Idaho employer listed in the top 100 of all national midsize and large employers. We’re building a thriving community of faculty and staff whose unique skills, experiences, and perspectives come together to create a rich and rewarding academic experience. Applications from all backgrounds are welcomed.

Learn more about Boise State and living in Idaho’s Treasure Valley at https://www.boisestate.edu/about/