Incident Response Analyst

Incident Response Analyst Position Overview

Rutgers, The State University of New Jersey, is a leading national research university and the State of New Jersey's preeminent, comprehensive public institution of higher education. As one of the largest employers in the State of New Jersey, Rutgers University is committed not only to the students and the State that we serve, but also to the faculty and staff who work on our campuses.

For two consecutive years, Rutgers is ranked on Forbes' list of America's Best Large Employers. Rutgers holds #64 of 500 employers and is the #1 New Jersey employer on the publication's 2023 list. Rutgers' commitment to its employees includes maintaining and fostering a safe, diverse, and respectful workplace environment, creating employment opportunities for our nation's military veterans, and ensuring accessibility and accommodation for individuals with disabilities.

Rutgers, The State University of New Jersey, is seeking an Incident Response Analyst for the Office of Information Technology. Reporting to the Information Technology Manager, the Incident Response Analyst is expected to perform daily operations of the incident detection and response program, which include dispatching and timely monitoring of information security incidents throughout Rutgers' computing environment. The position will work with senior security staff on cybersecurity operations within Enterprise Infrastructure to discover and remediate security threats on networks, workstations, servers, and other connected devices.

• Works with users throughout the University participating in the Operations and Post-Incident phases of the Rutgers Incident Response Program (Detect & Analyze, Contain, Eradicate, Recovery, Report, and Remediate).
• Coordinates and triages response to cybersecurity events.
• Follows the Incident Response Plan throughout the incident response lifecycle.
• Evaluates severity to determine the appropriate response.
• Monitors and analyzes security events and identifies trends, attacks, and potential threats.
• Other duties as assigned.
• Adheres to and contributes to the development of documentation standards, policies, practices, procedures and security plans.
• Ensures clear, concise, and timely reports are generated.
• Manages time and priorities to effectively accomplish workload.
• Interfaces effectively in key relationships such as Security Operations, Network Operations, and Enterprise infrastructure as necessary.
• Provides communications about any issues, problems, or plans that are informative, clear, concise and timely.
• Assists with scheduled and on-demand vulnerability scanning activity.
• Assists Rutgers departments and units with remediation.
• Maintains familiarity with current and emerging information security vulnerabilities, threats, and exploits.
• Identifies services, practices and procedures that need improvement.
• Maintains familiarity with HIPAA, PCI, FISMA, GLBA and other Information Security regulations.
• Stays current on security trends by attending appropriate training and/or seminars.
• Interacts with co-workers, visitors, and other staff consistent with Rutgers' values.
• Plans work to accomplish individual projects and achieve group objectives.

• Minimum
  
  Education and Experience:
  
  A bachelor's degree or equivalent education and experience plus two years relevant experience in specialty area.
• Required Knowledge, Skills, and Abilities:
  • Experience in information security.
  • Vulnerability scanning, penetration testing and/or security operations.
  • Experience in operating systems;
    Windows, Linux and/or Mac.
  • Experience working in an enterprise technical environment, preferably in a customer-service based organization.
  • Must demonstrate excellent verbal and written communication skills.
  • Must be able to succinctly and accurately communicate technical problems to senior staff.
  • Must be able to handle multiple, shifting priorities and a large volume of technical problem resolution.
  • Must quickly learn and be able to apply and document new technical knowledge and procedures.
  • Must work well with peers and senior staff in a team oriented, cooperative spirit.
• Preferred Qualifications:
  • Degree in a related field such as Information Security.
  • Relevant certifications such as GSEC, CISSP, CEH, Security+, ITIL.
  • Experience with threat hunting and/or malware analysis.
• Equipment Utilized:
  • Vulnerability scanning.
  • Packet capture.
  • Firewalls/IPS/IDS/EDR events.
  • Syslog/SIEM.
  • Netflow.
  • Windows/Linux/Mac.
• Physical Demands and Work Environment:
  Must be able to lift up to 50 pounds for the purpose of moving computer equipment.

Minimum Salary: $81,778.00;
Mid Range Salary: $;
Maximum Salary: $. The final salary offer will be determined by factors such as qualifications, experience, and availability of department or grant funds, and will consider market benchmarks and internal equity.

• Medical, prescription drug, and dental coverage
• Paid vacation, holidays, and various leave programs
• Competitive retirement benefits, including defined…